Score Of Popular Apple iOS Apps Are Prone To Data Breach; Threatens Sensitive Financial & Banking Credentials
Regin OlimberioA score of popular apps from Apple Store with at least 18 million downloads were included in a security report due to vulnerabilities against data interception. Sudo Security Group found out that these iOS apps are using their back-end services to implement encryptions. This process is thought to be dangerous because a third-party with proper knowledge can easily extract and intercept the incoming or outgoing data.
In technical perspective, these iOS apps can be tricked through a proxy with a fake certificate. Most of the apps are using Transport Layer Security which offers a chance for data un-encryption. Not only are the users' credentials being compromised, but so are their billing details, location and virtual addresses.
The iOS apps in scrutiny are using App Transport Security or ATS which was introduced way back in iOS 9, Sudo's Will Strafach reported. ATS forces an app to connect through HTTPS connections where "S" stands for secured data encryption. Otherwise plain HTTP is the traditional low-encrypted data handler.
To make matters worse, Sudo Security said that the iOS apps deemed vulnerable are ranging from simple add-ons to social media apps to data-sensitive banking apps like FirstBank PR. The report also stated that there is a total of 76 apps assessed. They sub-categorized these iOS apps into three classifications depending on the level of vulnerability, MacRumors said.
Of the total number, 33 were classified as low risk because they only store partially sensitive data like emails and physical address. 24 others were placed under medium risk class while the remaining 19 were deemed high risk. High risk apps are those that contain very sensitive data like financial and banking records.
Meanwhile, there is a debate over the Sudo Security report because they publicized only the low risk iOS apps and some of those from medium risk. Apple Store users are still in the dark since Sudo chose not to divulge the names of high risk apps.
most read
more stories from News
With Google Messages, you can now enjoy a new audio recorder and voice moods, enhancing your messaging experience. Check it out today!
ernest hamiltonThe iOS 17.5 RC release brings several enhancements, including updates to the Podcasts widget, an improved unwanted tracking system, Repair State mode, and more.
ernest hamiltonThe decision to revoke export licenses to Huawei could have significant implications for chip sales by Intel and Qualcomm in the US.
ernest hamiltonExperience innovation like never before with Samsung's upcoming Galaxy S25 Series, set to introduce the groundbreaking 'Battery AI' feature. Learn more in our latest article!
ernest hamiltonThe leaked promo images of the Sony Xperia 1 VI reveal exciting details ahead of its launch. Dive into the details in our latest article!
ernest hamiltonGoogle's enhancement of the two-factor authentication setup process gives users more control over their security. Learn how in our latest article!
ernest hamiltonSamsung might switch from AMD RDNA cores to an in-house GPU for the Exynos 2600 SoC. Stay tuned for updates.
ernest hamiltonDiscover the latest: Google Maps gets a major redesign! Explore the updates in action on Android.
ernest hamilton