Score Of Popular Apple iOS Apps Are Prone To Data Breach; Threatens Sensitive Financial & Banking Credentials
Regin OlimberioA score of popular apps from Apple Store with at least 18 million downloads were included in a security report due to vulnerabilities against data interception. Sudo Security Group found out that these iOS apps are using their back-end services to implement encryptions. This process is thought to be dangerous because a third-party with proper knowledge can easily extract and intercept the incoming or outgoing data.
In technical perspective, these iOS apps can be tricked through a proxy with a fake certificate. Most of the apps are using Transport Layer Security which offers a chance for data un-encryption. Not only are the users' credentials being compromised, but so are their billing details, location and virtual addresses.
The iOS apps in scrutiny are using App Transport Security or ATS which was introduced way back in iOS 9, Sudo's Will Strafach reported. ATS forces an app to connect through HTTPS connections where "S" stands for secured data encryption. Otherwise plain HTTP is the traditional low-encrypted data handler.
To make matters worse, Sudo Security said that the iOS apps deemed vulnerable are ranging from simple add-ons to social media apps to data-sensitive banking apps like FirstBank PR. The report also stated that there is a total of 76 apps assessed. They sub-categorized these iOS apps into three classifications depending on the level of vulnerability, MacRumors said.
Of the total number, 33 were classified as low risk because they only store partially sensitive data like emails and physical address. 24 others were placed under medium risk class while the remaining 19 were deemed high risk. High risk apps are those that contain very sensitive data like financial and banking records.
Meanwhile, there is a debate over the Sudo Security report because they publicized only the low risk iOS apps and some of those from medium risk. Apple Store users are still in the dark since Sudo chose not to divulge the names of high risk apps.
more stories from News
Discover the future of smartphone audio with Moondrop's MIAD 01. Explore its dual audio jacks and premium DACs in this in-depth review. Ready to elevate your music experience? Read now!
ernest hamiltonUnveiling Android's AI evolution with Gemini integration, Discover how AI is poised to combat scams and revolutionize security. Stay informed and secure!
ernest hamiltonDiscover how Samsung's innovative Knox Journals are revolutionizing user privacy and data control. Learn how cutting-edge features empower users to take control of their devices and safeguard their personal information.
ernest hamiltonThe latest AI breakthroughs unveiled at Google I/O 2024, from Project Astra's revolutionary AI assistance to Gemini integration in Google Workspace and Android 15 innovations. Dive into the future of technology with seamless AI experiences.
ernest hamiltonGoogle teases a new AI camera feature ahead of I/O 2024, offering real-time contextual recognition and voice interaction on Pixel devices. Discover how this innovative technology enhances your mobile experience.
ernest hamiltonDiscover the latest insights into Apple's highly anticipated iPhone 16 Pro, from its innovative display and camera advancements to powerful performance and software integration. Stay informed as anticipation builds for the official unveiling.
ernest hamiltonDiscover how a groundbreaking breakthrough in phononics is poised to revolutionize wireless technology, making devices smaller and more efficient. Explore the potential of giant phononic nonlinearities and their implications for consumer electronics. Dive into the future of connectivity today!
ernest hamiltonExplore the potential impact of Apple's collaboration with OpenAI on iOS 18. From enhanced messaging to smarter voice assistants, dive into the future of AI-powered experiences. Stay informed—read on
ernest hamilton