The article discusses the case of Pinduoduo, a Chinese e-commerce company, and its alleged malware. The malware was discovered by researchers in late February, and it allowed the app to access users' sensitive information without their consent.
Here are some key points from the article:
1. **Pinduoduo's alleged malware**: Researchers found that Pinduoduo's app had a set of malicious code that allowed it to access users' locations, contacts, calendars, notifications, and photo albums.
2. **Exploits**: The malware exploits were able to change system settings and access users' social network accounts and chats.
3. **Regulatory failure**: The Ministry of Industry and Information Technology, which is responsible for regulating apps in China, did not detect the malware. This has been seen as an oversight by tech policy experts.
4. **Disbanding of team**: After the discovery, Pinduoduo disbanded a team of engineers and product managers who had developed the exploits.
5. **Removal of exploits**: The company released an update that removed the malicious code from its app.
6. **Oversight failure**: Kendra Schaefer, a tech policy expert, said that the fact that regulators did not detect the malware is embarrassing for the Ministry of Industry and Information Technology.
7. **Social media response**: Some cybersecurity experts have questioned why regulators have not taken action against Pinduoduo.
The article raises concerns about the lack of oversight by regulators in China's tech industry and the potential risks to users' personal data.
Here are some key points from the article:
1. **Pinduoduo's alleged malware**: Researchers found that Pinduoduo's app had a set of malicious code that allowed it to access users' locations, contacts, calendars, notifications, and photo albums.
2. **Exploits**: The malware exploits were able to change system settings and access users' social network accounts and chats.
3. **Regulatory failure**: The Ministry of Industry and Information Technology, which is responsible for regulating apps in China, did not detect the malware. This has been seen as an oversight by tech policy experts.
4. **Disbanding of team**: After the discovery, Pinduoduo disbanded a team of engineers and product managers who had developed the exploits.
5. **Removal of exploits**: The company released an update that removed the malicious code from its app.
6. **Oversight failure**: Kendra Schaefer, a tech policy expert, said that the fact that regulators did not detect the malware is embarrassing for the Ministry of Industry and Information Technology.
7. **Social media response**: Some cybersecurity experts have questioned why regulators have not taken action against Pinduoduo.
The article raises concerns about the lack of oversight by regulators in China's tech industry and the potential risks to users' personal data.
... I mean, who lets a company like that just slide through with malware? It's like they're saying we don't matter as consumers if our info is on the line 
. And what really gets me is that it's not like they're even trying to hide it - they just came out and said they made a mistake 
. But the bigger issue here is accountability, right? Shouldn't the Ministry of Industry and Information Technology be doing more to protect us? I mean, if they can't catch this stuff, how are we supposed to trust them with our personal data? It's like they're playing fast and loose with our security 
.
. I mean, how did a major company like Pinduoduo manage to slip under the radar for so long? It's not just about them being careless, it's more like the system failed. The regulators are supposed to be on top of this stuff and they completely missed it 
. And now we're dealing with users' sensitive info being compromised, which is just gross 
. I'm glad Pinduoduo took down their team that created the malware, but at what cost? Did they actually learn from this mistake or are they just sweeping it under the rug? The whole thing just reeks of incompetence 
. We need better oversight and stricter regulations in China's tech industry, stat! 
... think about it, some company's got a malware that can access all your private info without you even knowing 
. I mean, what's the point of having regulators if they can't even spot something like this? It's like leaving a backdoor open for hackers to come in 
. But at the same time, I feel bad for Pinduoduo - they got caught and took steps to remove the malware, so kudos to them for that 
. Maybe we should be focusing on how we can improve their oversight system instead of just pointing fingers? It's all about finding a balance between keeping companies accountable and not creating unnecessary panic 
.
news! I mean, come on Pinduoduo? Can't you guys even get your own app right? 
Like, who lets malware into their app without doing a proper security check? 
It's like they're not taking it seriously at all. 
Who knows how many other apps are out there with similar problems? 
and the fact that regulators didn't even know about it is just crazy 
i mean what if they had actually seen something like this before? would things be different now? 
