A substantial number of apps available from Google Play had serious flaws in their Secure Sockets Layer implementations and thus were vulnerable to hack attacks, European researchers found. The team downloaded 13,500 popular free apps to study their use of the SSL or Transport Layer Security protocols, with a particular focus on the apps' vulnerabilities against Man-in-the-Middle attacks due to the inadequate or incorrect use of SSL. The findings were grim. There were 1,074 apps containing SSL-specific code that were potentially vulnerable to MITM attacks.
No comments:
Post a Comment