In this report, we analyze the Windows, Android, and iOS versions of Tencent’s Sogou Input Method, the most popular Chinese-language input method in China. Our analysis found serious vulnerabilities in the app’s custom encryption system and how it encrypts sensitive data. These vulnerabilities could allow a network eavesdropper to decrypt sensitive communications sent by the app, including revealing all keystrokes being typed by the user. Following our disclosure of these vulnerabilities, Sogou released updated versions of the app that identified all of the issues we disclosed.
Vulnerabilities in Sogou Keyboard encryption expose keypresses to network eavesdropping.
yeah, Snowden probably wouldn’t be really into the idea that we shouldn’t talk about what China is doing it because “everyone else is too”.
Snowden would acknowledge the pervasiveness of the issue.
he’s also not a bad-faith actor on an anonymous platform
I’m not the one reducing the issue into a China vs US binary my guy.
but you are defending those who want that to be the whole discussion. blocking you now.
Whatever you need to do to take care of your mental health, no skin off my nose.