[RitaOK]

Where is the answer for avoiding this stuff? Smoke signals?

[Swordmaker]

Dozens of not-so-popular "popular" iPhone and iPad Apps are exposing their users to man-in-the-middle attacks if the user uses them on an insecure WIFI network because the poorly written app doesn't properly validate authentication certificates. Although the discover of these flawed apps reported this problem to the publishers of these apps 90 days ago and some did update their apps to correct the authentication process, others have not. He advises to not use these apps until the publishers update them to be safe. I recommend you do not use any app with a risk of exposing financial or password exposure on ANY external WIFI network. — PING!

Thanks to TheBattman for the heads up.

Apple iOS Security Alert
Ping!

The latest Apple/Mac/iOS Pings can be found by searching Keyword "ApplePingList" on FreeRepublic's Search.

If you want on or off the Mac Ping List, Freepmail me

[Swordmaker]

Here is a list of the Oh so "popular" iOS Apps that the article claims you should worry about because they are mid and high risk to exposing some data if used on an insecure WIFI public network. Notice how "popular" these apps are...

• “HipChat — Free group chat for teams & business” by HipChat, Inc. (CVE-2017–8058) - FIXED
• “Foxit PDF — PDF reader, editor, form, signature” by Foxit Corporation (CVE-2017–8059) - FIXED
• “Panda Mobile Security” by Panda Security, S.L. (CVE-2017–8060)
• “Think Mutual Bank — Mobile Banking App” by Think Mutual Bank (CVE-2017–3213)
• “Emirates NBD” and “Emirates NBD KSA” by Emirates NBD Bank P.J.S.C (CVE-2017–5915)
• “State Bank Anywhere” by State Bank of India (CVE-2017–5901)
• “Dollar Bank Mobile” by Dollar Bank (CVE-2017–5905)
• "PayQuicker” by PayQuicker (CVE-2017–5902)
• “EFS Mobile Driver Source” by Electronic Funds Source LLC (CVE-2017–5909)
• “Diabetes in Check: Blood Glucose & Carb Tracker” by Everyday Health, Inc (CVE-2017–5906)
• “Supermóvil” by Banco Santander Mexico SA — Mexico (CVE-2017–5911)
• “FOREXTrader for iPhone” by FOREX.com (CVE-2017–5912)
• “TradeKing Forex for iPhone” by TradeKing (CVE-2017–5913)
• “Banque Zitouna” by DOT IT (CVE-2017–5914)
• “America’s First FCU Mobile Banking” by America’s First Federal Credit Union (CVE-2017–5916)
• “BCR Móvil” by Banco de Costa Rica (CVE-2017–5918)
• “21st Century Insurance” by 21st Century Insurance (CVE-2017–5919)
• ”Indiana Voters” by Quest Information Systems
• “Dolphin Web Browser –Fast Private Internet Search” by MoboTap Inc. (“ellentube” by Warner Bros.
• “Yo.” by Life Before Us, LLC
• “Radio Javan” by RADIO JAVAN INC.
• “ellentube” by Warner Bros.
• “Zipongo — Healthy Recipes and Grocery Deals” by Zipongo, Inc.
• “Interval International” by Interval International
• “ShopWell — Healthy Diet & Grocery Food Scanner” by YottaMark, Inc.
• “PUMATRAC” by PUMA AG

Ho hum . . . so disappointing that someone will find my password to EllenTube and watch Ellen Degenerate. . .

[The Westerner]

Disappointed to see Dolphin on the list. Love that browser for watching Youtube videos and doing searches. Often it’s faster than Safari on my machine, but not always.