Mobile

A CISO's View of Mobile Security Strategy, With Stacey Halota

100%
0%

CISO of Graham Holdings Stacey Halota visits Dark Reading News Desk at Black Hat to discuss her talk at the CISO Summit, why securing mobile devices is a top priority despite their absence in recent mega-breach story lines, and how her company is using mobile devices to improve security, instead of threaten it.

Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
kaymera
50%
50%
kaymera,
User Rank: Apprentice
2/7/2018 | 4:14:26 AM
Not that difficult to hack a mobile device
We all have mobile devices and we are all connected. Everyone has email accounts, social media and access to their organization's email and their resources. If a hacker wanted to target someone or the organization, the best tool is the Mobile phone.

Most mobile phone users are really not aware of the cyber risks from downloading apps (without reviewing what access they are giving up), connecting to open WIFI networks at the cafe, airport, mall, etc... You might not even need a sophisticated attacking system to infect a mobile device, you just need to manipulate the user.

Everyone I know has a firewall or an antivirus software on their personal computer, however, most people do not have a Mobile Threat Defense app on their mobile phone. So it's important that a mobile phone user install a Mobile Threat Defense app such as the Kaymera CipherWatch app that will detect, prevent and protect the user /organization from mobile threats.
'PowerSnitch' Hacks Androids via Power Banks
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/8/2018
Windows 10 Security Questions Prove Easy for Attackers to Exploit
Kelly Sheridan, Staff Editor, Dark Reading,  12/5/2018
Starwood Breach Reaction Focuses on 4-Year Dwell
Curtis Franklin Jr., Senior Editor at Dark Reading,  12/5/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
10 Best Practices That Could Reshape Your IT Security Department
This Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-8651
PUBLISHED: 2018-12-12
A cross site scripting vulnerability exists when Microsoft Dynamics NAV does not properly sanitize a specially crafted web request to an affected Dynamics NAV server, aka "Microsoft Dynamics NAV Cross Site Scripting Vulnerability." This affects Microsoft Dynamics NAV.
CVE-2018-8652
PUBLISHED: 2018-12-12
A Cross-site Scripting (XSS) vulnerability exists when Windows Azure Pack does not properly sanitize user-provided input, aka "Windows Azure Pack Cross Site Scripting Vulnerability." This affects Windows Azure Pack Rollup 13.1.
CVE-2018-8617
PUBLISHED: 2018-12-12
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8583, CVE-2018-8...
CVE-2018-8618
PUBLISHED: 2018-12-12
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8583, CVE-2018-8...
CVE-2018-8619
PUBLISHED: 2018-12-12
A remote code execution vulnerability exists when the Internet Explorer VBScript execution policy does not properly restrict VBScript under specific conditions, aka "Internet Explorer Remote Code Execution Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet Exp...