ssl-certificate

Appdome Verifies Hostnames in Certificate Pinning Used in Mobile Apps and Prevents MiTM Attacks

January 09, 2018
There’s never a dull moment on the mobile security front. Several large, consumer-facing, banking apps recently made the news. It turns out that some of their apps were not verifying hostnames in their certificate pinning schemes.

Tags: MitM, Man in the Middle, mobile security, android app, CA certificate, ios app, secure communication, SSL certificate, certificate pinning

Pew Research and Smart Insights Mobile Fact Sheet 2017: Appdome Review

November 07, 2017

With the intensive use of applications on mobile device, it is natural to wonder if the applications are secure. If they are keeping information on the application, device and end user safe? For businesses, security is a top priority as they cannot afford a data breach. What can businesses do to keep their applications and end users secure? Here’s a helpful list to start.

Tags: Data Protection, mobile applications, Data Breach, Malware, jailbreak, mobile security, code obfuscation, rooting, data at rest encryption, SSL certificate, whitelisting, checksums, anti-tampering, anti-debugging

Man in the Middle Attacks (MiTM) on Mobile Apps

October 05, 2016
Man in the middle attacks (MiTM) are a popular method for hackers to get between a sender and a receiver. MiTM attacks, which are a form of session hijacking are not new. However, what might not be known is that mobile devices are vulnerable to MiTM attacks too. In particular, mobile apps are vulnerable to MiTM attacks.

Tags: Data Protection, mobile applications, MitM, Data Breach, Mobile threats, Security, Man in the Middle, mobile security, android app, iOS security, CA certificate, ios app, Android security, SSL certificate, whitelisting, certificate pinning, certificate validation

SSL Certificate Validation and Pinning on Mobile App: Pharmers Hate It

September 21, 2016
Like screenplay writers at Starbucks, SSL is everywhere. You would hope that SSL validation and SSL certificate pinning would be everywhere too. Unfortunately, that’s not yet the case and a lack of SSL certificate validation and SSL certificate pinning weakens the usefulness of a certificate in establishing trust. Pharming unfortunately is also very common and attackers using pharming count on these weaknesses.

Tags: Data Protection, mobile applications, MitM, Data Breach, Appdome Security Suite, mobile security, code obfuscation, android app, iOS security, ios app, Android security, SSL certificate, whitelisting, anti-tampering, malicious app, pharming, certificate pinning, certificate validation

1

Subscribe to Appdome's Blog

Latest Posts

Tags