Originally posted by armedferret
View Post
Announcement
Collapse
No announcement yet.
Taptalk security issues
Collapse
This topic is closed.
X
X
-
Originally posted by DocDave View PostErr, can you expand on this? I have the app on my phone and am not keen on being tracked...
independent research has shown the app to be actively sending unknown encrypted data when the app is not running, leading many to assess that the keystroke logger function runs when not utilizing the app itself. what it records, what it stores, and what it sends during that time is unknown (so at least it's encrypted, i suppose).https://www.professorhorseyhead.com
Comment
-
Originally posted by armedferret View Postcompany claims the keylogger is limited to what you type when using the app, so they can aggregate/sell that to targeted advertising (amazon, google, etc).
independent research has shown the app to be actively sending unknown encrypted data when the app is not running, leading many to assess that the keystroke logger function runs when not utilizing the app itself. what it records, what it stores, and what it sends during that time is unknown (so at least it's encrypted, i suppose).
Comment
-
Originally posted by armedferret View PostIt also has an embedded keystroke logger running even when tapatalk isnt open.
This has become more of a PITA recently as recent app updates now mean that tabs revert to the mobile version of a site every time you leave them and you have to re-request to use the desktop site every time, whereas previously an open tab would remember whether you wanted to be in the desktop site even if you soft-closed the app.Ben
Comment
-
Originally posted by armedferret View PostResearch performed for a specific DoD client while I was a CDC prior to my return to full-time status as an AGR.
As in I was one of the researchers testing the app.
Comment
-
Originally posted by Shade View PostThat's interesting that Tapatalk has been around for almost two decades and nothing at all ever has been mentioned on the internet about there being a keylogger. iOS is also sandboxed OS. No app can affect any other app, take information from another app, or edit system settings. A keylogger can't work on iOS unless you have jailbroken it. Apps can contain keyloggers, but they can't keylogger other apps. If an app did contain a keylogger it either wouldn't be allowed on the app store or would be removed asap. Also, if your client, DOD or otherwise knew about it, and never reported it, makes them pretty shit imo. BTW. I'm retired military.https://www.professorhorseyhead.com
Comment
-
Fact of the matter is, most military techies are novice compared to civilians, if there was an exploit on tapatalk keylogging people, it would have been made public long ago. Anyone in the tech world knows that. Apple has computer dorks doing nothing all day but looking for exploits in apps they put on their Apple Store, specifically looking for these things.
Comment
-
Originally posted by Shade View PostFact of the matter is, most military techies are novice compared to civilians, if there was an exploit on tapatalk keylogging people, it would have been made public long ago. Anyone in the tech world knows that. Apple has computer dorks doing nothing all day but looking for exploits in apps they put on their Apple Store, specifically looking for these things.
Given such a narrow focus it's not surprising to see you have no idea how the real world works.https://www.professorhorseyhead.com
Comment
Comment