HACKINTOSH.ORG | Macintosh discussion forums

Macintosh News => iPhone/iPod/iPad News => Topic started by: HCK on July 24, 2014, 09:00:31 am



Title: CNN iPhone app exposing login info of its iReporters unencrypted, according to security researchers
Post by: HCK on July 24, 2014, 09:00:31 am
CNN iPhone app exposing login info of its iReporters unencrypted, according to security researchers

Security researchers at Zscaler claim to have found a security flaw in CNN’s iPhone app that exposes personal login and passwords of its users. The CNN app for iPhone, which includes an iReport feature that allows users to sign-up and submit news stories, is reportedly not using SSL encryption for registration/login and SSL certificate pinning […]<img alt="" border="0" src="http://pixel.wp.com/b.gif?host=9to5mac.com&blog=22754319&post=333368&subd=9to5mac&ref=&feed=1" width="1" height="1" />

Source: CNN iPhone app exposing login info of its iReporters unencrypted, according to security researchers (http://feedproxy.google.com/~r/9To5Mac-MacAllDay/~3/RMxWLhMHmN0/)