Mobile phone use may pose significant security risks for companies

Oct 29, 2013

(Phys.org) —New research suggests that companies are leaving themselves open to potentially serious security and legal risks by employees' improper use of corporate mobile devices.

Experts from the University of Glasgow looked at a sample of mobile phones returned by the employees from one Fortune 500 company and found that they were able to retrieve large amounts of sensitive corporate and . The loss of data such as this has potential , inviting breaches on both an individual and corporate level.

The data yielded by this study on 32 handsets included a number of items that could potentially cause significant security risks and, lead to the leakage of valuable intellectual property or exposed the company to legal conflicts.

The study is an important step in proving that the increasing use of in the corporate environments may be jeopardising security and compromising country specific data protection legislation.

Researchers believe that current policy and process that govern data security are not keeping pace with the growth of smartphone use with the corporate sector, a figure that was estimated to have increased by 22% in 2011 alone.

The study also highlighted that a substantial amount of personal information was retrievable from corporate handsets, which may also put personal as well as corporate security at risk by encouraging social engineering attacks targeting individuals within a specific country.  

Dr Brad Glisson, Director of the Computer Forensics and E-discovery MSc program at the University of Glasgow, said: "This study indicates that relatively featureless mobile phones are putting organisations at significant potential risk. The amount of corporate information involved is potentially substantial considering that the study targeted low end phones. The type of data stored on corporate mobile devices included corporate and personal information that is potentially putting both the company and the individual at risk."

"The amount of data that we recovered even from this limited study gives us an indication that there is an opportunity to improve policies from social-technical and technological resolution perspectives."

"This exploratory case study clearly demonstrates the need for appropriate policies and guidelines governing use, security and investigation of these devices as part of an overall business model. This becomes even more apparent as businesses gravitate towards the cloud."

Explore further: Lookout tailors smartphone defenses for businesses

More information: The study was presented at the 19th Americas Conference on Information Systems and published in the Association for Information Systems journal.

Full text available here: arxiv.org/abs/1309.0521.

Related Stories

Recommended for you

Hand out money with my mobile? I think I'm ready

Apr 17, 2014

A service is soon to launch in the UK that will enable us to transfer money to other people using just their name and mobile number. Paym is being hailed as a revolution in banking because you can pay peopl ...

Quantenna promises 10-gigabit Wi-Fi by next year

Apr 16, 2014

(Phys.org) —Quantenna Communications has announced that it has plans for releasing a chipset that will be capable of delivering 10Gbps WiFi to/from routers, bridges and computers by sometime next year. ...

Tech giants look to skies to spread Internet

Apr 16, 2014

The shortest path to the Internet for some remote corners of the world may be through the skies. That is the message from US tech giants seeking to spread the online gospel to hard-to-reach regions.

Wireless industry makes anti-theft commitment

Apr 16, 2014

A trade group for wireless providers said Tuesday that the biggest mobile device manufacturers and carriers will soon put anti-theft tools on the gadgets to try to deter rampant smartphone theft.

Dish Network denies wrongdoing in $2M settlement

Apr 15, 2014

The state attorney general's office says Dish Network Corp. will reimburse Washington state customers about $2 million for what it calls a deceptive surcharge, but the satellite TV provider denies any wrongdoing.

Netflix's Comcast deal improves quality of video

Apr 14, 2014

Netflix's videos are streaming through Comcast's Internet service at their highest speeds in the past 17 months now that Netflix is paying for a more direct connection to Comcast's network.

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

Tektrix
not rated yet Oct 29, 2013
The article sounds woefully late to the game. There is already a multi-million dollar mobile device management (MDM) software industry aimed right at enterprises, schools, and governments. There are simple-to-deploy solutions that scale easily to 10's of thousands of devices, which provide data-loss prevention, secure email, VPN (device and app level), the ability to remotely wipe sensitive data, lock and locate devices, and much more. Of course (and as the article points out), making good use of this tech also requires a corporate management structure that can design and implement a good system of internal security standards, device and app policies that meet those standards, and performance audits and measurements that can monitor policy effectiveness. There are plenty of training resources, too- this is really hot stuff in the data security industry and vendors are eager to sell their wares.

More news stories

Ex-Apple chief plans mobile phone for India

Former Apple chief executive John Sculley, whose marketing skills helped bring the personal computer to desktops worldwide, says he plans to launch a mobile phone in India to exploit its still largely untapped ...

Health care site flagged in Heartbleed review

People with accounts on the enrollment website for President Barack Obama's signature health care law are being told to change their passwords following an administration-wide review of the government's vulnerability to the ...

A homemade solar lamp for developing countries

(Phys.org) —The solar lamp developed by the start-up LEDsafari is a more effective, safer, and less expensive form of illumination than the traditional oil lamp currently used by more than one billion people ...

Floating nuclear plants could ride out tsunamis

When an earthquake and tsunami struck the Fukushima Daiichi nuclear plant complex in 2011, neither the quake nor the inundation caused the ensuing contamination. Rather, it was the aftereffects—specifically, ...

NASA's space station Robonaut finally getting legs

Robonaut, the first out-of-this-world humanoid, is finally getting its space legs. For three years, Robonaut has had to manage from the waist up. This new pair of legs means the experimental robot—now stuck ...

Filipino tests negative for Middle East virus

A Filipino nurse who tested positive for the Middle East virus has been found free of infection in a subsequent examination after he returned home, Philippine health officials said Saturday.

Egypt archaeologists find ancient writer's tomb

Egypt's minister of antiquities says a team of Spanish archaeologists has discovered two tombs in the southern part of the country, one of them belonging to a writer and containing a trove of artifacts including reed pens ...