Many organisations have moved towards apps as a sound decision to allow increased "channel shift" for their customers from offline to online. This report outlines the increasing threats in security that apps pose in a mobile engaged world and from reading the report it seems it is largely down to some relatively simple techniques and protocols that could been embraced. If you have an app or are about to commission one then this is a good read for you.
So, what are the worst threats out there? The report listed five threats that had either emerged, or gotten worse, over the last few months: Android GMBot - A spyware, usually from third-party app stores, that tries to trick users into giving up their bank credentials. AceDeceiver iOS malware - Malware that works to steal a user's Apple ID. SideStepper iOS vulnerability - A technique that works in between the MDM server and a device to install unapproved applications. High-severity OpenSSL issues - Two OpenSSL flaws that can either decrypt traffic or corrupt memory. Marcher Android malware - A malware that pretends to be a bank website in hopes that users will give up their login credentials.