The vulnerability lies in the way these keyboard apps, which are essential for efficient Chinese typing, transfer data to the cloud. Instead of properly encrypting user input, most applications send keystrokes in plaintext, making them vulnerable to eavesdropping. The issue affects apps developed by tech giants such as Baidu, Tencent and iFlytek, which collectively dominate the Chinese keyboard market.
Even pre-installed keyboard apps on most Android phones sold in China have been found to be vulnerable to attack.
The study reveals a significant security breach that could put the privacy of countless users at risk. While some app developers resolved the issue after being contacted, others never responded.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
