OT: WARNING: NFL Mobile app is "a spear phisher's dream"
Somehow I doubt the Worldwide Leader is going to report on this...
MGoUsers should be aware that there is a serious security vulnerability in the NFL Mobile app -- in both Apple iOS and Android versions. See here:
http://arstechnica.com/security/2015/01/lack-of-encryption-makes-offici…
Basically, the app transmits user data in the clear, as plain text. Ars Technica is pretty much the best technology site out there, and does real journalism -- if they think this is a problem, it is. How the NFL could allow such an obvious and blisteringly stupid vulnerability to make it to the public is beyond me.
If you still want to use the app, then provide as little information as possible about yourself, and be sure to use a unique username and password that you don't (and never will) use for anything else.
January 27th, 2015 at 1:30 PM ^
Sent from MGoBlog HD for iPhone & iPad
January 27th, 2015 at 1:31 PM ^
So you're saying the shield has a hole in it...
That's just incompetence. As I'm a software engineer, I must look into this!
January 27th, 2015 at 1:37 PM ^
January 27th, 2015 at 2:06 PM ^
Definitely not a college ranking analyst. Nor did I claim to be.
However, I do enjoy reading and looking into things.
I apologize if it seemed as if I was implying in any way that I am an college rankings professional. I didn't feel it was neccessary to have such a qualification to render an opinion based largely on the opinions of real experts.
Bottom line: My personal knowledge of how colleges should be ranked is almost entirely worthless.
January 27th, 2015 at 2:08 PM ^
January 27th, 2015 at 1:32 PM ^
This goes for the fantasy app too I'm assuming?
January 27th, 2015 at 1:43 PM ^
The article doesn't mention the fantasy app, which is a different app. But it is from the same source, so it's certainly possible it has the same problem.
January 27th, 2015 at 1:33 PM ^
Came pre-installed on my phone and I can't uninstall it.
I never use it, it's just bloatware
January 27th, 2015 at 1:45 PM ^
I'll have to get it off the iPad when I get home - I hardly ever use it anyway, especially now that I am convinced that the in-game highlights to which it occasionally links will now include video of locker room attendants going to the bathroom on their way to deliver equipment. That aside, this has a very NFL feel to it - nice enough on the surface but something incomprehensibly dumb just beneath it.
January 27th, 2015 at 1:48 PM ^
Just uninstalled the NFL mobile app. Useless to me now anyway.
January 27th, 2015 at 2:17 PM ^
Only $5.99 a minute!
January 27th, 2015 at 2:48 PM ^
January 27th, 2015 at 3:16 PM ^
I don't have that issue because I rooted my Android and uninstalled that bloatware NFL Mobile app. Now maybe I opened up new vulnerabilities in the process but I don't think so.
January 27th, 2015 at 3:17 PM ^
To use the NFl app again. Take a little air out of it, let the clubhouse attendant piss on it, give it to any number of NFL players to beat the shit out of it, and you are ready to go again
January 27th, 2015 at 4:40 PM ^
As long as the hackers stick to small things like identity theft or domestic abuse and stay away from the large issues like under inflated footballs the NFL is willing to let it slide.