Browse archive

Latest news

APT1 is back, attacks many of the initial U.S. corporate targets

Aurora attackers were looking for Google's surveillance database

U.S. DOJ accuses journalist of espionage

A closer look at Mega cloud storage

CISOs need to engage with the board

Wi-Fi client security weaknesses still prevalent

"NATO vacancies" phishing email also leads to malware

Find TrueCrypt and BitLocker encrypted containers and images

Sourcefire goes beyond the sandbox

The CSO perspective on healthcare security and compliance

Jailed hacker designs device to thwart ATM card skimming

U.S. Congress has questions about Google Glass and privacy

Over 45% of IT pros snitch on their colleagues

Hacking charge stations for electric cars

How do you protect your phone and your data?

by Matt Palmer - Divisional head of information security at a global bank - Wednesday, 30 January 2013.

Given the risks we run in not securing our phones, you’d be forgiven for thinking it must be a task requiring a doctorate in computer science. In reality, however, securing a smart phone can take only a few simple steps.

It’s not hard to render your phone and its data of little value to a criminal, and by doing so, protect your data and identity, and increase your chances of getting your phone back as well.

How do you protect your phone and your data?

1. Don’t leave your phone unattended on the counter or table whilst paying for shopping or enjoying a meal out.

2. Always use a PIN to lock your phone and your SIM card. Locking the phone prevents someone from using the handset without resetting it (which normally wipes your data). Locking the SIM stops someone from removing your card and using it in another phone.

3.Use a different PIN to your bank accounts. A six-digit PIN is much more secure than a four-digit PIN, as long as it’s not your date of birth!

4. Keep your software up to date. Smart phones have an operating system just like a computer; and from time to time, security issues are identified. Some networks delay software upgrades but security updates should be available immediately. Install them right away.

5. Back up your data to the cloud or your home PC. The best way to do this is using software like iTunes that can do this automatically, but you still need to check on a regular basis.

6. Only install the apps you really need. Not all app stores check the applications they contain, and it’s easy for apps to extract your personal data. Check the authenticity of applications and what data they will access, and only install applications from developers you trust.

7. Only let apps access data they really need. Many smart phones allow you to set whether applications such as Facebook or Twitter can access your photos or contacts or track your location. If you don’t need it, turn it off.

8. Use different passwords for different websites so that a hacker who gets one password can’t take over your life. This is particularly important for online and mobile banking. Consider also using device specific passwords for email. Many services like Google Mail allow you to set a separate password for your phone, so even if your phone is compromised, your main password isn’t.

9. Store passwords securely. Most people now have 50 or more passwords for websites, applications, phones and computers. If you need to write these down, never add them to your contacts, store them in a web browser or on your phone. As convenient as it is, just think of how quickly a thief could wreak damage with this information. Instead, use an application such as lastpass or keepass to store them securely on your phone and PC.