Apple has fixed several App Store security issues that first arose last summer. A Google researcher working on his own time discovered in July 2012 that Apple was serving up data over an unencrypted HTTP connection. Six months later, the company finally flipped on the encryption. The security flaw allowed cybercriminals to scan data stored within existing apps on a device and trick a user into downloading a fake app upgrade. Apple has not explained why it took so long to start encrypting communications using public Wi-Fi networks.
Source: https://threatpost.com/apple-finally-fixes-app-store-vulnerabilities-030813/77608/