Mobile Security | BringYourOwnIT.com

Mobile Security: iOS Jailbreaks Pose Risks

February 25, 2013 1 Comment

Jailbreaking is happening in the millions: don’t turn a blind eye.

The latest jailbreak for iOS 6.1, released on 4 February, was downloaded by a whopping 5 million users in the first 48 hours alone, according to the website stats posted by Cyril (a.k.a. pod2g), the developer of the latest hack published on evasi0n.com. During these first two days, the websites served 40 million page views of which a good 50 per cent to 2.5 million unique visitors from the U.S.

Read more of this post

Filed under Mobile Security, Top Posts Tagged with Android, Apple, BlackBerry, BringYourOwnIT.com, BYOD, Cesare Garlati, Consumerization, Galaxy, Gartner, GSMA, iOS, iPad, iPhone, Jailbreak, MDM, Mobile Device Management, Mobile Security, Mobile World Congress, Policy, Privacy, RIM, RSA Conference, Samsung, Smartphones, Tablets

Smartphone Security Winners & Losers

October 9, 2012

Post based on my interview with Jeanne Friedman, content manager for RSA Conference.

In the mobile space the BYOD trend is becoming a minefield for IT administrators. Many companies have experienced a data breach as a result of an employee owned device accessing the corporate network. When the stakes are this high, corporate IT needs to know which platforms to allow and which to refuse.

Android is the most popular mobile platform in the world. It is also the most vulnerable to attack and in fact the most exploited. Contrary to common perception, Apple mobile devices are not immune to security flaws. And in fact less secure than Android if users “jail break” their devices – to escape Apple’s control.

Read more of this post

Filed under Mobile Security, Top Posts Tagged with Android, Apple, BlackBerry, BringYourOwnIT.com, BYOD, Cesare Garlati, Consumerization, Galaxy, Gartner, iOS, iPad, iPhone, Leif-Olof Wallin, Mobile Device Management, Mobile Security, Policy, Privacy, RIM, RSA Conference, Samsung, Smartphones, Tablets, Trend Micro

Advice for BYOD users: don’t be naive about mobile security.

September 21, 2012

Trend Micro interviews at the Mobile Convention Amsterdam 2012 reveal a shocking lack of education with regard to the security risks posed by mobile devices. Here is what you should know.

We all love our smartphones and tablets. And we all love those little mobile apps that make our devices so unique, useful, and fun. But have you ever thought about how safe they are? Should you trust your smartphone to shop online? Is it safe to access you bank account from your tablet? Is it ok to check your corporate email from your mobile phone? Should you trust the device manufacturer? Should you trust the app developer? Do you need mobile security software – as you know you do for your PC?

Read more of this post

Filed under Mobile Security Tagged with Android, Apple, BlackBerry, BringYourOwnIT.com, BYOD, Cesare Garlati, Consumerization, Galaxy, iOS, iPad, iPhone, Mobile Device Management, Mobile Security, Policy, Privacy, RIM, Samsung, Smartphones, Tablets, Trend Micro

What’s in a Jelly Bean: is Android 4.1 going to help with BYOD?

July 11, 2012 1 Comment

Google recently announced Android 4.1 ‘Jelly Bean’ at its I/O conference in San Francisco. The latest flavor of the world’s #1 mobile OS promises better user experience and sexier UI. But does it really make any easier for IT to secure and manage those personal devices used for work?

Generally speaking, 4.1 is an incremental release that takes Android one step closer to Apple iOS, which has been in the market for 5 years now. From a corporate IT perspective, nothing is dramatically different or better.

Read more of this post

Filed under Mobile Security Tagged with Android, Apple, Apple iOS, BYOD, Consumerization, Enterprise Mobility, iOS, iPad, iPhone, Mobile Device Management, Mobile Security, Smartphones, Trend Micro

How Secure is Your Smartphone? Android, iOS, BlackBerry and Windows Phone Under Attack

April 4, 2012

Post based on my interview* with David Gilbert of IBTimes UK

As the adoption of smartphones grows rapidly, one of the biggest challenges facing the manufacturers, developers and, ultimately, users is not the threat of losing your phone, but the threat of someone stealing the personal data stored on your mobile phone.

