* this article has solidified a thought i was having trouble articulating until now
* the thing about web apps is that tons of people know how to pentest them, like that's literally what "script kiddies" refers to
* but mobile apps, especially on iOS, are such a closed ecosystem that actually you can get away with writing less secure software, because it's way less likely that a 16-year-old may try to break it
* i think we should inherently distrust the security of anything that is only an app.