Advertisement
U.S. markets close in 1 hour 41 minutes
  • S&P 500

    5,253.01
    +4.52 (+0.09%)
     
  • Dow 30

    39,786.26
    +26.18 (+0.07%)
     
  • Nasdaq

    16,377.47
    -22.05 (-0.13%)
     
  • Russell 2000

    2,123.33
    +8.98 (+0.42%)
     
  • Crude Oil

    83.01
    +1.66 (+2.04%)
     
  • Gold

    2,242.70
    +30.00 (+1.36%)
     
  • Silver

    25.00
    +0.25 (+1.02%)
     
  • EUR/USD

    1.0796
    -0.0034 (-0.31%)
     
  • 10-Yr Bond

    4.2020
    +0.0060 (+0.14%)
     
  • GBP/USD

    1.2623
    -0.0015 (-0.12%)
     
  • USD/JPY

    151.4010
    +0.1550 (+0.10%)
     
  • Bitcoin USD

    70,972.94
    +2,275.27 (+3.31%)
     
  • CMC Crypto 200

    885.54
    0.00 (0.00%)
     
  • FTSE 100

    7,952.62
    +20.64 (+0.26%)
     
  • Nikkei 225

    40,168.07
    -594.66 (-1.46%)
     

UPDATED: Mailbox, The Super-Popular Email App, DOES NOT Have A Big Security Flaw

mailbox app
mailbox app

Kevin Smith/Business Insider

UPDATE: Behera has issued an update to his post: "After posting this on HackerNews some developers / users feel my hypothesis is wrong and one can not repeat the steps below without having physical access to an user’s phone or locked devices. I agree to this."

The short version of the story is that this isn't a bug, flaw, or anything of the like. If someone physically possesses your phone, they'd have access to this information anyway.

PREVIOUSLY: According to app developer Subhransu Behera, iOS email app Mailbox is a "security fail."

We caught wind of this from 9to5Mac.

Behera found out that anyone with physical access to the phone can connect it to a computer and use a free program called iExplorer to access the app's files.

This little workaround gives someone access to your attachments, contacts, and the contents of your email.

Behera says it's an easy fix: " It’s all about adding few extra lines of codes to their iOS app to increase the security level. iOS SDK gives a developer a list data protection APIs for protecting documents, database, and other sensitive files that consist of confidential information about your users. I would love to try my hands on a better Mailbox iOS app, that is more secure. Until then I have deleted my accounts from Mailbox."

We have reached out to Mailbox for comment and will update when it replies.



More From Business Insider

Advertisement