Shenyu: Up to one billion users' cloud input methods may have leaked input content

Shenyu, co-founder of F2Pool and Cobo, tweeted that up to one billion users' cloud input methods may have leaked input content. If you have entered mnemonics or other sensitive information through any of the listed cloud input methods (including eight manufacturers such as Baidu, Honor, iFlytek, OPPO, Samsung, and Tencent), it is recommended to take immediate measures to reduce risks. The full report shows that the team estimates that up to one billion users are affected by these vulnerabilities. Several mobile phone manufacturers have built-in these vulnerable input method programs in the operating system. Except for Baidu Input Method, mobile phone manufacturers have now patched these vulnerabilities in the built-in input method. For the built-in Baidu Input Method, Honor has not patched any vulnerabilities at all, and the rest of the manufacturers have only patched some of the most serious vulnerabilities.