Guide to the TechWeb Network


The InformationWeek -- Blogs
Over The Air

Mobility Breifing Center -- Sponsored by Windows Mobile
Topics:   Mobile

  • Email this page E-mail this page
  • |  Print this page Print this page
  • |   Bookmark and Share

Wireless Security In A Sorry State, Mobile Viruses Feared By Many


Posted by Eric Zeman, Feb 18, 2008 09:50 AM

Last week at Mobile World Congress, a new survey indicated that the public is afraid that their mobile devices will catch a rare virus. At the same time, a whitepaper from Codenomicon takes a look at the vulnerabilities of Bluetooth and Wi-Fi. Is the public -- and, more important, IT -- right to be afraid?

The first reports of mobile viruses appeared years ago, and specifically targeted smartphone operating platforms from Palm and Symbian. They used Bluesnarfing and Bluesharking techniques to break into smartphones by cracking open the Bluetooth connections. Although these instances have been very rare, the fear of infection persists.

McAfee polled 2,000 people in Britain, the United States, and Japan and found that 72% were concerned about the likelihood of an infection. Almost 12% said someone they knew had suffered through an infection, but only 2% had actually had a virus themselves. Still, that left a whopping 86% of respondents saying that they didn't know anyone who's phone had been sickened by a mobile virus.

If we're to believe these numbers, instances of infection are rare. Details about which mobile operating systems were most affected weren't provided in the report, but it's not a big leap to imagine that the viruses are limited to smartphones. Phones running platforms from RIM, Microsoft, Symbian, and Palm, among others, provide the juiciest targets because of the nature of the information stored on such devices. Traditional consumer handsets, many of which run proprietary platforms, aren't as enticing a catch.

With Bluetooth and Wi-Fi coming standard on almost all smartphones at this point, IT should be concerned about protecting their corporation's assets.

Codenomicon recently published a whitepaper which suggest that 90% of all tested devices showed vulnerabilities. That is worrisome. What's worse is that rather than provide proactive defenses, most wireless security firms are providing reactive patches instead.

Reads the report, in part:

Despite boasts of hardened security measures, security researchers and black-hat hackers keep humiliating vendors. Security assessment of software by source code auditing is expensive and laborious. There are only a few methods for security analysis without access to the source code, and they are usually limited in scope. This may be one reason why many major software vendors have been stuck randomly fixing vulnerabilities that have been found and providing countless patches to their clients to keep the systems protected.

How is IT to protect against these viruses? And are they as much of a threat as people make them out to be?

True, lots of smartphone management programs allow IT to turn the Bluetooth and Wi-Fi radios off so the employee can't use them. This nullifies the threat. But what good is it to have those technologies if we're unable to make use of them?

There has to be a better way.

« The Wealthy Use Google, The Poor Use Yahoo | Main | Google Search Results Now Showing Video Ads »



Tomorrow's CIO: Do you have what it takes?
Find out at the 2008 InformationWeek 500 Conference
Sept. 14-16, St. Regis Resort, Monarch Beach, Calif.


Sign up now for the weekly InformationWeek Blog Newsletter.


This is a public forum. United Business Media and its affiliates are not responsible for and do not control what is posted herein. United Business Media makes no warranties or guarantees concerning any advice dispensed by its staff members or readers.

Community standards in this comment area do not permit hate language, excessive profanity, or other patently offensive language. Please be aware that all information posted to this comment area becomes the property of United Business Media LLC and may be edited and republished in print or electronic format as outlined in United Business Media's Terms of Service.

Important Note: This comment area is NOT intended for commercial messages or solicitations of business.




Mobile Video



  1. Report: BlackBerry Bold Being Delayed For 3G Reception Issues, Too
  2. Apple Promises 3G iPhone Problems Will Be Fixed In September
  3. Peek-A-Boo Look At Intelýs Atom Processor
  4. As Google Android SDK Hits Street, Android Security Team Braces
  5. iPhone Firmware Update 2.0.2 Did Diddly-Squat For Me


  1. Wozniak To Developers: If You Know You're Right, Don't Stop
  2. Actors Paid To Line Up For iPhone Launch In Poland
  3. N.Y. Comptroller Advises To Scrap $2 Billion Network
  4. FEMA's Phone System Hacked
  5. Alaska Air's CIO Weighs In On In-Flight Internet Services
  6. Canada Gets BlackBerry Bold

 
 

  Ars Technica
Boing Boing
Channel 9 Forums
CRN Blogs
Dr.Dobb's Portal: Blogs
Engadget
Gizmodo
GrokLaw
  Lifehacker
Schneier on Security
Slashdot
TechCrunch
Techdirt
Techmeme
Valleywag

  FEBRUARY 2008
JANUARY 2008
DECEMBER 2007
NOVEMBER 2007
OCTOBER 2007
SEPTEMBER 2007
AUGUST 2007
JULY 2007
  JUNE 2007
MAY 2007
APRIL 2007
MARCH 2007
FEBRUARY 2007
JANUARY 2007
DECEMBER 2006
NOVEMBER 2006