Evan Schuman reports:
When Starbucks published the new version of its iOS mobile app yesterday to fix its passwords-in-clear-text problem, it demonstrated a seemingly awesome ability to correct a serious security issue in a single day.
But was it truly awesome? Not if it knew about the security hole for months. Not if it knew about it before it published the prior iOS app update back on May 2, 2013.
Read more on Computerworld.
And then trot on over to The Street to read Rocco Pendola’s commentary on how a media report (not the one mentioned above) misled its readers.