Calendar
  • No events
AEC v1.0.4

Cyber Security Info
@Cybersecurityinfo

SSL vulnerabilities in Android applications

August 21, 2014

Share Button

Fire Eye had analyzed more thousand most downloaded free Android applications for common SSL vulnerabilities. The results are quite alarming. Seventy three percent of applications do not verify the validity of SSL certificates and 5% do not verify server hostnames. Moreover 77% of applications use WebKit engine for displaying HTML content and ignore tha known SSL vulnerabilities of WebKit. 

Share Button

Comments