The 2017 Pwnie Nominee For Most Epic Fail

HTTPSafe Browser

Credit: Kaspersky

As cited in CVE-2016-6231, the Kaspersky “Safe” Browser for iOS failed to validate SSL certificates for any site other than the sites on the known phishing or malware list. This makes sense, of course, because we already know we can trust the good sites, but you never know about the certificates on those shady URLs, you gotta keep an eye on that shit!