Definition[]
An insecure mobile interface
| “ | is present when easy to guess credentials are used or account enumeration is possible. Insecure mobile interfaces are easy to discover by simply reviewing the connection to the wireless networks and identifying if SSL is in use or by using the password reset mechanism to identify valid accounts which can lead to account enumeration. An insecure mobile interface could lead to compromise of user data and control over the device. | ” |