By Max Clarke
Latest reports that 260,000 Google smartphones running its Android software have been hacked, is further evidence of the ‘consumerisation of IT’ and a disappearing network boundary, according to the Information Security Forum (ISF).
Analysts at the ISF are warning users to expect more attacks of this nature as the number of connected people, devices, and data transactions grow and the opportunities and incentives for cyber crime increase.
The attacks, which came about when customers downloaded malicious applications, have raised serious concerns over the due diligence carried out by mobile software developers when it comes to applications. Steve Durbin, Global VP at the ISF, warned that developers have a ‘duty of care’ to customers, but also advised users to exercise caution when downloading anything onto their mobile devices.
“Every time an individual downloads an app, some software or accesses a website using a mobile device, it introduces risks – risks that are often outside of the control of the individual and of the security professional." Expalined Mr. Durbin.
“Organisations need to be more aware of the fact that personal devices, like smartphones and tablets, are becoming more affordable, more powerful and better connected and to start building a security model based on trust and which does not rely on the network for protection.
“As the ISF, we advise striking a balance between the end user and the protection of the organisation and confidential data, for example establishing security policies for the use of smartphones and educating users about the security risks.”
The ISF offers a number of reports and advisories for Members, including its Beyond the Clear Desk Policy report to help create security-positive behaviour in staff. It will also be announcing its new Standards of Good Practice in May, to help businesses achieve an effective and consistent standard of good practice for information security right across the organisation.