https://jh.live/sublime-security-webinar || Catch the recap of more phishing schemes and trends to watch out in my webinar with Sublime Security :) https://jh.live/sublime-security-webinar

Learn Cybersecurity and more with Just Hacking Training: https://jh.live/training
See what else I'm up to with: https://jh.live/newsletter

ℹ️ Affiliates:
Learn how to code with CodeCrafters: https://jh.live/codecrafters
Host your own VPN with OpenVPN: https://jh.live/openvpn
Get Blue Team Training and SOC Analyst Certifications with CyberDefenders: https://jh.live/cyberdefense

John Hammond

TikTok has an unpatched open redirect vulnerability that attackers are actively exploiting in phishing campaigns. The vulnerability allows malicious actors to craft legitimate-looking TikTok URLs that redirect users to attacker-controlled sites, often hosted on AWS S3 buckets. These campaigns typically use social engineering tactics like fake voicemail notifications, leading victims through Cloudflare turnstiles to credential harvesting pages. The phishing kits employ anti-analysis techniques including debugger detection, key blocking, and obfuscated JavaScript to evade security researchers. Despite being publicly documented since September 2024, TikTok has not addressed this vulnerability.

TiKTok needs to fix this vulnerability