Researchers recently discovered severe encryption flaws in cloud-based pinyin input software from eight companies that could allow eavesdropping. Although there is no evidence that the vulnerabilities are actively being exploited, earlier incidents make this a potentially serious issue.