Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the wp-plugin-hostgator domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home4/scienrds/scienceandnerds/wp-includes/functions.php on line 6114

Notice: Function _load_textdomain_just_in_time was called incorrectly. Translation loading for the ol-scrapes domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home4/scienrds/scienceandnerds/wp-includes/functions.php on line 6114

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893

Warning: Cannot modify header information - headers already sent by (output started at /home4/scienrds/scienceandnerds/wp-includes/functions.php:6114) in /home4/scienrds/scienceandnerds/wp-includes/rest-api/class-wp-rest-server.php on line 1893
{"id":13728,"date":"2022-09-01T15:00:34","date_gmt":"2022-09-01T15:00:34","guid":{"rendered":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/"},"modified":"2022-09-01T15:00:35","modified_gmt":"2022-09-01T15:00:35","slug":"a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking","status":"publish","type":"post","link":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/","title":{"rendered":"A \u2018high severity\u2019 TikTok vulnerability allowed one-click account hijacking"},"content":{"rendered":"

Source: https:\/\/www.theverge.com\/2022\/8\/31\/23329662\/tiktok-vulnerability-microsoft-one-click-exploit-high-severity<\/a>
\n
<\/br><\/code><\/p>\n

\n

A vulnerability in the TikTok app for Android could have let attackers take over any account that clicked on a malicious link, potentially affecting hundreds of millions of users of the platform.<\/p>\n

Details of the one-click exploit were revealed today in a blog post<\/a> from researchers on Microsoft\u2019s 365 Defender Research Team. The vulnerability was disclosed to TikTok by Microsoft, and has since been patched.<\/p>\n

The bug and its resulting attack, labelled a \u201chigh severity vulnerability,\u201d could have been used to hijack the account of any TikTok user on Android without their knowledge, once they clicked on a specially crafted link. After the link was clicked, the attacker would have access to all primary functions of the account, including the ability to upload and post videos, send messages to other users, and view private videos stored in the account. <\/p>\n

The potential impact was huge, as it affected all global variants of the Android TikTok app, which has a total of more than 1.5 billion downloads on the Google Play Store. However, there\u2019s no evidence it was exploited by bad actors.<\/p>\n

\u201cThrough our partnership with security researchers at Microsoft, we discovered and quickly fixed a vulnerability in some older versions of the Android app,\u201d TikTok spokesperson Maureen Shanahan. \u201cWe appreciate the Microsoft researchers for their efforts to help identify potential issues so we can resolve them.\u201d <\/p>\n

Microsoft confirmed that TikTok responded promptly to the report. \u201cWe gave them information about the vulnerability and collaborated to help fix this issue\u201d Tanmay Ganacharya, partner director for security research at Microsoft Defender for Endpoint, told The Verge<\/em>. \u201cTikTok responded quickly, and we commend the the efficient and professional resolution from the security team.\u201d<\/p>\n

According to details published in the blog post, the vulnerability affected the deep link<\/a> functionality of the Android app. This deep link handling tells the operating system to let certain apps process links in a specific way, such as opening the Twitter app to follow a user after clicking an HTML \u201cFollow this account\u201d button embedded in a webpage.<\/p>\n

This link handling also includes a verification process that should restrict the actions performed when an application loads a given link. But the researchers found a way to bypass this verification process and execute a number of potentially weaponizable functions within the app.<\/p>\n

One of these functions let them retrieve an authentication token tied to a certain user account, effectively granting account access without the need to enter a password. In a proof-of-concept attack, the researchers crafted a malicious link that, when clicked, changed a TikTok account\u2019s bio to read \u201cSECURITY BREACH.\u201d<\/p>\n

\n <\/p>\n

<\/p>\n\"\"<\/p>\n

<\/source><\/picture>\n

<\/span><\/p>\n

<\/span><\/p>\n

A screenshot of a compromised account.<\/em><\/figcaption>Microsoft<\/cite><\/p>\n