Senior Director of Consumerization at Trend Micro, Cesare Garlati spoke to the IBTimes UK about this serious issue and made it clear that no matter what type of phone you own, you are in danger. “Every single platform is exposed to this, no platform is immune. Some are safer than others, but none are immune.”

Read more of this post

Filed under Mobile Security, Top Posts Tagged with Android, Apple iOS, BYOD, Consumerization, iPad, iPhone, Mobile Security, Report, Research, Smartphones

Jailbreaking BYOD Control. Is Apple ready for enterprise primetime?

March 9, 2012 3 Comments

Mobile World Congress 2012

Consumerization is happening now, but many IT departments simply aren’t prepared to deal with the new challenges and complexities it entails. With IT managers increasingly urged by CEOs to stop saying ‘no’ and start supporting consumer tools, they need to reappraise their traditional approach. Put simply, IT needs flexible standards – they can’t say no but neither can they say yes to everyone.

Read more of this post

Filed under Mobile Security Tagged with Android, Apple iOS, BYOD, Consumerization, Enterprise Mobility, iOS, iPad, iPhone, Mobile Security, Smartphones

Consumerization and Mobile Security

October 24, 2011 7 Comments

How to bypass the iPad password in 5 second

* UPDATED AS OF 11/14/2011: I can confirm that Apple has fixed this security flaw in iOS 5.0.1 (9A405) *

http://www.youtube.com/watch?v=ZPHDm88-HAc

The consumerization of IT is the single most influential technology trend of this decade. Companies are already well aware of it, as they wrestle with the growing influence of smartphones, tablets, Facebook, Twitter, Dropbox and on and on. While this growth does bring business value, too many companies make the mistake to trust consumer technology with corporate sensitive data without deploying appropriate enterprise-grade infrastructure to secure and manage it. Consumer technology is sexy, convenient and easy to use. When it comes to security and data protection however, consumer technology still has a long way to go. Security and data protection in fact remain top concerns among IT professionals – see The Consumerization Report 2011.

Read more of this post

Filed under Mobile Security, Top Posts Tagged with Android, Apple, Apple iOS, BYOD, Consumerization, iOS, iPad, iPhone, Mobile Device Management, Mobile Security

There is a bug in my Apple – Part 2

July 14, 2011 1 Comment

Intego announces first-ever iPhone malware scanner – really?

July 12, 2011 11:49 AM ET Gregg Keizer – COMPUTERWORLD

http://www.computerworld.com/s/article/9218339/Mac_security_firm_ships_first_ever_iPhone_malware_scanner

Follow up on my previous post on the new security flaw discovered in Apple’s iPhone and iPad – see http://bringyourownit.com/2011/07/07/oops-there-is-a-bug-in-my-apple/

With impeccable timing, this morning Intego announded the availability of the “first-ever iPhone malware scanner”. Sure enough I went to the Apple Store and downloaded the VirusBarrier app in my iPhone and iPad. My test drive impressions: the app still leaves to the end user the responsibility to check the attachments rather than enforcing it. It is quite clunky and may provide a false sense of security: if you tap the attachment and then release the finger a little too early, you’ll end up opening up the attachment instead of scanning it(!) Probably safer – and cheaper – not to open pdf attachment in general. And as any other consumer app, there is no centralized IT management whatsoever: no reporting and no policy enforcement. One more thing: Apple is supposedly working with Adobe to address this vulnerability and will provide an update soon. At that point this app may become simply useless … but I guess this is one of those situations where “something is better than nothing” …

A few comments from a couple of Trend Micro’s experts:

Mark Bloom, Director – Director Product Marketing @ Trend Micro : “Usage or not, they [Intego] will get a lot of brand awareness out of this…..just for that value, it was worth the development effort.”

Patrick Wheeler, Sr Product Marketing Manager @ Trend Micro : “[… Apple iOS] antimalware matters, which puts us [Trend Micro] at an advantage over MDM-only vendors like MobileIron, Airwatch, and Symantec, and allows us to talk up the differentiation for our own antimalware we get from integration with SPN.”

