(alexschapiro.com)

561 points bearsyankees | 1 comments | 12 May 25 16:39 UTC | HN request time: 0.246s | source

Show context

koakuma-chan ◴[12 May 25 17:37 UTC] No.43965544[source]▶

>>43964937 (OP) #

I thought Apple was checking apps? How did this go through? In any sane jurisdiction exposing PII like that is illegal.

replies(4): >>43965575 #>>43965622 #>>43965706 #>>43965750 #

1. nixpulvis ◴[12 May 25 17:54 UTC] No.43965750[source]▶

>>43965544 #

This is why Apple security theater leads people to a false sense of security.

Better to make secure operating systems that inform users of bad access patterns and let the developers be free to produce.

Nothing protects you from giving info to a broken backend though, so people should be more cautious and repercussions for insecure backends should be higher.

↑

I hacked a dating app (and how not to treat a security researcher)