Here is a little tip for app developers: encrypt everything , especially passwords. Security firm viaForensics fed some popular iPhone and Android apps through its appWatchdog tool and located that Netflix, LinkedIn, and Foursquare all stored account passwords unencrypted. Because the results were first published at the 6th, Foursquare has updated its app to obscure users’ passwords, but other data (similar to search history) remains vulnerable. While those three were the worst offenders, other apps also earned a tremendous fat “fail,” which include the iOS edition of Square which stores signatures, transaction amounts, and the last four digits of bank card numbers unencrypted. Most of this knowledge would take some effort to steal, but it isn’t impossible for a host of ne’er-do-wells to create a chunk malware which can harvest it. Let’s just hope Netflix and LinkedIn patch this hole quickly — very last thing we’d like is someone discovering our secret obsession with Meg Ryan movies.
Korea’s largest ISP plans ‘network fees’ for datahogs like YouTube, internet TV
Google, Microsoft and Netflix want DRM-like encryption in HTML5
