mitm

Appdome Verifies Hostnames in Certificate Pinning Used in Mobile Apps and Prevents MiTM Attacks

January 09, 2018
There’s never a dull moment on the mobile security front. Several large, consumer-facing, banking apps recently made the news. It turns out that some of their apps were not verifying hostnames in their certificate pinning schemes.

Tags: MitM, Man in the Middle, mobile security, android app, CA certificate, ios app, secure communication, SSL certificate, certificate pinning

Man in the Middle Attacks (MiTM) on Mobile Apps

October 05, 2016
Man in the middle attacks (MiTM) are a popular method for hackers to get between a sender and a receiver. MiTM attacks, which are a form of session hijacking are not new. However, what might not be known is that mobile devices are vulnerable to MiTM attacks too. In particular, mobile apps are vulnerable to MiTM attacks.

Tags: Data Protection, mobile applications, MitM, Data Breach, Mobile threats, Security, Man in the Middle, mobile security, android app, iOS security, CA certificate, ios app, Android security, SSL certificate, whitelisting, certificate pinning, certificate validation

SSL Certificate Validation and Pinning on Mobile App: Pharmers Hate It

September 21, 2016
Like screenplay writers at Starbucks, SSL is everywhere. You would hope that SSL validation and SSL certificate pinning would be everywhere too. Unfortunately, that’s not yet the case and a lack of SSL certificate validation and SSL certificate pinning weakens the usefulness of a certificate in establishing trust. Pharming unfortunately is also very common and attackers using pharming count on these weaknesses.

Tags: Data Protection, mobile applications, MitM, Data Breach, Appdome Security Suite, mobile security, code obfuscation, android app, iOS security, ios app, Android security, SSL certificate, whitelisting, anti-tampering, malicious app, pharming, certificate pinning, certificate validation

Gartner's Take on Mobile Security Best Practices

April 04, 2016
In a newly released research note, Gartner discusses mobile security as it applies to consumer facing apps. The piece, entitled “Avoiding Mobile App Development Security Pitfalls – March 2016” covers various aspects of the mobile app development landscape in detail,...

Tags: BYOD, mobile applications, app wrapping, MitM, Data Breach, Fusion, Man in the Middle, Malware, mobile security, devops, Gartner, iOS SDK, Android SDK, source code, enterprise apps

YiSpecter & Internet Traffic Hijacking

October 13, 2015
The latest on the YiSpecter malware – a malicious code capable of infecting non-jailbroken iOS devices – presents an interesting dilemma. Not only does it conclusively dispel the notion that a device’s official factory configuration insulates it from software abuses,...

Tags: MitM, Mobile Banking Apps, Fusion, Security, Man in the Middle, Malware, mobile security, anti-tampering, phishing, malicious app, YiSpecter

1 2

Subscribe to Appdome's Blog

Latest Posts

Tags