Filed under Mobile Security Tagged with Apple, gsm, hsdpa, iPad, iPhone, Mobile Broadband, Security

Oops … there is a bug in my Apple!

July 7, 2011 3 Comments

The new security hole found in iPhones and iPads reminds us that no platform is immune to security threats and that there is in fact a need for mobile security software for Apple products.

http://online.wsj.com/article/SB10001424052702303365804576431541102701136.html

Here we go. As it turns out Apple mobile operating system is not so secure after all. While it is common perception that iPhones and iPads are so secure that they don’t even need antimalware software, the reality is that any piece of software is potentially defective and therefore vulnerable to attacks. And Apple is no exception as shown by the recent discovery of a new security flaw affecting Apple’s best selling devices. Even worse, previously discovered security issues in iOS were limited to a minority of jail-broken devices, where end users deliberately patch the standard operating system to escape Apple’s suffocating control on device and apps – see my beer side chat on YouTube at http://www.youtube.com/watch?v=ZjbqI2V18sY.

Read more of this post

Filed under Mobile Security Tagged with Apple, gsm, hsdpa, iPad, iPhone, Mobile Broadband, Security

Bombmaking and Cupcakes

June 3, 2011 1 Comment

When the “bad guys” are in fact the “good guys”

Friday, Jun 3, 2011 09:41 ET

Spies hack al-Qaida’s Inspire magazine: British intelligence agents replace bombmaking instructions with cupcake recipe

URL: http://bit.ly/l0wDzN – PAISLEY DODDS, Associated Press

I have always been fascinated by the fine line separating good and bad in cyber security. Admittedly we tend to see the security world in black and white. On one side we have the “bad guys” doing any sort of “bad things” such as planting malware or hacking websites. On the other we have the “good guys” trying to stop them from getting away with their wrong doings. Well, as it turns out sometime the “bad guys” are in fact the “good guys” trying to stop the real bad guys from doing really bad things. Confused?Case in point: British intelligence agents hack al-Qaida’s website and replace bombmaking instructions with cupcake recipe. While it is not a surprise that intelligence organizations around the world use cybertools as part of their work, I always wondered how they maintain their leading edge, how they gain knowledge of zero day vulnerabilities and, in the end, at what extent governments are in fact indirectly funding the cybercrime underworld. Knowledge of Zero day vulnerabilities is worth millions – if not tens of millions – in the black market. What kind of organizations do you think can afford to buy this expensive know-how? Intrigued by the topic? Speak your mind. Leave a comment.

Filed under Mobile Security Tagged with intelligence, Security, zero day

← Older posts

About BringYourOwnIT.com

This is my personal blog about Consumerization, BYOD, Mobile Security and other disruptive IT trends. It's full of my reasoned opinions, some of which will turn out to be absolutely wrong. You should not rely on anything in this blog for any reason other than for amusement.

This blog occasionally quotes excerpts from other publications, in which case it is done under Fair Use. I despise copyright trolls and think the EFF is due for sainthood any day now.

The opinions here are mine and mine alone, and are not representative of any professional organizations I belong to. I blog for Enterprise Mobility Today too and some of that writing will appear here too if it's relevant.

Comments are unmoderated. Say what's on your mind, be direct, speak the truth, etc., I'll try to keep all your comments ...

Happy reading!

Twitter @CesareGarlati

The smartphone industry generated $12.5B in profits in Q1 2013. Kudos to Samsung who gets 40% of it ($5.1B). blogs.strategyanalytics.com/WSS/post/2013/… posted 2 days ago
AirWatch adds $25M Investment from Accel Partners on top of the $200M series A in February => Valuation around $1B. air-watch.com/company/news-r… posted 5 days ago
BYOD Policy Imperatives & Checklist enterprisemobilitytoday.com/14-byod-policy… posted 1 week ago
The Pentagon approves BlackBerry BB10 and Samsung Android KNOX for use on DOD networks - Apple iOS probably next ow.ly/kLDVe posted 2 weeks ago
Freedom isn't free: Gartner predicts BYOD to cost $300 per employee annually up from current $100 ow.ly/kLDeJ posted 2 weeks ago

