Report Offensive Message

If there security metrics for vetting app store submissions has the same track record as there platform patching history, they really need to up there testing. With Apple taking first place away from Oracle as the most vulnerable first party developer.. not a lot of inspiration there. It seems it's more about "does it not crash on the Iphone and make us look bad?" or "does it conflict with our own product offerings or future plans?".

The problem here specifically is that malware does not always come as a trojan download. Apple's vetting can knock out addzilla and intentionally malicious apps but it's doing nothing for approved but vulnerable apps and the rest of the potential attack vectors.

Now, having updates delivered centrally does add benefit to the end user. I'm focusing on Apple's vetting process here specifically.