TikTok accounts hijacked after DM hack exposed

Paris Hilton and CNN among those tricked by zero-day vulnerability

Anthony Cuthbertson
Wednesday 05 June 2024 09:59 BST
Comments
A TikTok logo is displayed on an iPhone on 28 February, 2023 in London, England
A TikTok logo is displayed on an iPhone on 28 February, 2023 in London, England (Getty Images)

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

Hackers have hijacked several high-profile TikTok accounts after discovering a major flaw within the app’s direct message feature.

The security issue, known as a zero-day vulnerability, was used to target the account of reality TV star Paris Hilton, as well as the official accounts of CNN and Sony.

TikTok said that it had issued a fix to prevent it from happening in the future and is currently working with users impacted by the hack.

“Our security team is aware of a potential exploit targeting a number of brand and celebrity accounts,” a spokesperson for TikTok said.

“We have taken measures to stop this attack and prevent it from happening in the future. We’re working directly with affected account owners to restore access, if needed.

“We are dedicated to maintaining the integrity of the platform and will continue to monitor for any further inauthentic activity.”

Paris Hilton was among the TikTok accounts targeted
Paris Hilton was among the TikTok accounts targeted (Getty Images)

The social media firm, which is owned by ByteDance, did not give any further details about the scale of the attack, or how exactly it was carried out.

The security issue comes just weeks after the US passed a bill that could see TikTok banned throughout the country unless its Chinese owner sells the viral video app.

View more

The majority of US lawmakers claim that Chinese ownership of the app poses a national security threat, with fears about users’ data being collected, as well as concerns that the algorithm could be used to funnel propaganda to citizens.

TikTok has said it will fight the ban, calling it a “clear violation of the First Amendment rights of TikTok’s 170 million American users”.

TikTok’s Michael Beckerman said: “This is the beginning, not the end, of this long process.”

Recent data revealed that TikTok spent millions of dollars in failed lobbying attempts and ad campaigns in an effort to stop the Senate from passing the divest-or-ban legislation.

If a resolution is not found, TikTok will be banned in the US by the end of the year, with a potential three month extension if the US president determines that progress has been made toward a sale.

Join our commenting forum

Join thought-provoking conversations, follow other Independent readers and see their replies

Comments

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in