Threat Post

Lack of Certificate Pinning Exposes Encrypted iOS Gmail App Communication

Google has failed to implement certificate pinning in its official iOS Gmail application, which could enable Man-in-the-Middle attacks exposing encrypted user communications. UPDATE: Updated with ...
Network World

Apple patches iOS security certificate flaw for iPhones, iPads

The latest iOS update corrects a security flaw in how Apple’s mobile OS handled security certificates. Without it, hackers can create their own certifcates, opening iPhone and iPad sessions to capture ...
Threat Post

Apple Fixes Certificate Validation Flaw in iOS

Apple on Friday quietly pushed out a security update to iOS that restores some certificate-validation checks that had apparently been missing from the operating system for an unspecified amount of ...