In a blog post, Will Strafach as Infosec expert has published that a scan of popular apps on the Apple App Store had found 76 apps unprotected to attack. A hacker to carry out “man in the middle” & attacks that so let them access the data being sent from the phone to the cloud memory.
In the blog post, there is 33 apps name that is unsafe to attack. In the list, there is also a banking app that known as FirstBank PR Mobile Banking and the Uconnect Access app which lets people locates their car and casually unlocks it.
The published blog post reveals the names of apps are treated low risk. According to warns of Strafach, there are 43 apps that are in a risk of the high or medium level of being hacked and that will be disclosed in a few weeks after fix the flaw by the developer.
About security hole, Strafach said, “is derived from networking-related code within iOS applications being misconfigured in a highly unfortunate manner”.
For users of Snapchat, some of the apps on the list released today and that are add-on apps. Those apps are to increase Snapchat contacts including apps to upload photos and videos to Snapchat and apps. There is another app known as Epic!, assures “unlimited books for kids”.
Because to address the problem in that way would make the apps more vulnerable to attack Apple was not able to issue a widespread fix this type of flaw, said Mr. Strafach. He also said, “The onus rests solely on app developers themselves to ensure their apps are not vulnerable”.
As there are all the apps names are added in the published blog post so it is shamed so far.
According to Mr. Strafach, the bad design was actually a problem when the phone was connected to a network via wi-fi. He added about these matter that “If you are in a public location and need to perform a sensitive action on your mobile device (such as opening your bank app and checking your account balance), you can work around the issue by opening “Settings” and turn the “Wi-Fi” switch off prior to the sensitive action”.
While on a cellular connection the un-protectability does still exist, cellular interception is more strenuous, requires costly hardware, is far more noticeable, & it is quite illegal and this is within the United States.
In his own words, “Therefore, it is much less plausible for an attacker to risk attempting to intercept a cellular data connection.”
We just sent you an email. Please click the link in the email to confirm your subscription!
OKSubscriptions powered by Strikingly