Author: Cyberthreat Blog

The “Oritani Mobile Banking” by Oritani Bank app 3.0.0 — aka oritani-mobile-banking/id778851066 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof...

The “Community State Bank – Lamar Mobile Banking” by Community State Bank – Lamar app 3.0.3 — aka community-state-bank-lamar-mobile-banking/id1083927885 for iOS does not verify X.509 certificates...

The “PCSB BANK Mobile” by PCSB Bank app 3.0.4 — aka pcsb-bank-mobile/id1067472090 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and...

The “FSBY Mobile Banking” by First State Bank of Yoakum TX app 3.0.0 — aka fsby-mobile-banking/id899136434 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers...

The “Morton Credit Union Mobile Banking” by Morton Credit Union app 3.0.1 — aka morton-credit-union-mobile-banking/id1119623070 for iOS does not verify X.509 certificates from SSL servers, which allows...