Researchers recentlydiscoveredsevere encryption flaws in cloud-based pinyin input software from eight companies that could allow eavesdropping.
Some of the vulnerabilities can leak data to completely passive snoopers.
Notably, the researchers found no flaws in iOS apps because Apple automatically sandboxes the platform’s keyboard apps.
Allowing iPhone keyboard apps to access and transmit data requires explicit user permission.
Meanwhile, equivalent Android and Windows tools were deemed far less secure.
The researchers expressed alarm partly due to prior episodes involving government surveillance.
