In this report, we analyze the Windows, Android, and iOS versions of Tencent’s Sogou Input Method, the most popular Chinese-language input method in China. Our analysis found serious vulnerabilities in the app’s custom encryption system and how it encrypts sensitive data. These vulnerabilities could allow a network eavesdropper to decrypt sensitive communications sent by the app, including revealing all keystrokes being typed by the user. Following our disclosure of these vulnerabilities, Sogou released updated versions of the app that identified all of the issues we disclosed.
Vulnerabilities in Sogou Keyboard encryption expose keypresses to network eavesdropping.
No, what you don’t have time for is confronting inconvenient truths that fly in the face of your political agenda.
Again, as previously stated I am not downplaying this incident. It happened and it was terrible. If you’re not really just a coward ducking my point (Which I think you are) and you actually think that’s the case then I challenge you to point out how I’m doing so. This was a serious incident and many people died; don’t you think that the people who actively provoked the confrontation between students and soldiers should face up to what they’ve done?
No, what you don’t have time for is confronting inconvenient truths that fly in the face of your political agenda.
Again, as previously stated I am not downplaying this incident. It happened and it was terrible. If you’re not really just a coward ducking my point (Which I think you are) and you actually think that’s the case then I challenge you to point out how I’m doing so. This was a serious incident and many people died; don’t you think that the people who actively provoked the confrontation between students and soldiers should face up to what they’ve done?