Tumblr issues security update for iPhone and iPad app

News

Tumblr issues security update for iPhone and iPad app

Warwick Ashford

Tumblr has released an update to the iOS version of its app for iPhones and iPads that includes a "very important security update" to fix a flaw that allowed passwords to be compromised.

The move comes less than a week since the release of fresh versions of the app for Apple and Android devices.

security.jpg

No emergency update has been issued for the Android version of the app, indicating the flaw is confined to the iOS version.

In a blog post, the Yahoo-owned microblogging site urged users of its iOS app to download the update and change their passwords on the site as well as on other sites where the same password is used.

“It’s also good practice to use different passwords across different services by using an app like 1Password or LastPass,” the blog post said, without giving much detail about the flaw.

According to a footnote in the blog post, the flaw allowed passwords to be “sniffed” while in transit.

The microblogging site, which claims more than 300 million monthly unique visitors, was acquired by Yahoo last month for $1.1bn.

Analysts said the acquisition will give Yahoo a thriving social-networking and communications hub and access to younger users as the company battles to regain market share from Google and Facebook.

The deal is among several similar acquisitions under the new leadership of chief executive Marissa Mayer and her strategy to create a coherent mobile strategy to reverse years of declining key display advertising revenue.

However, the company has been hit by security issues in recent months, with Yahoo warning that the identity details of up to 22 million users may have been compromised when attackers hacked into its computer systems in May.

Less than two weeks later, BT announced it would replace Yahoo Mail with its own email service for its six million broadband customers after complaints about hijacked accounts.


Email Alerts

Register now to receive ComputerWeekly.com IT-related news, guides and more, delivered to your inbox.
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
 

COMMENTS powered by Disqus  //  Commenting policy