Many mobile application developers are deliberately disabling secure HTTPS protections when sending data from a user’s browser to the server, often leaving sensitive data open to interception and compromise by attackers in the process. One reason appears to be to facilitate the delivery of ads via the applications, a new study by Symantec reveals.
Read full article on Dark Reading