TikTok suffers critical third party data breach

The jury's still out on how this happened, but it's possible that TikTok might have stored all their internal backend source code on Alibaba Cloud, protected only by a weak password. Asides from the bad cyber hygiene, this is an example of mismanagement of a critical third party.

The company denied that there was a breach, however on September 3rd reports of a hack surfaced on Breach Forums, with the impact of a server holding 2.05 billion records in a 790GB database.

More on this story on TheHackerNews:

TikTok Denies Data Breach Reportedly Exposing Over 2 Billion Users’ Information

TikTok has denied reports of a data breach after a hacker group claimed to have gained access to information on two billion of its users.

The Hacker NewsRavie Lakshmanan

Ceeyu is a  SaaS platform that can help assess the security of your vendors and other third parties. By using a platform to improve your third-party risk management process, your organization can easily and quickly identify areas of risk. This data will help improve the security of risky vendors, effectively increasing yours as well.

Contact us for a demo! [email protected]