Emerging Threats to Business Security

‘…Now more than ever, businesses need to be concerned about the security of their networks. The number, variety and strength of the threats to computer and network security have dramatically increased and businesses need to be prepared…’

An area of significant concern for increasing malware attacks to business security is in mobile devices. Mobile devices are the fastest growing device segment. With the expanding adoption comes increased vulnerability for threats to business security. Mobile device users not only send emails and edit documents, but also check stock portfolios and conduct financial transactions from their phones. Mobile devices are now full of sensitive personal data—making it easy for criminals to steal identities and fraudulently collect personal financial information. The trend towards providing mobile devices with web browsers and always-on internet access has brought all the security concerns of the web to the mobile world and their connected enterprises.
As capabilities expand, security is traded for functionality, giving rise to a whole new class of opportunities for malicious attacks. Much like viruses on a computer, viruses on mobile devices can delete files, infect files, send private information from the mobile device and facilitate external attacks. The most common way attackers gain access to confidential information is through the loss or theft of a mobile device. With the size and portability of these devices, the loss or theft of a mobile phone has become a reality. Worms and Trojans, as well as spam and phishing are making their way to mobile devices. Also known as smishing, these threats use SMS to transport spam and phishing attacks to the user’s phone – jeopardizing confidential information. Another threat targeting mobile devices is spyware also known as Snoopware. Snoopware can secretly activate the microphone and camera on a device to snoop on conversations and other dialogue in the immediate vicinity of the phone. This particular threat can be especially dangerous to users who may pass along sensitive business and personal data in conversation. To make sure businesses and users to keep their business and personal information safe, policies must be set in place to protect both the business and users when they are accessing critical information from mobile devices.

Users of mobile devices for business needs have to use the best practices for safeguarding their information. These include:

- Adopting a multi-layer security approach to mobile security, this involves protecting mobile devices with anti-virus, firewall, anti-SMS spam, and data encryption technologies and install regular security updates to protect phones and corporate information from viruses and other malware. Businesses should provide this technology to their employees and teach them how to use it properly...
- Businesses should encourage employees to be vigilant about personal security, they should ensure that their mobile devices are safe and securely with them when in places that they could be stolen.
- Businesses should set policies to password-protect mobile devices, all employees who use these devices should use strong passwords and change them regularly to ensure against theft.
- Businesses should encourage employees to regularly back up their information just as they would on a normal computer to counter against he loss of the device or loss of information on the mobile device.
- Businesses should encourage employees to only use secured networks when they are accessing company information.