<\/span><\/p>\n<\/figure>\n

Fortunately, the vulnerability was detected, and Microsoft has used the opportunity to stress the importance of collaboration and coordination between technology platforms and vendors.<\/p>\n

\u201cAs threats across platforms continue to grow in numbers and sophistication, vulnerability disclosures, coordinated response, and other forms of threat intelligence sharing are needed to help secure users\u2019 computing experience, regardless of the platform or device in use,\u201d wrote Microsoft\u2019s Dimitrios Valsamaras in the blog post. \u201cWe will continue to work with the larger security community to share research and intelligence about threats in the effort to build better protection for all.\u201d<\/p>\n

Although the TikTok app is not known to have suffered any major hacks so far, some critics have branded it a security risk for other reasons.<\/p>\n

Recently, concerns have been raised over the extent to which US users\u2019 data can be accessed by China-based engineers at ByteDance, TikTok\u2019s parent company. In July, Senate Intelligence Committee leaders called on FTC chair Lina Khan to investigate TikTok<\/a> after reports brought into question claims that US users\u2019 data was walled off from the Chinese branch of the company.<\/p>\n

Correction and update August 31st, 2:35PM ET:<\/strong><\/em> A previously version of this article said that TikTok failed to respond by publication time. In fact, The Verge received comment but failed to include it. We regret the error.<\/em><\/p>\n

Correction September 1st, 8:35AM ET: <\/strong><\/em>Due to an editing error, lines from this piece were misattributed to a TikTok spokesperson. The quote has now been corrected.<\/em><\/p>\n<\/div>\n


