If TikTok could be said to have a chief antagonist inside the bureaucracy of the federal government, FCC Commissioner Brendan Carr would be as good a candidate as anyone for that designation.
The commission’s senior Republican, nominated to the body by President Trump, has repeatedly denounced TikTok in interviews and public statements for presenting a clear “national security threat.” Motivated by leaks of audio from internal TikTok meetings showing that US user data has been accessed from inside China — despite earlier protestations to the contrary from the company — Carr has also gotten creative in his ongoing crusade against the video app.
He’s sent letters to Google and Apple, for example, demanding an explanation for why an app like this that’s shown to violate their rules shouldn’t be kicked out of their respective app stores.
So far, Carr told me, only Google has responded to that letter. And it was with, as he puts it, a “word salad” defense acknowledging Carr’s concern and promising that Google will look into the issue. No answer from Apple yet, but Carr isn’t worried. “The tide is moving out on TikTok,” he said.
“People look at TikTok and say, well, it’s just a fun app for sharing videos,” Carr told me about the app — which, as of the time of this writing, Apple lists as the #2 “Top Free App” in its App Store. Moreover, Apple also includes TikTok on its list of “Must-Have Apps,” which is a separate ranking.
Continues Carr, “It’s not the video, though, it’s all this data being pulled below it. Is there a tremendous national security threat when it comes to one family’s son or daughter, individually? I don’t think so. The problem is this is millions and millions of people, and data on millions and millions of people. And China has got the most sophisticated AI operation for analyzing this stuff. It’s the scope and scale that really presents the national security threat for us.”
READ MORE: Lawsuit reveals the dark side of TikTok
To be sure, his problem with the app also extends beyond any mere hypothetical danger associated with US users. There’s also the very real perception that TikTok left in the minds of people like him — that it was sufficiently walled off from its China-based parent entity, ByteDance. Until, that is, a bombshell Buzzfeed report in June. That report relied on audio from more than 80 TikTok company meetings to assert that employees based in China have “repeatedly accessed nonpublic data about US TikTok users.”
For anyone keeping score, that’s precisely why the Trump administration threatened to ban the app in the US. Until the coronavirus pandemic, of course, meant that other priorities quickly took precedence.
Things are much different now.
In June of this year, TikTok policy advisor Albert Calamug tried to allay some of the myriad security concerns. He offered up a breakdown of how the company handles US user data.
The U.S. House of Representatives’ Chief Administrative Officer has issued a cyber advisory on TikTok, labeling it “high-risk” with personal info accessed from inside China:
“we do not recommend the download or use of this application due to these security and privacy concerns.” pic.twitter.com/F87qwFiHhR
For example, Calamug explained, the company maintains data centers in both the US and Singapore, wherein it stores data connected to US users. TikTok’s Virginia data center, he continued in a company blog post, “includes physical and logical safety controls such as gated entry points, firewalls, and intrusion detection technologies. It’s also important to maintain backup data storage locations to guard against catastrophic scenarios where user data could be lost, and our data center in Singapore serves as the backup data storage location for our US users.”
For more than a year, he added, TikTok has been working with Oracle to better safeguard its app, systems, and the security of US user data. And today, TikTok says that 100% of US user traffic is being routed to Oracle Cloud Infrastructure.
Nevertheless, investigations into problems around TikTok are continuing at the federal level. On multiple fronts, in fact.
Besides Carr sounding the alarm as an FCC commissioner? Two US senators have called for an FTC probe of TikTok. Carr also told me that the US Commerce Dept. has its own review that’s ongoing. Additionally, there’s a so-called CFIUS review run by the US Treasury Dept. That’s an ongoing review, according to Carr, looking at foreign investment vis a vis TikTok and related apps.
Outside of the US, members of parliament in countries like Australia and the UK have likewise undertaken similar efforts.
“This isn’t about me or the concerns I’ve raised,” Carr said. “This is about the bipartisan and global concern about this. I think it’s very clear that TikTok has got a short window here before there’s concrete government action.
“You’ve already got things like the military branches that have banned TikTok from their official government devices. I just don’t see how you can be half-pregnant when it comes to the security concern, which is enough of a concern to boot it off military devices. It seems hard to conclude that the exact same military personnel should be able to put it on their personal phones — and be in the same areas as they are when they’re acting in their official capacities.”
And new TikTok-related security concerns continue to mount. As we noted in a separate piece on Friday, security researcher Felix Krause recently discovered that the in-app browser in TikTok’s iOS app injects JavaScript code into every website that users visit. That means the app could monitor every keyboard entry and every tap on the screen.
According to Krause, an app injecting JavaScript into a website isn’t inherently malicious. But even if we know what an app is doing, we don’t know how the company uses the data. For example, in the case of the TikTok in-app browser, Krause says the code “behaves like a keylogger.”
The chief administrative officer of the US House of Representatives has also urged members of Congress to refrain from using TikTok.
“My mindset has always been — it’s not enough to have ties back into the (Chinese Communist Party),” Carr told me. “We still have at the FCC dozens upon dozens of entities that we license and authorize that have ties back into communist China. What I’ve always said is you need that, and a plus factor.
“We saw with Huawei, ZTE — a lack of transparency about data flows. Or, they’d represent that data doesn’t go to Place X. And then we’d find out that data does, in fact, go to Place X. And I think that same mindset applies to TikTok. It’s not enough just that the parent company has ties back to communist China. It’s that they have masked the data flows back into China for two years. We’re always looking for a plus factor before we step into action.”
Andy Meek is a reporter who has covered media, entertainment, and culture for over 20 years. His work has appeared in outlets including The Guardian, Forbes, and The Financial Times, and he’s written for BGR since 2015. Andy’s coverage includes technology and entertainment, and he has a particular interest in all things streaming. Over the years, he’s interviewed legendary figures in entertainment and tech that range from Stan Lee to John McAfee, Peter Thiel, and Reed Hastings.
BGR’s audience craves our industry-leading insights on the latest in tech and entertainment, as well as our authoritative and expansive reviews.
We guide our loyal readers to some of the best products, latest trends, and most engaging stories with non-stop coverage, available across all major news platforms.
BGR is a part of Penske Media Corporation.
© 2022 BGR Media, LLC. All Rights Reserved.
Powered by WordPress VIP