With the help of the Fortify Mobile Research team, we performed binary vulnerability analysis across publicly available mobile apps from 30 major airlines around the world and found that every app had at least one vulnerability.
Last year, an Apache Struts vulnerability caused the disclosure of millions of users' sensitive data. Now we have a new critical Struts vulnerability and organizations are scrambling to see if they are vulnerable.
Sometimes it seems as if security folk simply can’t shut off the part of their brain that looks for trouble. Unfortunately, years of questionable web site development tactics have made trouble plenty easy to find. See if any of these misbehaviors ring a bell.