SSL/TSL flaw

iTunes Security Flaw Sees Unencrypted Password Transmissions: Researcher

iTunes users on Windows are vulnerable to a serious SSL certificate flaw that allows hackers to intercept their passwords, which are easy to intercept because Apple doesn’t hash passwords before sending them to the server. This leaves the SSL connection vulnerable to a man-in-the-middle attack, according to security researcher Mark Loman as reported by Dutch...