More on the smartphone threat – this one from Radware
Radware is warning companies to beware the growing security threat from increased use of smartphones. It highlights three particular concerns:
- Battery drain – a form of DoS that sends packets to a mobile device preventing it from going into sleep mode, and thus draining the battery.
- Malware spread – malware can infect a user’s smartphone from the public mobile network, and then spread to the corporate network, bypassing perimeter security measures.
- Misuse of smartphone resources – smartphones are an easy recruitment target into botnets.
A combination of security technologies must be deployed across the corporate network to mitigate application attacks caused when mobile devices are ‘opened up’ to threats from social networking sites, sending/receiving emails, or searching the Internet. By 2011-12, we expect organizations will implement a mix of standard signature, IP and website reputation feeds and behavioral-based real-time signature technologies, based on adaptive expert systems, to fight emerging mobile threats.
Avi Chesla, Vice President, Security and Management Products, Radware
Radware recommends a solution of signature detection technology coupled with network behavioral analysis (NBA) technologies. By pairing these two technologies, IT organizations can ward off malware and botnet attacks based on action and user profile; without the need for millions of signatures to block every instance of malware that exists out in the mobile network.
Signature detection technology has been in the industry for nearly 20-years, and were designed to detect attacks that exploit known application vulnerabilities but not zero-minute malware and application misuse attacks. Therefore, adding a complementary behavioral analysis system allows IT departments to have greater control of their network domain.