Krause said TikTok’s in-app browser “subscribes” to all keyboard input while a user interacts with a third-party website, including sensitive details such as passwords and credit card information, along with every tap on the screen.
“If you open a link from within an app, see if the app provides a way to open the currently displayed website in your default browser,” Krause wrote. “During this analysis, every app except TikTok provided a way to do this.”
Apple did not immediately respond to a request for comment.
#TikToks #inapp #browser #reportedly #monitor #type