• Home
  • iOS
  • News
  • 1,500 iOS Apps are Vulnerable to Man-in-the-Middle Attacks

1,500 iOS Apps are Vulnerable to Man-in-the-Middle Attacks

1,500 iOS Apps are Vulnerable to Man-in-the-Middle Attacks

An HTTPS bug is leaving 1,500 iOS apps vulnerable to man-in-the-middle attacks. Analytics company SourceDNA (via arsTechnica), reports the bug could allow bad actors to intercept data from an iPhone or iPad and access logins and other sensitive information sent via the HTTPS protocol.

1,500 iOS Apps are Vulnerable to Man-in-the-Middle Attacks


A man-in-the-middle attack allows a fake WiFi hotspot to intercept data from devices connecting to it. Usually, this wouldn’t work with secure connections, as the fake hotspot wouldn’t have the correct security certificate. However, the bug discovered by SourceDNA means that the vulnerable apps fail to check the certificate.

Thousands of apps rely on open-source networking code AFNetworking to handle their connection to servers. Version 2.5.1, which debuted in January, contains a bug that doesn’t check HTTPS security certificates.

A fix for the issue was released in version 2.5.2 in March, however, around 1,500 iOS apps are still using the old version.

Vulnerable apps include: Citrix OpenVoice Audio Conferencing, the Alibaba.com mobile app, Movies by Flixster with Rotten Tomatoes, KYBankAgent 3.0, and Revo Restaurant Point of Sale.

While SourceDNA originally kept the name of the vulnerable apps form the public, in order to give the developers time to fix the issue, it has now provided a search tool to allow iOS users to search by developer.

Users who find that any apps they use are still vulnerable to the attack are encouraged to avoid using them on public Wi-Fi hotspots.

If you use the tool and find an app you use is vulnerable, please share the information with others in the comments section below.

The search tool is available at the SourceDNA website.

  1. 다시보기 says:

    41507 292435Thank you a great deal for sharing this with all folks you truly recognize what youre speaking about! Bookmarked. Please in addition talk more than with my web site =). We could have a hyperlink alternate arrangement among us! 628751

  2. 600131 378113There is clearly a whole lot to know about this. I think you created various good points in features also. 135043

  3. nova88 says:

    239598 633076I really enjoyed reading this web site, this is fantastic blog. 22098

  4. 83090 735922I havent checked in here for some time because I thought it was obtaining boring, but the last few posts are actually excellent quality so I guess Ill add you back to my daily bloglist. You deserve it my friend. insurance guides 277164

  5. 493493 320776TeenVogue? Looking for fashion advice, celebrity buzz or beauty trends? Uncover it all in Teen Vogue 121816

Leave a Reply

Your email address will not be published.