Is lack of certificate pinning a severe vulnerability? Is this just fearmongering done for fame? Or is it a valid security issue? In this video I lay out my opinion about it and I'm looking for your input.

link to reddit thread: https://www.reddit.com/r/LiveOverflow...

https://media.ccc.de/v/33c3-7969-shut...
https://www1.cs.fau.de/content/n26
https://www1.cs.fau.de/nomorp
http://www.sueddeutsche.de/digital/ex...

--------------------------------------
Twitter: https://twitter.com/LiveOverflow
Website: http://liveoverflow.com/
Subreddit: https://www.reddit.com/r/LiveOverflow/
Facebook: https://www.facebook.com/LiveOverflow/