The Latest in IT Security

Starbucks admits its iPhone app stores unencrypted user passwords

16
Jan
2014

When you type a password into a mobile payment app, youd probably expect it to protect that password somehow. But it seems that the Starbucks app for iOS doesnt actually lock its usernames and passwords down. According to a Computerworld report, company executives admitted today that the mobile app stores passwords in clear text, with no encryption of any sort. Whats more, it appears that Starbucks may not intend to actually fix the problem. Daniel Wood, the security researcher who originally discovered the vulnerabiility in November, says that the latest version of the app still includes the same unencrypted passwords and usernames.

Tags:  
Comments are closed.

Categories

MONDAY, JANUARY 25, 2021
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments