New mobile security threats emerge

New mobile security threats emerge

Mobile phone capabilities are growing by leaps and bounds -- and so are mobile security threats.

Ten years ago, mobile phone subscribers and operators only had to worry about two security threats: eavesdropping and fraud. Most mobile phones operated on reallocated UHF-TV channels using conventional FM radio technology. It was ridiculously easy (though illegal) to tap conversations and pluck phone identities off the air to make free international calls. Fraud was a huge problem for mobile phone operators.

Those problems largely dissipated as the industry converted to digital radio technology. The 3G technologies being deployed today by AT&T (formerly Cingular Wireless) and Verizon Wireless make hacking mobile phones over the air even more difficult and expensive.

Unfortunately, as mobile phones become more capable, a constellation of new security threats have emerged.

A growing percentage of mobile phones can download user applications and content over the air. That means they can also download viruses and spyware. Bluetooth is becoming a standard feature on mobile phones, and handsets with Wi-Fi capability are on the way. These short-range radio technologies are a potential backdoor for harmful code. Flash memory cards create another entrance to phones that used to have no windows or doors.

According to SMobile Systems, a company specialising in mobile security, there are more than 400 mobile malware threats, predicted to exceed 1,000 by the year-end. Most are viruses, but mobile spyware is on the rise.

New security-related concerns are popping up. Some operators can track the user's movements. However, this is mainly done with GPS-equipped handsets; the user is only automatically located when calling E911. There also is the specter of users accessing pornography in public. Camera phones are a recognised security threat at many business and government locations. Finally, with today's high-capacity flash memory cards, mobile phones could become vehicles for unauthorised distribution of copyrighted content.

What can be done about the mobile security threats?

There are several ways to thwart delivery of viruses, spyware and pornographic content to mobile phones. One method is to detect and block unwanted content in the mobile operator's core network before it gets to the user's handset. Companies such as Starent Networks produce packet data serving nodes that can use deep packet inspection to detect and remove security threats and unwanted content.

SMobile Systems offers a client-server solution for protecting mobile handsets. The firm believes the ideal security solution for mobile phones is a small footprint client application that is supported and frequently updated by a server application. The frequent updates ensure the client application is always aware of the latest threats. The client monitors for suspicious activity and, if necessary, can shut down associated processes. As handsets become more capable, they are increasingly used in applications such as mobile commerce, making them more attractive targets for hackers.

A distinction needs to be made between malicious mobile spyware and client applications designed to monitor mobile handset use for legitimate purposes. For example, the industry still has much to learn about making mobile applications and content easy to find and use. There is merit to recording and reporting the number of key clicks it takes users to perform specific tasks. And if subscribers would like to see more advertising-supported mobile applications and content, they need to let operators fully exploit the interactive nature of mobile phones. What's important is not that the information is gathered, but that the individual mobile user remains anonymous.

Mobile security threats are on the rise. But there are also ways to use mobile phones to enhance security, for example, sending a text message to the subscriber whenever their credit card is about to be used to make a major purchase. So while there are security risks associated with more capable mobile phones, the risks can be managed, and are partly counter-balanced by the opportunities these devices present for improving security elsewhere.

Join the newsletter!

Error: Please check your email address.
Rocket to Success - Your 10 Tips for Smarter ERP System Selection
Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Ira Brodsky

Network World
Show Comments

Most Popular Reviews

Latest Articles

Resources

PCW Evaluation Team

Ben Ramsden

Sharp PN-40TC1 Huddle Board

Brainstorming, innovation, problem solving, and negotiation have all become much more productive and valuable if people can easily collaborate in real time with minimal friction.

Sarah Ieroianni

Brother QL-820NWB Professional Label Printer

The print quality also does not disappoint, it’s clear, bold, doesn’t smudge and the text is perfectly sized.

Ratchada Dunn

Sharp PN-40TC1 Huddle Board

The Huddle Board’s built in program; Sharp Touch Viewing software allows us to easily manipulate and edit our documents (jpegs and PDFs) all at the same time on the dashboard.

George Khoury

Sharp PN-40TC1 Huddle Board

The biggest perks for me would be that it comes with easy to use and comprehensive programs that make the collaboration process a whole lot more intuitive and organic

David Coyle

Brother PocketJet PJ-773 A4 Portable Thermal Printer

I rate the printer as a 5 out of 5 stars as it has been able to fit seamlessly into my busy and mobile lifestyle.

Kurt Hegetschweiler

Brother PocketJet PJ-773 A4 Portable Thermal Printer

It’s perfect for mobile workers. Just take it out — it’s small enough to sit anywhere — turn it on, load a sheet of paper, and start printing.

Featured Content

Product Launch Showcase

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?