Security News This Week: At Least 76 iOS Apps Are Vulnerable to Attacks

There's a lot going on in the world, but the slow march of cybersecurity research and incidents plods on no matter what else is happening. Seventy-six iOS apps are vulnerable to man-in-the-middle data interception attacks, thanks to sloppy configuration that could allow a forged certificate to be authenticated and decrypt data protected by the Transport Layer Security protocol, thus exposing it. Will Strafach, CEO of mobile security company Sudo Security Group, found the compromised apps while the company was developing its mobile app analysis product. Apple has advocated that iOS developers use its App Transport Security protocol to ensure that every iOS app implements TLS, but ATS alone still doesn't resolve certificate verification issues. Arby’s Restaurant Group "immediately notified law enforcement and enlisted the expertise of leading security experts, including Mandiant," the company told Krebs on Security.