certificate-pinning

Appdome Verifies Hostnames in Certificate Pinning Used in Mobile Apps and Prevents MiTM Attacks

January 09, 2018
There’s never a dull moment on the mobile security front. Several large, consumer-facing, banking apps recently made the news. It turns out that some of their apps were not verifying hostnames in their certificate pinning schemes.

Tags: MitM, Man in the Middle, mobile security, android app, CA certificate, ios app, secure communication, SSL certificate, certificate pinning

Man in the Middle Attacks (MiTM) on Mobile Apps

October 05, 2016
Man in the middle attacks (MiTM) are a popular method for hackers to get between a sender and a receiver. MiTM attacks, which are a form of session hijacking are not new. However, what might not be known is that mobile devices are vulnerable to MiTM attacks too. In particular, mobile apps are vulnerable to MiTM attacks.

Tags: Data Protection, mobile applications, MitM, Data Breach, Mobile threats, Security, Man in the Middle, mobile security, android app, iOS security, CA certificate, ios app, Android security, SSL certificate, whitelisting, certificate pinning, certificate validation

SSL Certificate Validation and Pinning on Mobile App: Pharmers Hate It

September 21, 2016
Like screenplay writers at Starbucks, SSL is everywhere. You would hope that SSL validation and SSL certificate pinning would be everywhere too. Unfortunately, that’s not yet the case and a lack of SSL certificate validation and SSL certificate pinning weakens the usefulness of a certificate in establishing trust. Pharming unfortunately is also very common and attackers using pharming count on these weaknesses.

Tags: Data Protection, mobile applications, MitM, Data Breach, Appdome Security Suite, mobile security, code obfuscation, android app, iOS security, ios app, Android security, SSL certificate, whitelisting, anti-tampering, malicious app, pharming, certificate pinning, certificate validation

1

Subscribe to Appdome's Blog

Latest Posts

Tags