Especially in recent years, we have done more transactions such as banking with our phones, so more important information is passing through our phones. For these reasons, a successful hacker has targeted smartphones for data theft. Google Play Store and Android criticized that Apple apps are actually at risk of data theft because of the lack of control over the installed apps.
Although the apps installed on the iOS App Store are controlled, apparently this control only prevents hackers from installing their own theft applications. But there is another important risk, which is clear in the practice of well-intentioned developers. These developers may be victims of exploits in their applications, though they are not an intentional theft.
It has even reached such a size that a large number of data-intolerant applications are said to have become popular. The Will.Strafach entrepreneur’s verify.ly named service discovered this kind of openness in 76 popular applications on the iOS App Store. In the research conducted by examining the machine codes of the applications, it has emerged that some of these applications have even used App Transport Security. Recall that App Transport Security is a data security system made by Apple for developers.
In Strafach’s statement there are some very critical points. According to the statement, the total number of 76 applications we have mentioned, which may lead to data theft, is about 18 million. This means that some 18 million iOS users are at risk for some sensitive information. Another important point is who is wrong and how to fix it.According to Strafach, although App Transport Security is developed by Apple, these vulnerabilities can not be turned off by Apple. Because if an application publishes an update that forces high security, applications may become unable to accept some fake security certificates because they are not configured accordingly. According to Strafach, closing these deficits falls into developers of applications.
Some of the low risk categories are: ooVoo, ViaVideo, Snap Upload for Snapchat, Uploader Free for Snapchat, Cheetah Browser. It is stated that applications in the medium and high risk categories will not be explained in terms of security and will be communicated to the developers. IOS users should either use a secure VPN to protect themselves until the vulnerabilities are closed, or – if they can not use VPN – it is recommended to connect internets over the operator line (cellular) instead of WiFi.