Clubhouse – The invitation-only audio app best known for wooing everyone since Elon musk to Mark Zuckerberg—He has promised to implement new safeguards after suffering his second high-profile security issue this month.
On Sunday, a spokesperson for the clubhouse confirmed to Bloomberg that an unnamed user on the app had managed to divert “multi-room” audio streams and transmit them to a third-party site owned by that user. This news came to light after security researcher Robert Porter tweeted screenshots of the site in question. He noted that while the room scraper in this case didn’t seem to have any malice in mind, the feat was certainly available to “more nefarious actors.”
The Clubhouse team told Bloomberg that the user behind the audio scraping was “permanently banned” from the platform and that it was putting in certain “safeguards” to prevent these types of room recordings from falling into the wrong hands again. That said, the company declined to tell Bloomberg what these specific safeguards really were.
This doesn’t necessarily bode well for people who might be concerned about the privacy of their clubhouse talks. Sure, the account behind the project could be forbidden and this particular exploit used to divert audio may no longer work. The company still has to deal with the 300 other open source projects currently trying to access the platform. And that number grows every day.
Not to mention, this story is happening just a week after the Stanford Internet Observatory dropped a explosive report implying that some user data, including raw audio streams, was processed with the help of the Shanghai-based startup Agora, which had the ability to intercept that audio and store it for its own purposes. Like the Trump administration tirade against TikTok It taught us all that data stored on mainland Chinese soil is subject to certain national cybersecurity laws that state that Chinese authorities can freely access such data if it is determined to be a threat to national security.
Considering how Clubhouse became a huge success in China because citizens were under the impression that the app was beyond reach From state surveillance, you can imagine why last week’s revelation may have had a chilling effect. And while Clubhouse, at the time, promised it was “deeply committed to data protection and user privacy,” this latest security issue raises questions about how far that commitment goes.
We reached out to Clubhouse about this weekend’s security incident and will update it here when we hear from you.