Mobile device security: A new frontier for hackers

NJVC Platform as a Service to Include Google Geospatial Services for NCOIC Geospatial Community Cloud Project in Support of Disaster Relief Efforts

By G C Network | July 9, 2013

CHANTILLY, Va., July 9, 2013 — NJVC® was selected by Network Centric Operations Industry Consortium (NCOIC) to provide the platform as a service (PaaS) element of a cloud-computing-based humanitarian assistance…

Fathers of Clouds – A Tribute

By G C Network | June 14, 2013

(A guest post from Mr. Ray Holloman, NJVC Digital Communications Manager ) For more than half a century, cloud computing has changed names more often than a Hollywood starlet. Utility…

CNBC Closing Bell: Bob Gourley on NSA Leaker

By G C Network | June 13, 2013

This is clearly off topic, but I couldn’t help myself!  Please take a moment to view this CNBC video where my good friend Bob Gourley addresses this important event. Good…

Guest Blog: Sequestration and the Cloud

By G C Network | May 30, 2013

(This post was provided by Praveen Asthana, Chief Marketing Office of Gravitant, a cloud service brokerage and management company) Sequestration burst out of obscurity and entered our household vocabulary in…

Join Me at the Gartner IT Infrastructure & Operations Management Summit

By G C Network | May 22, 2013

Please  join me at the Gartner IT Infrastructure & Operations Management Summit in Orlando, Florida, June 18-20, 2013, where my session topic will be “Cloud Service Integration: Increasing Business Value…

Five Years of Cloud Musings!!

By G C Network | May 14, 2013

https://kevinljackson.blogspot.com/2008/05/hello-world-april-18-2008.html  “Sunday, April 18, 2008 Hello World ! – April 18, 2008 I’ve been toying with the idea of doing a blog for about six months now. Initially I didn’t…

Global Interoperability Consortium’s Cloud Computing Project Detailed at NATO Conference

By G C Network | April 30, 2013

PRESS RELEASEApril 30, 2013, 2:30 p.m. ET Eric Vollmecke of the Network Centric Operations Industry Consortium reports  the proliferation of geospatial information will pose problems for disaster  responders and describes…

IBM Debate Series – What’s Next in IT?

By G C Network | April 25, 2013

Next week I will be participating in the inaugural session of What’s Next in IT Debate Series, a  new program of authentic debates and conversations on key technology topics. Sponsored…

Lisbon Bound: NATO Network Enabled Capability Conference 2013

By G C Network | April 21, 2013

This week I will have the honor of attending the 2013 NNEC Conference  at the Corinthia Hotel in Lisbon, Portugal. The NNEC conference is an annual event which has been sponsored by HQ…

Demystifying PaaS for Federal Government

By G C Network | April 2, 2013

Join us on April 16, 2013 at 1 PM EDT to remove the mystery surrounding Platform-as-a-Service (PaaS) for Federal Government https://attendee.gotowebinar.com/register/8966264786104832512 The PaaS market is plagued with confusion, and agencies…

Recent security breaches have heightened our awareness of cybersecurity issues. The hack and other security breaches have resulted in unprecedented damages. However, the majority of mobile device users have yet to be sensitized to their personal and corporate security risks.
Staples
For example, a security study found that 69 percent of users store sensitive personal information on their mobile devices.  Examples include banking information, confidential work-related items and provocative videos and photos. In addition, 51 percent of mobile device consumers share usernames and passwords with family, friends and colleagues. This in spite of the fact that 80 percent of such devices are unprotected by security software. 
While mobile device security attacks are relatively small, they are the new frontier for hackers.  Listed below are highlights from several mobile device surveys:

  • The four top threats to mobile devices include: 1) lost and stolen phones; 2) insecure communications; 3) leveraging less-secure, third-party app stores; and 4) vulnerable development frameworks.
  • One in 10 U.S. smartphone owners are victims of phone theft.
  • Mobile malware attacks are increasing, with 2014 exhibiting a 75 percent increase in Android malware attacks on devices.
  • The use of mobile devices to access enterprise resources introduces significant security risks.

Cyberattackers are typically attempting to obtain access to sensitive or personal data, and then use it to access financial accounts. Some methodologies used include social engineering, distributing and executing malware, and accessing data through public Wi-Fi networks.
A recent survey found that phishing and scams for winning free stuff were the most popular SMS attacks. Unsolicited SMS messages attempted to trick users into providing detailed, sensitive information about their financial accounts at major banks. The mobile malware StealthGenie secretly monitors calls, texts and videos on mobile phones. Bitdefender has been able to break the secure communications between a Samsung watch and an Android device with ease, using brute force sniffing tools. (See “5 New Threats to Your Mobile Device Security” for more information.)
These are a sampling of the numerous cybercriminal methodologies for accessing user finances and data. Listed below are some user actions for reducing or minimizing a successful attack:

  • Always enable password or PIN protection on your device.
  • Run scans using a respected security and malware program on a regular basis (see the best antivirus software for Android devices).
  • Subscribe to managed mobile device services such as anti-malware and mobile device locator services; also lock the device and wipe all data in the event of device theft.
  • Encrypt mobile device data.
  • Install/run the latest versions of your device OS and all mobile apps.
  • Upgrade to the most recent firmware for your mobile device.
  • Do not access secure or highly sensitive information while using public Wi-Fi networks.
  • Avoid clicking on ads on your mobile devices.
  • Do not configure phones to allow the installation of apps from unknown sources, e.g., only download  from well-known and trusted app stores (although they are not foolproof).
  • Observe all corporate bring-your-own-device (BYOD) and related policies.

In addition, ISO lists some common sense advice regarding mobile devices, as included below:

  • Do not openly display a device — keep it in a pocket or handbag.
  • If possible, avoid using it in crowded areas.
  • Properly mark your phone with your ZIP code.
  • If the phone is lost or stolen, report it immediately to the police and to your service provider.
  • Be aware of your surroundings and the people near to you.
  • Do not leave it unattended – keep it with you at all times.
  • Make a note of your phone’s IMEI number.
  • Do not leave a device in view in an unattended vehicle.

( This post was written as part of the Dell Insight Partners program, which provides news and analysis about the evolving world of tech. To learn more about tech news and analysis visit Tech Page One. Dell sponsored this article, but the opinions are our own and don’t necessarily represent Dell’s positions or strategies.)

Bookmark and Share

Cloud Musings

( Thank you. If you enjoyed this article, get free updates by email or RSS – © Copyright Kevin L. Jackson 2012)

Follow me at https://Twitter.com/Kevin_Jackson
Posted in

G C Network