Dear Valued Visitor,

We have noticed that you are using an ad blocker software.

Although advertisements on the web pages may degrade your experience, our business certainly depends on them and we can only keep providing you high-quality research based articles as long as we can display ads on our pages.

To view this article, you can disable your ad blocker and refresh this page or simply login.

We only allow registered users to use ad blockers. You can sign up for free by clicking here or you can login if you are already a member.

Apple Inc. (AAPL) Fixes App Store Vulnerability – 6 Months Later

Apple Inc. (NASDAQ:AAPL) – one of the most-popular stock plays by hedge funds we track – did not include certain security measures when it launched its App Store for consumers who access the marketplace over Wi-fi networks. But a huge vulnerability in the connection has prompted Apple to make some changes by adding encryption. While in itself that isn’t much news, it is all about timing in this case – the vulnerability was brought to Cupertino’s attention more than six months ago, and it’s possible that quite a few hijacks of App Store visitors’ connections may have occurred in the meantime.

Apple Inc. (NASDAQ:AAPL) so far has not commented as to why it took so long to fix this, but the vulnerability is pretty significant. It was discovered by a security researcher at Google Inc. (NASDAQ:GOOG) who noted this opening during his spare time, and it allows hackers to potentially hijack Wi-fi connections to the App Store, steal passwords and possibly install very expensive or unwanted applications, and compromised user privacy because the unencrypted connection revealed lists of downloaded applications on the connected device.

A Leading Company Cheaper Than 90% Of Blue Chips... And It Recently Bounced 12%Attackers who are connected to the same public Wi-fi network as the device can install applications without consent, some of which list prices as high as $1,000 – which can be problematic for the device user, as Apple Inc. (NASDAQ:AAPL) has a policy to not offer refunds. Apple did post recently that it has changed the Wi-fi security connections by adding HTTPS by default to provide mobile encryption.

Elie Bursztein, who introduced the vulnerability to Apple Inc. (NASDAQ:AAPL) in July, said, “Many companies don’t realize that HTTPS is important for mobile apps,” he said. “Providing a concrete example seems a good way to attract developer attention to the issue.”

What are your thoughts about this vulnerability and what do you think this means or reflects on Apple Inc. (NASDAQ:AAPL)?  We’d like your thoughts in the comments section below.

DISCLOSURE: I own no positions in any stock mentioned.

Please see these related AAPL articles:

Apple vs. Samsung: Is Android Secure Enough?

Can Apple be Trusted in the Courtroom?

Apple and Nokia are Frenemies vs. Samsung

Loading Comments...