-
Mission impossible? England take the World Cup high road against Mexico
-
'I was just missing a goal,' says Spain's Yamal
-
Ukraine, Russia vow escalation as strikes on Kyiv kill 27
-
'Royal wedding': Epic Swift-Kelce fairytale marriage begins
-
Messi meeting the "game of our lives", says Cape Verde coach
-
France's Barcola expecting physical Paraguay clash at World Cup
-
Do not open until 2276: US burying time capsule to mark July 4
-
Sciver-Brunt and Knight send England into Women's T20 World Cup final
-
Scaloni warns Argentina that Cape Verde success 'no accident'
-
Spain power into last 16 at World Cup, Portugal face Croatia
-
Spain ease past Austria with 3-0 World Cup win
-
Emotional Dimitrov enjoys redemptive Wimbledon win over Mensik
-
Endrick says versatility could help Brazil against Norway
-
New York ready for epic Swift-Kelce fairytale wedding
-
Ghana have 'duty to Africa' to progress at World Cup, says Queiroz
-
Rubio says USA 'screwed' by World Cup red card
-
Former Celtics star Brown in shock over trade to 76ers
-
Heat dome roasts eastern US ahead of holiday weekend
-
Progress, further delay risk for Boeing Air Force One: report
-
WHO declares cruise ship hantavirus outbreak over
-
US coach Pochettino '200% Argentine' but embraces Americana
-
Sciver-Brunt and Knight take England to 169-5 in South Africa semi-final
-
Ukraine, Russia vow escalation after Moscow strikes on Kyiv kill 25
-
Trump's massive July 4 firework show raises health alarms
-
Prosecutors can review Woods medical records in DUI case: judge
-
Pogacar expects Vingegaard Tour de France battle to last 'years'
-
Japan deploys bear cameras in mountains as attacks surge
-
New York ready for epic Swift-Kelce love story wedding
-
Djokovic has history in his sights at Wimbledon
-
Wildfires rage in southern France, 3,000 people evacuated
-
Ovechkin returning to Caps for 22nd NHL season
-
Hamilton gives F1 a piece of his mind over Lego cars
-
Faster than Mbappe: Australia flyer Bos races into World Cup conversation
-
Hong Kong bookseller once held in China dies in Taiwan
-
Trump wants 'senseless killing' in Ukraine to end: US official
-
Venezuelan rescue brings hope to nation in mourning
-
Eala writes history for Philippines in 'electric' Wimbledon atmosphere
-
Macabre night in La Guaira, Venezuela's earthquake epicenter
-
Wolff urges 'perspective' as Russell chases Mercedes' teammate Antonelli
-
Tesla global auto sales jump 25% in 2nd quarter, beating expectations
-
Superb Swiatek, Zverev cruise into Wimbledon last 32
-
Zverev routs Royer to reach Wimbledon third round
-
Ukraine, Russia vow escalation after Moscow attack kills 21 in Kyiv
-
Hot spell roasts eastern US ahead of holiday weekend
-
Slowing US job growth poses midterms challenge for Trump
-
Hamilton cools fans Ferrari fervour
-
Klopp poised to replace Nagelsmann as Germany coach: reports
-
Venezuela's diaspora searches for quake victims on social media
-
More than 400 dead in DR Congo's spreading Ebola outbreak
-
Albanian clashes as protest over Trump-linked resort boils over
Beijing Olympics organisers say app security flaws 'fixed'
An app that Winter Olympics attendees must use has been patched, a Chinese official told AFP Thursday, after cyber security researchers said they had found a "simple but devastating" flaw that could allow data leaks.
Next month's Games are being held in a bubble that separates participants from the rest of the population as part of China's strict zero-Covid policy.
Those taking part -- from foreign athletes, delegates and media to the army of local volunteers and officials -- have to download a health-tracking app called MY2022.
Users report their health status daily through the app which collects data including vaccination status and coronavirus test results, as well as travel and passport details.
Earlier this week researchers at the University of Toronto's Citizen Lab said they discovered the app's security flaws could allow data including health information and voice messages to leak, which could then be read by "eavesdroppers" such as Wi-Fi hotspot operators.
But a senior Chinese Olympic official said any bugs had now been fixed.
"There is definitely no data leakage," Beijing Olympics Organising Committee (BOCOG) tech chief Yu Hong told AFP, adding that the app's user and privacy guidelines were reviewed by the International Olympic Committee.
"The security loopholes have already been fixed. If they existed in earlier versions, they have been fixed in the latest version."
The app's developers have been in email contact with Citizen Lab since Wednesday, Yu added, promising that there will be "relevant discussions" on follow-up work.
Yu did not deny there may have been security flaws in previous versions of the app and she suggested that BOCOG had not been aware of them.
"During development we have continued to test and use it. When new usage conditions appear some new technological imperfections may be discovered, these can be called loopholes," she said.
- Data laws -
Citizen Lab earlier said it had notified organisers about the issues in early December but received no reply.
However, Yu said organisers never saw the request because it was sent to an old email address.
China's data security laws require that health and medical data be encrypted during transmission and storage.
The Citizen Lab report claimed that the app's inadequate encryption could violate Chinese law, as well as Google and Apple mobile software policies.
"China has a history of undermining encryption technology to perform political censorship and surveillance," researcher Jeffrey Knockel wrote in the report.
Researchers also discovered the app's Android code contained an apparently inactive blacklist of over 2,400 "politically sensitive" phrases, and that it had a separate function to report other users' speech for "politically sensitive content".
But organisers denied ever requesting these functions, and said they have asked the developer to look into it.
They added that app health data would primarily be shared with virus control authorities, after the report claimed this was unclear.
"Use of data by individuals and departments is only permitted after the IOC confirms it," Yu said.
China maintains the world's most sophisticated digital tools to monitor and censor the internet for its citizens, blocking major Western platforms such as Twitter, Facebook and YouTube.
In recent days, Olympic associations in multiple Western countries have warned athletes to leave personal devices at home and bring "burner" phones to China.
Analysts have also warned of cybersecurity risks such as data theft and surveillance targeting attendees using public Wi-Fi networks and official SIM cards provided by organisers.
However, organisers and the Chinese government have dismissed such concerns as unfounded.
"The government will not monitor individuals' phones in any form," Yu said.
The app also provides a range of daily living services for users, such as translation, weather, transport schedules and accommodation booking.
P.M.Smith--AMWN