The data exposed by the vulnerability in each of the applications varied in sensitivity. For just less than half -- 33 of the applications -- the risk was relatively low, as most of the data was "partially sensitive analytics data," Strafach said. These apps included a number of third-party "uploader" apps for Snapchat (which exposed Snapchat usernames and passwords) and the Vice News app, among others. In 24 cases, the exposed data included login credentials or session tokens that would allow an attacker to hijack the account associated with the application, though those accounts were not tied to highly sensitive data. However, the remaining 19 applications left sensitive data exposed to attack. In these cases, Strafach "confirmed ability to intercept financial or medical service login credentials and/or session authentication tokens for logged in users."
- Too much white space, huge margins, too little information
- Text is indistinguishable from controls
- Text in full-CAPS
- Certain controls cannot be easily understood (like on/off states for check boxes or elements like tabs)
- Everything presented in shades of gray or using a severely and artificially limited palette
- Often awful fonts suitable only for HiDPI devices (Windows 10 modern apps are a prime example)
- Cannot be controlled by keyboard
- Very little customizability if any
How would Slashdotters explain the proliferation and existance of such unusable user interfaces and design choices? And also, do you agree?