Tag: mobile device security

Approximately 900 million gadgets have been exposed and the fix will be a tough one.

The latest Android mobile security problem to have been identified is a big one. This vulnerability isn’t specific to any particular make, model or version of firmware. This is because it doesn’t actually have to do with the operating system. Instead, it’s an issue based at Qualcomm, the hardware manufacturer component provider.

At the moment, there are about 900 million Android smartphones with the vulnerable Qualcomm components.

What makes this Android mobile security problem worse is that it will be quite the challenge to fix. This, according to the Check Point security research firm.. There are actually four issues that make up the vulnerability. Together, these four issues are called QuadRooter. They impact Qualcomm chipsets from a number of different manufacturers. Manufacturers include Google, LG, HTC, OnePlus and others. The Google devices include the various manufacturers that make the Nexus smartphones and tablets.

Unfortunately, this Android mobile security vulnerability is a very serious one.

Compromised devices are open to a spectrum of different types of vulnerabilities. Primarily, it could provide unauthorized root access. This means cyber criminals could obtain any information stored on the device. The vulnerability also lets criminals take control of a phone’s camera and microphone and can track the device’s GPS location. Essentially, it is providing someone not only with the keys to your house, but also all your passwords and a means to carry all your belongings away.

Vulnerabilities in mobile security are not rare. All operating systems have experienced them. That said, when iOS vulnerabilities occur, Apple can typically address the problem very quickly because they are in control of both the software and hardware of their devices. However, the same cannot be said about Android.

According to Check Point mobile research team member, Jeff Zacuto, “Android security updates are really hard.” “The Android ecosystem is so fragmented. There are a lot of different versions and variants of Android in the marketplace, because each individual device has its own particular nuances,” he said.

This problem with Android mobile security isn’t anything recent. In fact only 15 percent of devices on this operating system are operating on its newest version, which means the rest are not operating with the latest protection features.

A new report revealed the lack of protection enterprises are putting into place on employee devices.

MobileIron has released a new report providing insight on the state of mobile security shortfalls in business. Enterprises are inadequately securing employee mobile devices and apps. This leaves them open to a spectrum of cyber threats, says the MobileIron report.

The results of the study were published in the 2016 Q2 Mobile Security and Risk Review.

Fewer than 5 percent of companies have adequately implemented threat detection software. A mere 8 percent of enterprises have enforced updates to operating systems. Failing to take these very basic steps represents considerable mobile security shortfalls, says the report. Moreover, 40 percent of businesses have experienced a loss or theft of mobile devices. That represents an increase of 7 percent over only two quarters beforehand, in Q4 2015.

The insight provided by these statistics in mobile security shortfalls is considered to be quite alarming.

The main problem is that the number of mobile devices used for business is rising exponentially. Moreover, those devices are being used with a dramatically larger number of mobile apps. At the same time, the number of mobile security threats is growing explosively. The landscape is, therefore, becoming much more dangerous very quickly. However, businesses are not even covering the basics to make sure their data is secure.

According to MobileIron lead architect, James Plouffe, “The velocity of mobile attacks is increasing, but the latest data shows that enterprises are still not doing the things they could be to protect themselves. This lack of security hygiene demonstrates that enterprises are alarmingly complacent, even when many solutions are readily available.”

This situation is less problematic in the U.K. There, businesses take greater action against mobile security shortfalls than their counterparts from other countries. The research indicated that only 39 percent of U.K. businesses were out of compliance. This was the fewest among all the countries studied. Moreover, they also had the fewest compromised devices at only 4 percent. Furthermore, they experienced the lowest rate (17 percent) of having staff members remove mobile device management software from their smartphones and tablets.