Home » Uncategorized » Security Threat: Unencrypted Cookies in Instagram iOS App
121204-instagram

Security Threat: Unencrypted Cookies in Instagram iOS App

Your ads will be inserted here by

Easy Plugin for AdSense.

Please go to the plugin admin page to
Paste your ad code OR
Suppress this ad slot.


If you’re using Instagram to share vintage-style pictures of your cat on your iPhone, you may be opening yourself up to hackers. A security hole has been discovered in the Instagram iOS app that can allow bad guys to gain access to your account, giving them the ability to get data and delete photos.

While the Instagram API uses both non-secure HTTP and secure HTTPs connections, the weird thing is that it uses the non-secure path for your account’s authentication. All it does is store a standard cookie on your device, sent without encryption. What this means is that if you’re using an unsecure connection, like public Wi-Fi at Starbucks, someone could potentially intercept that cookie and use it to authenticate themselves into your account.

The hacker can then utilize a variety of API calls to do all sorts of nasty things with your Instagram account, deleting your #foodporn pics with ease. The sad thing is that the person who discovered this security hole contacted Instagram about it, but hasn’t heard anything back. The solution is actually pretty simple on Instagram’s part: start using secure, encrypted cookies instead.

In the meantime, the actual threat level is pretty low, since it’s unlikely the guy at Starbucks is going to try and hack into your Instagram account, but you should be aware that the threat is there.

[Source]

About Michael Kwan

A freelance writer and tech geek from Vancouver. Find me at michaelkwan.com and follow me on Twitter @michaelkwan.

Check Also

wii-oculus-rift-hoverboard

Try Oculus Rift And Wii To Roam Around On The Back To The Future Hoverboard

Check out how you can fly in virtual space by using an Oculus Rift and a Wii Balance Board.

131129-amz

Amazon Appstore for Android Holiday Deals, Including Free Apps

There are tons of deals from the Amazon Appstore that will be offered starting now and throughout the holiday shopping season. They say that they will have "hundreds of titles that are eitehr free... or available between 50-90% off" the regular price.

131129-google

Black Friday: Google Play Store Apps, Games and Content on Sale All Weekend

Case in point, if you head over to the Google Play Store right now, you'll find that Google is celebrating all Cyber Weekend with discounts on all sorts of content. This includes many popular apps and games

131129-gtab

Black Friday Deal: Samsung Galaxy Tab 3 10.1-Inch for $100 Off

Your ads will be inserted here byEasy Plugin for AdSense.Please go to the plugin admin ...

131128-diy

Arduino Co-Creator Releases Plans for $200 DIY Mobile Phone

Mellis was one of the people who came up with the now hugely popular Arduino platform and now he has come up with plans for people to build their own cell phone for about $200 in parts.

131128-apple

No Discounts for Apple Black Friday, Just Free Gift Cards

If you were hoping to save yourself some cash as you brave the Black Friday shopping crowds, you'll want to go somewhere other than the official Apple Stores.

  • Hiram Rodriguez

    annnd no one cares.