Dozens of iOS apps that are supposed to be encrypting their users’ data don’t do it properly, according to a security researcher.
Will Strafach, CEO of Sudo Security Group, said he found 76 iOS apps that are vulnerable to an attack that can intercept protected data.
The developers of the apps have accidentally misconfigured the networking-related code so it will accept an invalid Transport Layer Security (TLS) certificate, Strafach claimed in a Monday blog post.
To read this article in full or to leave a comment, please click here