Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

76 Popular Apps Vulnerable to Data Interception, Warns iOS Security Researcher

Kabeyun said:
Maybe Apple's screeners shoulda woulda coulda, but it's completely fair for Apple to advertise iOS as safest and macOS as most secure vs major competitors. No guarantees ever, they don't claim it, and people don't expect a guarantee.

This problem exists in an order of magnitude greater numbers in Google Play. Your position seems to be that Apple has no right to market its more secure App Store as more secure unless is can guarantee zero exploits. Sure, bad stuff can get through, but if your main concern is the safety of offerings, you'll pick the App Store over Google Play every time. Inversely, Google isn't absolved of dealing with appsec just because they don't advertise it as an asset.
Click to expand...
I'm not sure why apple can't advertise ios as safe, given the millions of apps in the app store, some small percentage have vulnerability issue. Absolute security is not a destination it's a process. In the same way a 5 start auto rating by NHTSA does not mean no deaths in accidents for that vehicle.

On another note, I'm going to start using LTE more instead of wifi.
 
  • Like
Reactions: Kabeyun
I7guy said:
I'm not sure why apple can't advertise ios as safe, given the millions of apps in the app store, some small percentage have vulnerability issue. Absolute security is not a destination it's a process. In the same way a 5 start auto rating by NHTSA does not mean no deaths in accidents for that vehicle.

On another note, I'm going to start using LTE more instead of wifi.
Click to expand...
I knew there was a better car analogy somewhere!

Cellular is better, at least compared to open WiFi, but get a respected VPN service if you take security seriously.
 
  • Like
Reactions: I7guy
manu chao said:
In the medium term, it would be nice if all web connections would use HTTPS, but I don't think Apple could require this at this moment, there are too many third-party web services/web pages (ie, not controlled by the app developer) that don't allow for HTTPS. What Apple should try to enforce is that all web traffic that sends critical information is using HTTPS but that might be hard to test for.
Click to expand...
I wonder how quickly that would change if a web service cannot be accessed anymore. Or if it can be accessed, but iOS gives you an alert "your connection is unsafe; your data could be read by any hacker nearby, by your friendly ISP, or by your friendly government".
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back