Please correct me if I'm wrong. So, the applications are just basically websites that look like applications? If someone claims to have an awesome all-in-one instant messaging program, they can just simply record our log-in and password, and use it with mal-intentions. It's definitely secure for the iPhone so that it doesn't compromise the system, but I still don't see how it's secure for the user? That means any joe-shmoe can write an "app" for it. And its not like you're downloading it to your phone, but you're actually logging onto them. Can someone please clarify my ignorance if any.