Equifax, Western Union, Priceline settle with New York attorney general over insecure mobile apps

New York’s attorney general has settled with five tech and financial giants, requiring each company to implement basic security on their mobile apps.

The settlements force Credit Sesame, Equifax (yes, that Equifax), Priceline, Spark Networks and Western Union to ensure data sent between the app and their servers are encrypted. Specifically, the attorney general said their apps “could have allowed sensitive information entered by users — such as passwords, social security numbers, credit card numbers, and bank account numbers — to be intercepted by eavesdroppers employing simple and well-publicized techniques.”

In other words, their mobile apps “all failed” to properly roll out and implement HTTPS, one of the barest minimum security measures in any modern app’s security.


Recommended PRODUCTS
  • Learn how you can easily create mobile apps to generate passive income.
  • Create an app for iPhone or android without coding affordable easy.
  • Are you frustrated that your expensive karoke player does not let you play.
  • Unleash Your Ad Daily To Thousands Of Responsive Mobile Phone Users
  • A non-technical guide to the world of Augmented Reality.
  • Stop Living With The Unnecessary Setbacks Of Bad Credit.
  • The Latest Boat Design Software Start building your dream Boat In 5 Mins
  • Getting Paid To Test Apps With AppCoiner Is As Simple As 1,2,3
  • Design an eye-catching cover easily and without worry right now
  • Clean Up, Speed Up and Optimize Your PC In Just 2 Clicks. 1 PC Cleaner
  • CDL test answers driver license test questions and answers hazmat endorsement
  • Latest restaurant management information and restaurant marketing ideas for owners and managers
  • Clickbank Ads
     

    HTTPS certificates (also known as SSL/TLS certificates) encrypt data between a device, like your phone or computer, and a website or app server, ensuring any sensitive data, like credit card numbers or passwords, can’t be intercepted as it travels over the internet — whether that’s someone on the same coffee shop Wi-Fi network or your nearest federal intelligence agency.

    These certificates are more common than ever, not least because when they’re not incredibly cheap, they’re completely free — and most modern browsers these days will bluntly tell you when a website is “not secure.” Apps are no different, but without a green padlock in your browser window, there’s often very little to know for sure on the face of it that your data is traversing the internet securely.

    At least, with financial, banking and dating apps — you’d just assume, right? Bzzt, wrong.

    “Although each company represented to users that it used reasonable security measures to protect their information, the companies failed to sufficiently test whether their mobile apps had this vulnerability,” the office of attorney general Barbara Underwood said in a statement. “Today’s settlements require each company to implement comprehensive security programs to protect user information.”

    The apps were picked out after an extensive batch of app testing in an effort to find security issues before incidents happen. Underwood’s office follows in the footsteps of federal enforcement in recent years by the Federal Trade Commission, which brought action against several app makers — including Credit Karma and Fandango — for failing to properly implement HTTPS certificates.

    In taking action, the attorney general gets to keep closer tabs on the companies going forward to make sure they’re not flouting their data security responsibilities.

    Original Article : HERE ; This post was curated & posted using : RealSpecific

     


    Recommended PRODUCTS
  • Learn how you can easily create mobile apps to generate passive income.
  • Create an app for iPhone or android without coding affordable easy.
  • Stop Living With The Unnecessary Setbacks Of Bad Credit.
  • The Latest Boat Design Software Start building your dream Boat In 5 Mins
  • Getting Paid To Test Apps With AppCoiner Is As Simple As 1,2,3
  • A non-technical guide to the world of Augmented Reality.
  • Unleash Your Ad Daily To Thousands Of Responsive Mobile Phone Users
  • Are you frustrated that your expensive karoke player does not let you play.
  • The scientifically proven way of adding inches of real height at any age.
  • Helps You Get Into The Center Of A Profitable Market In Real Estate Industry.
  • Why Can't Doctors Cure Your Ms I Think I Know... Dr. Gary M. Levin
  • Find a plan that works for you and make that house, cabin, garage or workshop project.
  • Learn why you must make yourself a MAGNET for the things you truly desire in life.
  • Clickbank Ads
     

    Thank you for taking the time to read our article.

    If you enjoyed our content, we'd really appreciate some "love" with a share or two.

    And ... Don't forget to have fun!

    Recommended

    Content Domination Course Offer

    How to develop a content plan that works for you, hire knowledgeable writers at industry low rates, and how to optimize your articles in a way that search engines love.

    Unleash The Fortune Within

    Unleash The Fortune Within is an E-book that helps you gain the clarity and practical guidance you need to live your dream life, manifest your desires and unleash your inner fortune.

    Leave a Reply