SUBSCRIBE TO TMCnet
TMCnet - World's Largest Communications and Technology Community

TMCNet:  Legitimate apps expose enterprises [ITWeb]

[April 22, 2014]

Legitimate apps expose enterprises [ITWeb]

(ITWeb Via Acquire Media NewsEdge) The average user does not read the terms of use for apps or consider the risks of exposing their mobile data to third parties, says BlackBerry's Nader Heinen.

While malware makes headlines, the risk of legitimate mobile apps exposing enterprise data to unauthorised third parties should be of greater concern to enterprises.

So says Nader Heinen, security advisor at BlackBerry's security group, and speaker at the forthcoming ITWeb Security Summit 2014.

Heinen notes that vast numbers of mobile applications connect to users' personal information and contact lists. "While these applications may be legitimate, they may share the data on a mobile device – such as contact lists – with a third-party without the consent of those contacts. This could be in contravention of privacy laws," he says.


Heinen notes that the average user does not read the terms of use for apps or consider the risks of exposing their mobile data to third parties. "Within hours of buying a new handset, people place all their contacts on it, add their mobile banking credentials and install a range of consumer apps without necessarily checking how secure they are or what the terms are," he says.

"In many cases, the apps won't work without access to data on the device. Geo-location apps, for example, may be useful, but what if the user is a government official whose whereabouts should not be tracked?" Heinen says in a BYOD era, having enterprise data on the same devices as vulnerable consumer apps raises serious governance, risk and compliance issues for the enterprise. BlackBerry believes the solution lies in multi-layered security, careful management of the app store, and the segregation of enterprise content from personal content on the mobile device.

"Instead of asking millions of users to update their mobile security regularly, OEMs [original equipment manufacturers] and service providers need to take on the responsibility of keeping the environment as secure as possible – it's just good business," he says.

Now in its ninth year, the ITWeb Security Summit is southern Africa's premier information security event for IT and business professionals. It is presented by ITWeb, South Africa's leading technology-focused publisher, with media products and services that span online, print and events. The ITWeb Security Summit 2014 is endorsed by ISACA (http://www.isaca.org.za/) and (ISC)² Gauteng Chapter (http://isc2chapter-gauteng.co.za/) and will be staged at the Sandton Convention Centre from 27-29 May. For more information, go to www.securitysummit.co.za (http://www.securitysummit.co.za)  Join the conversation on Twitter at #itwebsecHeinen says over the past two decades, BlackBerry has managed to keep its application environment secure through a multilayered approach, with a security division that continually updates and innovates to stay ahead. This success has prompted it to extend its enterprise mobile security solutions to the iOS and Android environment, with Windows set to follow soon.

BlackBerry will participate in the upcoming ITWeb Security Summit 2014, exhibiting its enterprise mobile security solutions, Heinen will also address the event on the subject of mobile security threats. For more information about this event, click here (../index.php?option=com_content&view=article&id=68611&Itemid=2882).

(c) 2014 ITWeb Limited. All rights reserved. Provided by Syndigate.info, an Albawaba.com company

[ Back To Technology News's Homepage ]

OTHER NEWS PROVIDERS







Technology Marketing Corporation

800 Connecticut Ave, 1st Floor East, Norwalk, CT 06854 USA
Ph: 800-243-6002, 203-852-6800
Fx: 203-866-3326

General comments: tmc@tmcnet.com.
Comments about this site: webmaster@tmcnet.com.

STAY CURRENT YOUR WAY

© 2014 Technology Marketing Corporation. All rights reserved.