all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Vulnerability in Tencent’s Sogou Chinese Keyboard Can Leak Text Input in Real-Time

Add to bookmarks
Aug. 21, 2023, 5:19 p.m. | Bill Budington

Deeplinks www.eff.org

Security researchers at Citizen Lab discovered a number of cryptographic vulnerabilities in the Sogou Input Method keyboard software made by Tencent, the most popular input method in China. These vulnerabilities allow adversaries with a privileged network position (such as an ISP or anyone with access to upstream routers) to read the text a user inputs on a device in real-time as it's being typed. Users of the Sogou Keyboard are highly encouraged to upgrade to patched versions that fix this …

access adversaries china chinese citizen lab input isp keyboard lab leak network popular privileged researchers routers security security researchers software sogou technical analysis tencent text upstream vulnerabilities vulnerability

Visit resource

More from www.eff.org / Deeplinks

Congress Should Just Say No to NO FAKES 1 day, 18 hours ago | www.eff.org
anxiety artificial artificial intelligence celebrities +13
Speaking Freely: Obioma Okonkwo 1 week ago | www.eff.org
access clarity digital digital rights +17
Screen Printing 101: EFF's Spring Speakeasy at Babylon Burning 1 week ago | www.eff.org
area civil civil liberties current +15
Podcast Episode: Right to Repair Catches the Car 1 week, 1 day ago | www.eff.org
can car creativity & innovation defend your right to repair! +11
U.S. Senate and Biden Administration Shamefully Renew and Expand FISA Section 702, Ushering in a … 1 week, 1 day ago | www.eff.org
administration authority biden biden administration +20
Internet Service Providers Plan to Subvert Net Neutrality. Don’t Let Them 1 week, 4 days ago | www.eff.org
called don internet internet service +10
EFF, Human Rights Organizations Call for Urgent Action in Case of Alaa Abd El Fattah 1 week, 4 days ago | www.eff.org
action blogger call calling +12
Congress: Don't Let Anyone Own The Law 1 week, 5 days ago | www.eff.org
act action area bill +19
Two Years Post-Roe: A Better Understanding of Digital Threats 1 week, 5 days ago | www.eff.org
case court decision digital +13

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Cyber Risk Analyst

@ Intel | USA - AZ - Chandler
View on infosec-jobs.com

Senior Cloud Security Engineer (Fullstack)

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Principal Product Security Engineer

@ Oracle | United States
View on infosec-jobs.com

Cybersecurity Strategy Director

@ Proofpoint | Sunnyvale, CA
View on infosec-jobs.com

Information Security Consultant/Auditor

@ Devoteam | Lisboa, Portugal
View on infosec-jobs.com

IT Security Engineer til Netcompany IT Services

@ Netcompany | Copenhagen, Denmark
View on infosec-jobs.com
View more jobs