Follow @CesareGarlati

Recent Speaking Engagements

SIIA AATC 2013 - All About The Cloud
May 7 – 9, 2013, San Francisco, CA
“Empowering Your Mobile Workforce”

Cloud Connect 2013
April 2 - 5, 2013, Santa Clara, CA
"Security in the Mobile Cloud World"

VentureBeat Mobile Summit 2013
April 1 – 2, 2013, San Francisco, CA
"What’s next for enterprise?"

AppNation 2012
December 12, 2012 – San Francisco, CA
"The state of security in the mobile enterprise"

Mobile Device Security Conference
December 5 - 6, 2012 – London, UK
“Strategies for an enterprise MDM deployment"

Cloud Security Alliance Congress 2012
November 7 - 8, 2012 – Orlando, FL
“Guidance on Mobile Computing and the Cloud"

RSA Conference Europe 2012
October 9-11, 2012 – London, UK
"Smartphone Security Winners & Losers"
"The Dark Side of BYOD"
"10 Reasons Not to Virtualize"

Mobile 2.0 Conference
September 11, 2012 - San Francisco, CA
"Mobile Enterprise & Consumerization of IT"

RSA Conference China 2012
August 28-29, 2012 - Chengdu, CN
"Smartphone Security Winners & Losers"

DIRECTION EXPO 2012
August 7-8, 2012 - Tokyo, JP
"Mobile Security"

The Institution of Engineering and Technology
June 20, 2012 - London, UK
"Security for Mobile Devices"

Mobile Convention Amsterdam
May 8, 2012 – Amsterdam, NL
"Consumer Mobile Technology in the Enterprise: A leap of faith?"

TabTimes Tablet Strategy Conference
April 27, 2012 – New York, NY
"Secrets of a good corporate app"

Mobile World Congress 2012
February 27 - March 1, 2012 - Barcelona, Spain
"Consumer technology in the enterprise: A leap of faith?"

see all speaking engagements

BringYourOwnIT.com

Mobile Security: iOS Jailbreaks Pose Risks

Jailbreaking is happening in the millions: don’t turn a blind eye.

Smartphone Security Winners & Losers

Advice for BYOD users: don’t be naive about mobile security.

What’s in a Jelly Bean: is Android 4.1 going to help with BYOD?

How Secure is Your Smartphone? Android, iOS, BlackBerry and Windows Phone Under Attack

Jailbreaking BYOD Control. Is Apple ready for enterprise primetime?

Consumerization and Mobile Security

How to bypass the iPad password in 5 second

* UPDATED AS OF 11/14/2011: I can confirm that Apple has fixed this security flaw in iOS 5.0.1 (9A405) *

There is a bug in my Apple – Part 2

Intego announces first-ever iPhone malware scanner – really?

Oops … there is a bug in my Apple!

The new security hole found in iPhones and iPads reminds us that no platform is immune to security threats and that there is in fact a need for mobile security software for Apple products.

Bombmaking and Cupcakes

When the “bad guys” are in fact the “good guys”

About BringYourOwnIT.com

Twitter @CesareGarlati

Recent Speaking Engagements

Recent Posts

Follow “BringYourOwnIT.com”

Jailbreaking is happening in the millions: don’t turn a blind eye.

How to bypass the iPad password in 5 second

*** UPDATED AS OF 11/14/2011: I can confirm that Apple has fixed this security flaw in iOS 5.0.1 (9A405) ***

Intego announces first-ever iPhone malware scanner – really?

The new security hole found in iPhones and iPads reminds us that no platform is immune to security threats and that there is in fact a need for mobile security software for Apple products.

When the “bad guys” are in fact the “good guys”

About BringYourOwnIT.com

Recent Speaking Engagements

Recent Posts

Follow “BringYourOwnIT.com”

* UPDATED AS OF 11/14/2011: I can confirm that Apple has fixed this security flaw in iOS 5.0.1 (9A405) *