<\/br><\/code><\/p>\n

Source: https:\/\/www.theverge.com\/2022\/8\/31\/23329662\/tiktok-vulnerability-microsoft-one-click-exploit-high-severity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Source: A vulnerability in the TikTok app for Android could have let attackers take over any account that clicked on a malicious link, potentially affecting hundreds of millions of users of the platform. Details of the one-click exploit were revealed today in a blog post from researchers on Microsoft\u2019s 365 Defender Research Team. The vulnerability […]<\/p>\n","protected":false},"author":1,"featured_media":13729,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","om_disable_all_campaigns":false,"pagelayer_contact_templates":[],"_pagelayer_content":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[59,8],"tags":[11],"class_list":["post-13728","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-microsoft","category-technology","tag-microsoft"],"yoast_head":"\nA \u2018high severity\u2019 TikTok vulnerability allowed one-click account hijacking - Science and Nerds<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"A \u2018high severity\u2019 TikTok vulnerability allowed one-click account hijacking - Science and Nerds\" \/>\n<meta property=\"og:description\" content=\"Source: A vulnerability in the TikTok app for Android could have let attackers take over any account that clicked on a malicious link, potentially affecting hundreds of millions of users of the platform. Details of the one-click exploit were revealed today in a blog post from researchers on Microsoft\u2019s 365 Defender Research Team. The vulnerability […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/\" \/>\n<meta property=\"og:site_name\" content=\"Science and Nerds\" \/>\n<meta property=\"article:published_time\" content=\"2022-09-01T15:00:34+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-09-01T15:00:35+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/scienceandnerds.com\/wp-content\/uploads\/2022\/09\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking_6310c912916bd.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"628\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"admin\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"admin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/\",\"url\":\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/\",\"name\":\"A \u2018high severity\u2019 TikTok vulnerability allowed one-click account hijacking - Science and Nerds\",\"isPartOf\":{\"@id\":\"https:\/\/scienceandnerds.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/09\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking_6310c912916bd.jpeg?fit=1200%2C628&ssl=1\",\"datePublished\":\"2022-09-01T15:00:34+00:00\",\"dateModified\":\"2022-09-01T15:00:35+00:00\",\"author\":{\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e\"},\"breadcrumb\":{\"@id\":\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/09\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking_6310c912916bd.jpeg?fit=1200%2C628&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/09\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking_6310c912916bd.jpeg?fit=1200%2C628&ssl=1\",\"width\":1200,\"height\":628},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/scienceandnerds.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"A \u2018high severity\u2019 TikTok vulnerability allowed one-click account hijacking\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/scienceandnerds.com\/#website\",\"url\":\"https:\/\/scienceandnerds.com\/\",\"name\":\"Science and Nerds\",\"description\":\"My WordPress Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/scienceandnerds.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e\",\"name\":\"admin\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/scienceandnerds.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g\",\"caption\":\"admin\"},\"sameAs\":[\"https:\/\/scienceandnerds.com\"],\"url\":\"https:\/\/scienceandnerds.com\/author\/admin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"A \u2018high severity\u2019 TikTok vulnerability allowed one-click account hijacking - Science and Nerds","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/","og_locale":"en_US","og_type":"article","og_title":"A \u2018high severity\u2019 TikTok vulnerability allowed one-click account hijacking - Science and Nerds","og_description":"Source: A vulnerability in the TikTok app for Android could have let attackers take over any account that clicked on a malicious link, potentially affecting hundreds of millions of users of the platform. Details of the one-click exploit were revealed today in a blog post from researchers on Microsoft\u2019s 365 Defender Research Team. The vulnerability […]","og_url":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/","og_site_name":"Science and Nerds","article_published_time":"2022-09-01T15:00:34+00:00","article_modified_time":"2022-09-01T15:00:35+00:00","og_image":[{"width":1200,"height":628,"url":"https:\/\/scienceandnerds.com\/wp-content\/uploads\/2022\/09\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking_6310c912916bd.jpeg","type":"image\/jpeg"}],"author":"admin","twitter_card":"summary_large_image","twitter_misc":{"Written by":"admin","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/","url":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/","name":"A \u2018high severity\u2019 TikTok vulnerability allowed one-click account hijacking - Science and Nerds","isPartOf":{"@id":"https:\/\/scienceandnerds.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#primaryimage"},"image":{"@id":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/09\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking_6310c912916bd.jpeg?fit=1200%2C628&ssl=1","datePublished":"2022-09-01T15:00:34+00:00","dateModified":"2022-09-01T15:00:35+00:00","author":{"@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e"},"breadcrumb":{"@id":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#primaryimage","url":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/09\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking_6310c912916bd.jpeg?fit=1200%2C628&ssl=1","contentUrl":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/09\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking_6310c912916bd.jpeg?fit=1200%2C628&ssl=1","width":1200,"height":628},{"@type":"BreadcrumbList","@id":"https:\/\/scienceandnerds.com\/2022\/09\/01\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/scienceandnerds.com\/"},{"@type":"ListItem","position":2,"name":"A \u2018high severity\u2019 TikTok vulnerability allowed one-click account hijacking"}]},{"@type":"WebSite","@id":"https:\/\/scienceandnerds.com\/#website","url":"https:\/\/scienceandnerds.com\/","name":"Science and Nerds","description":"My WordPress Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/scienceandnerds.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/ea2991abeb2b9ab04b32790dff28360e","name":"admin","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/scienceandnerds.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/7e6e14fc6691445ef2b2c0a3a6c43882?s=96&d=mm&r=g","caption":"admin"},"sameAs":["https:\/\/scienceandnerds.com"],"url":"https:\/\/scienceandnerds.com\/author\/admin\/"}]}},"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"https:\/\/i0.wp.com\/scienceandnerds.com\/wp-content\/uploads\/2022\/09\/a-high-severity-tiktok-vulnerability-allowed-one-click-account-hijacking_6310c912916bd.jpeg?fit=1200%2C628&ssl=1","_links":{"self":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/13728","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/comments?post=13728"}],"version-history":[{"count":1,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/13728\/revisions"}],"predecessor-version":[{"id":13730,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/posts\/13728\/revisions\/13730"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/media\/13729"}],"wp:attachment":[{"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/media?parent=13728"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/categories?post=13728"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/scienceandnerds.com\/wp-json\/wp\/v2\/tags?post=13728"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}