Mobile devices expose company data to vulnerabilities
Posted on 10 April 2012.
Mobilisafe announced results of its SMB focused study. As part of a private beta program, participants evaluated a product that assesses the security risk of mobile devices accessing their company's network.

Over the course of 4 months, Mobilisafe's mobile security product mapped pre-existing and newly discovered vulnerabilities to devices. More than 134 mobile operating system and application vulnerabilities were analyzed during the study, segmented by degree of severity from low to high.

This analysis uncovered the following insights:
  • SMBs are exposed to high severity vulnerabilities from the increasing levels of mobile devices used to access and download company data
  • SMB IT managers cannot keep up with the rate of discovery of severe vulnerabilities these devices bring to their corporate network
  • SMB IT departments lack a standardized approach to mitigate the risks from different types of mobile devices, as they do with laptops, desktops and servers
  • Even though they feel exposed to mobile device security risk, SMBs do not feel they have adequate tools to assess and mitigate these risks at a granular level.
Increasingly, application and operating system vulnerabilities are being exploited to compromise security models that isolate and protect company data. Company data is at risk of being leaked off the device and company servers are at risk of being attacked by mobile devices already authenticated to access company resources.

As IT managers have learned from security risk management in the desktop, laptop and server ecosystem, proactively addressing vulnerabilities pre-empts exploits from jeopardizing company data.

Some key data from the study:
  • 71% of devices in the study contained high severity operating system and application vulnerabilities
  • A new high severity vulnerability was mapped on average to mobile devices every 1.6 days, which is 4x faster than in 2011
  • 38 different OS versions in the study contained high severity vulnerabilities
  • There would be a 4x drop in the percentage of devices with severe vulnerabilities if the devices were updated to the latest available firmware.


Most IT pros have seen potentially embarrassing information about their colleagues

More than three-quarters of IT professionals have seen and kept secret potentially embarrassing information about their colleagues, according to new research conducted by AlienVault.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Wed, Feb 10th