Celebrating Cybersecurity Awareness Month: TikTok’s Commitment to Online Safety

As we step into October, a month dedicated to raising awareness about cybersecurity, TikTok is excited to reaffirm its commitment to protecting the security of our global community. With over a billion users, we understand the importance of maintaining the highest standards of security and data protection. This year, we are not only celebrating Cybersecurity Awareness Month but also marking a significant milestone: four years of our Global Bug Bounty Program in partnership with HackerOne.

Cybersecurity Awareness Month: A Call to Action

Cybersecurity Awareness Month serves as a reminder for everyone to prioritize online safety. At TikTok, we encourage our community to join the conversation and share their commitment to cybersecurity by using the hashtag #BeCyberSmart. This initiative aims to educate users about the importance of safeguarding their personal information and recognizing potential online threats.

Four Years of Collaboration with HackerOne

Since the inception of our Global Bug Bounty Program in 2020, TikTok has partnered with HackerOne to foster a culture of security through collaboration. This program has grown tremendously, allowing us to work with over 450 security researchers who have identified and disclosed more than 1,000 security vulnerabilities. By addressing these vulnerabilities promptly, we ensure a safer experience for our users.

We are proud to announce that we have awarded over $1.6 million in bounties to researchers, a testament to the program’s success and our commitment to incentivizing ethical hacking. One of the highlights of our collaboration was the recent Live Hacking Event held in August, where we awarded over $720,000 in bounties to 50 researchers from 29 different countries within just 20 days. This event, coinciding with the DEF CON conference in Las Vegas, showcased the power of community engagement in enhancing our security posture.

Marten Mickos, CEO of HackerOne, emphasized the significance of our bug bounty program, stating, “TikTok is one of the world’s most popular apps, and the stakes are high for a security team protecting over one billion users. Over the last four years, TikTok’s dedication to building engagement on their program has continued to produce powerful results.”

Spotlight on Top Security Researchers

As we celebrate our partnership with HackerOne, we want to recognize some of our top contributors who have made significant impacts on our security efforts:

• Jeffery (@supermancyber): Joining HackerOne in August 2023, Jeffery quickly became one of TikTok’s top contributors. He is passionate about securing platforms like TikTok and appreciates the direct impact of his work on global security.

• Imran (@imran_nisar): A veteran in the bug bounty space, Imran has reported over 300 vulnerabilities since starting his ethical hacking journey in 2017. He values the collaborative nature of HackerOne and enjoys mentoring aspiring hackers.

• Pham (@datph4m): With three consecutive years as one of TikTok’s top hackers, Pham has embraced the challenges and learning opportunities within the HackerOne community since 2019.

Empowering Cybersecurity Creators

TikTok is not just a platform for entertainment; it is also a space for education. This month, we are shining a spotlight on three creators who are dedicated to spreading cybersecurity knowledge:

• Kevin (@adjacentnode): A networking and cybersecurity expert, Kevin makes technology accessible and engaging through his content, inspiring others to learn about cybersecurity.

• Marcus (@itsmarcushutchins): Known for stopping the WannaCry ransomware attack, Marcus uses his experience as a cybersecurity specialist to create digestible educational content aimed at the next generation of cybersecurity professionals.

• Lola (@lolalovestech): An educator from London, Lola shares hands-on tips and insights into the latest cybersecurity trends, empowering others to thrive in the tech space.

Top Tips to #BeCyberSmart

To further our mission of promoting cybersecurity awareness, here are some essential tips to help our community stay safe online:

1. Use Strong Passwords: Create complex passwords that include a mix of letters, numbers, and symbols. Avoid using easily guessable information.

2. Enable Two-Factor Authentication: Add an extra layer of security to your accounts by enabling two-factor authentication wherever possible.

3. Be Cautious with Links: Avoid clicking on suspicious links or downloading attachments from unknown sources, as they may contain malware.

4. Keep Software Updated: Regularly update your devices and applications to protect against the latest security vulnerabilities.

5. Educate Yourself: Stay informed about the latest cybersecurity threats and best practices by following trusted sources and engaging with educational content.

Conclusion

As we celebrate Cybersecurity Awareness Month, TikTok remains dedicated to fostering a secure environment for our global community. Through our partnership with HackerOne and the contributions of our talented security researchers and creators, we are committed to enhancing online safety and empowering our users to #BeCyberSmart. Together, we can create a safer digital landscape for everyone.