I-TikTok ifaka ikhodi emakhasini ewebhu ezinkampani zangaphandle lapho umsebenzisi evula ikhasi lesiphequluli kuhlelo lokusebenza lwe-TikTok. Le khodi ingasebenza njengelogger, phakathi kwezinye izinto. Ngokusho kwenkundla yezokuxhumana, ikhodi okukhulunywa ngayo isetshenziselwa izinjongo zokuthuthukisa kuphela.
Umcwaningi wonjiniyela kanye nezokuphepha u-Felix Krause uthole ukuthi uma umsebenzisi evula isixhumanisi enguqulweni ye-iOS ye-TikTok, isiphequluli sangaphakathi nohlelo siyavula lapho inkundla yezokuxhumana ingafaka ikhodi ye-JavaScript. Lokhu kuzovumela idatha efakwe ngekhibhodi, okuhlanganisa amagama ayimfihlo, ulwazi lokukhokha nenye idatha, ukuthi irekhodwe. Akazange aphenye ukuthi ingabe kunjalo nangenguqulo ye-Android yohlelo lokusebenza.
I-TikTok iqinisekisa kwaForbes ukuthi ikhodi ye-JavaScript ikhona ngempela, kodwa ukuthi imilayezo mayelana ne-keylogger okusolwa ukuthi iyadukisa. Ingxenye yekhodi eyimpikiswano kuthiwa iyingxenye engasetshenziswa ye-SDK yenkampani yangaphandle. “Njengezinye izinkundla, sisebenzisa isiphequluli esingaphakathi nohlelo ukuze sinikeze ulwazi olufanele lomsebenzisi. Ikhodi ye-JavaScript efanelekile isetshenziselwa ukulungisa iphutha, ukuxazulula inkinga nokuqapha ukusebenza kohlelo lokusebenza, isibonelo ukuhlola isivinini sokulayisha sekhasi futhi uma ikhasi liphahlazeka.”
Ngakho, ingxenye ye-keylogger yekhodi evela ku-SDK yenkampani yangaphandle ngeke isetshenziswe. Akukacaci ukuthi ngubani lo mdlali wesithathu nokuthi bazomdinga ngempela yini i-keylogger ngenhloso yokuthuthukisa. I-TikTok iphinde iphakamise ukuthi idatha ethile ebhalisiwe icutshungulwa endaweni kuphela kudivayisi futhi ayidluliselwa kumaseva okuxhumana nabantu.
Umcwaningi uthi kulokho akutholile, okuhambisana nokutholwa kwangaphambilini kokulandelwa yi-Instagram kanye ne-Facebook ezipheqululini ezingaphakathi nohlelo, ukuthi isitatimende sikaTikTok kungenzeka silungile. “Ngenxa yokuthi uhlelo lokusebenza lufaka i-JavaScript kumawebhusayithi angaphandle akusho ukuthi uhlelo lokusebenza lenza okuthile okunonya. Ayikho indlela yokwazi kahle ukuthi iyiphi idatha eqoqwa isiphequluli sangaphakathi nohlelo nokuthi le datha iyadluliselwa noma iyasetshenziswa yini.”
Ngakho-ke akunikezwanga ukuthi i-TikTok irekhoda ngempela okokufaka kwekhibhodi yabasebenzisi, ingasaphathwa eyokuyithumela kumaseva ayo noma ikugcine ngenye indlela. Nokho, kucishe kuqiniseke ukuthi lokhu kungenzeka. Ngaleso sizathu, ngokusho kukaKrause, kuwukuhlakanipha ukukopisha izixhumanisi zesiphequluli nge-TikTok, kodwa futhi nge-Facebook ne-Instagram, futhi uzinamathisele ngqo esipheqululini esethembekile. Ngale ndlela, izinhlelo zokusebenza ezifanele azikwazi ukujova ikhodi yokubhalisa idatha ebucayi ngale ndlela.