Thread
:
The Epic Android Thread
View Single Post
Capt'n Corrupt
2011-05-17 , 14:54
Posts: 3,524 | Thanked: 2,958 times | Joined on Oct 2007 @ Delta Quadrant
#
3331
It seems that a major vulnerability has made Android.. uh.. vulnerable:
http://www.ubergizmo.com/2011/05/99-...can-leak-data/
According to one security team: it seems that login authentication 'tokens' are sent in plaintext over the wire rather than SSL.
Now, depending upon the contents of the tokens, this may not be insecure as the contents could potentially be signed themselves.
It doesn't sound good, but I'm interested to hear more.
Quote & Reply
|
The Following User Says Thank You to Capt'n Corrupt For This Useful Post:
danramos
Capt'n Corrupt
View Public Profile
Send a private message to Capt'n Corrupt
Find all posts by Capt'n Corrupt