Mobile security threats uncovered
Article written by James Allen (pictured), Professional services consultant at Intercity
The mobile market has presented many products that lock down, control, report and monitor business mobile phone fleets. BlackBerry were the original pioneers with their BlackBerry Enterprise Server, which locked down and controlled the handset. Users liked the BlackBerry mainly because it was a true business only handset, used solely for email.
But as technology has improved and handsets have become more feature rich, the market has changed and as a result users want devices that not only receive email, but can access a wide range of consumer services that are available to them. Business and personal factors play a part in this, but in a world of increased mobility the user experience is key to businesses. From discussions with leaders of IT, decisions are mainly driven by top level executives that just want one device for all needs and don’t fully understand security concerns.
Many large enterprises with big budgets and sufficient resources have explored mobile security risks and as a result have invested in mobile device management (MDM) products that bring the BlackBerry type control back on iPhones and other smartphones. Mobile Iron, Airwatch and Xen are all popular products being used for MDM, but in truth, only known to larger organisations. This is mainly due to the extra costs incurred for these products and services.
My observation is that most businesses don’t understand the true potential of mobile security and quite frankly, can’t see what all the fuss is about. It’s easy to enforce a password on handsets and remote wipe via an email system, so to an extent I understand why they would struggle to understand that paying extra costs to restrict services would be beneficial to them.
The big thing that’s missing is basic, hard hitting factual information on what the threats actually are and this is crucial for businesses and senior management teams to understand when purchasing business devices.
So what are the threats to users and businesses?
- The danger of apps – Do end users really understand what these apps are doing behind the scenes and what access they have to personal data? Apps can gain access to company data and leak this sensitive information to the outside world. Leading apps have been seen to transmit passwords, email addresses and payment information including locations. Many people use the same login names and passwords for all their personal services so it’s easier for cyber criminals to gain access to financial and personal services. Gartner predicts that 75% of all mobile security breaches will be the result of mobile app misconfiguration or misuse.
- The danger of malware - A common word in the laptop/PC threat world and is now taking hold in the smartphone arena. Mobile malware is malicious software designed to steal personal information stored on a device through silently watching what is happening on the handset and in some cases even gaining control of the handset. Most mobile malware spreads via malicious apps that exist on the device, gaining extensive permissions. Trojan malware has been seen to then send SMS messages to premium mobile phones services racking up very large unauthorised charges. Information is stolen, which can lead to phishing and fraudulent activity including identity theft and banking fraud. How many users do their banking on the move via the smartphone now days? I know I do.
- The danger of jailbreaking or rooting – Users have to go to extreme lengths to do this, right? Wrong! Clever cyber criminals can now jailbreak handsets without your knowledge. Jailbreaking removes the security limitations imposed by the handset OS vendor and permits root access to the OS file system. The handset then becomes susceptible to malware and corporate and personal data fall seriously under threat.
Organisations that want to secure these threats have two options, either restrict handsets or lock them down completely via an MDM service, which in my opinion limits the user from experiencing the full functionality of the technologies on the handset. The other option is to look at measuring and reporting the threats through mobile data optimisation (MDO).
The way MDO works is that a gateway sits in the path of mobile data in between the device and the internet and scans the data in the network in real-time, actively monitoring the handset for vulnerabilities. This means that threats are dealt with immediately through blocking malicious traffic and providing early warnings of suspicious behaviour. MDO doesn’t blanket all mobile devices with the same security measures, it has the ability to analyse and report on each device individually, providing businesses with the visibility and power over device management.
In a nutshell, we ensure PC’s and laptops are secure and safe, but we are yet to ensure the same for the smartphone and tablet. Mobility is moving forward at a very fast pace with handsets now being used for a wide range of services, ranging from contactless payments through to opening a hotel room door. The risks are there whether the organisation employs COPE or BYOD strategies and actions need to be taken as these threats are only set to increase as the use of the mobile phone evolves.