About 1,500 iOS apps have an HTTPS vulnerability leaving them open to attack, according to analytics service SourceDNA. The flaw stems from a weakness in version 2.5.1 of AFNetworking, an open-source code which provides networking capabilities for apps. Apps containing the code may not properly validate SSL certificates, leaving users of apps like Movies by Flixster with Rotten Tomatoes and Citrix OpenVoice Audio Conferencing vulnerable to spying over public Wi-Fi networks. AFNetworking has updated version 2.5.2 to fix the issue and companies like Yahoo, Microsoft and Uber have already issued fixes for affected apps. The full list of vulnerable apps still using version 2.5.1 has been kept private, but SourceDNA provides a search tool allowing users to see which of their apps might be affected. [via Ars Technica]
Latest News
- Apple granted patent for Lightning port replacement
- iPhone 13 Pro: 120Hz LTPO Display and smaller notch
- Apple may launch foldable iPhone in 2023: Kuo
- Apple TV+ drama series “The Mosquito Coast” to release on April 30
- Apple to release OLED iPad Pro & OLED 16″ MacBook Pro next year
- iPhone 11 free display replacement program
- iPhone XR vs iPhone 11: Budget shopping guide!
- Apple March Event: AirPods, Apple TV, iPad Pro
- MacX DVD Ripper Pro: Lifetime License is 63% Off
- The Sennheiser Momentum True Wireless 2 Earbuds is $50 Off Today