Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
1 In 10 US Smartphone Users Victims of Theft
Oldest First  |  Newest First  |  Threaded View
Page 1 / 2   >   >>
Bprince
50%
50%
Bprince,
User Rank: Ninja
5/9/2014 | 2:39:12 AM
Losing your phone
The most mind blowing stat to me - someone would pay $1,000 for their phone back. Really? Also, I wonder where the liability lies when people lose work-supplied phones. Does your company make you pay the full amount for the phone?

BP

 
securityaffairs
50%
50%
securityaffairs,
User Rank: Ninja
5/9/2014 | 3:55:22 AM
Re: Losing your phone
The data resented are congruent to the current mobile security scenario, we have an increasing number of new malware families designed for mobile platforms and the penetration level of mobile is surpassing the one of desktop PCs.

Wrong habits, poorly designed applications, lack adoption of defense solution and no awareness of principal cyber threats make mobile users very exposed.

That's life ... let's start to think to security by design
Kelly Jackson Higgins
50%
50%
Kelly Jackson Higgins,
User Rank: Strategist
5/9/2014 | 7:27:22 AM
Re: Losing your phone
Agreed, @Bprince. It's like they would pay ransom for their family...photos. 
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
5/9/2014 | 9:29:10 AM
Re: Losing your phone
I have a friend who works for a hospital in L.A. Someone grabbed her work iPhone from her purse while she was walking through a shopping mall. She had to pay $800 (retail) out of her own pocket to replace it 
Randy Naramore
50%
50%
Randy Naramore,
User Rank: Ninja
5/9/2014 | 3:31:59 PM
Re: Losing your phone
There are a couple different ways of looking at this, first it is the data you want back, back up the data peridically and then have the ability to wipe remotely. Secondly, get the insurance from your carrier and get it replaced. You would be out of pocket some but not $800.00. This is almost like ransom.
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
5/9/2014 | 3:45:50 PM
Re: Losing your phone
It is like ransom but it makes me wonder how prevalent it is for corporate America to hold individual employees totally responsible when their company-owned devices get stolen. Seems like the company should buy the insurance....
Randy Naramore
0%
100%
Randy Naramore,
User Rank: Ninja
5/9/2014 | 4:03:47 PM
Re: Losing your phone
Exactly, but might be easier to get some kind of supplemental coverage so you are not responsible for the whole thing. 
Marilyn Cohodas
50%
50%
Marilyn Cohodas,
User Rank: Strategist
5/9/2014 | 4:12:18 PM
Re: Losing your phone
Good point. In my own case, my cell phone is for work and play -- and I pay for the insurance. So I'm covered...
MrTibbs
50%
50%
MrTibbs,
User Rank: Apprentice
5/12/2014 | 10:19:33 AM
second factor risk?
Why is it a "major risk is when a smartphone that's set up as a second factor of authentication gets stolen"?

The thief won't know the first factor (username/password). And if the device has encrypted storage and a lock screen, that should thwart them even more.

 
Randy Naramore
0%
100%
Randy Naramore,
User Rank: Ninja
5/12/2014 | 10:41:44 AM
Re: second factor risk?
Exactly, not sure the answer but the device is essentially a paper weight at this point. Encryption and multi-factor are the way to go to secure mobile devices.
Page 1 / 2   >   >>


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
The State of Cybersecurity Incident Response
In this report learn how enterprises are building their incident response teams and processes, how they research potential compromises, how they respond to new breaches, and what tools and processes they use to remediate problems and improve their cyber defenses for the future.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-37443
PUBLISHED: 2021-07-25
NCH IVM Attendant v5.12 and earlier allows path traversal via the logdeleteselected check0 parameter for file deletion.
CVE-2021-37444
PUBLISHED: 2021-07-25
NCH IVM Attendant v5.12 and earlier suffers from a directory traversal weakness upon uploading plugins in a ZIP archive. This can lead to code execution if a ZIP element's pathname is set to a Windows startup folder, a file for the inbuilt Out-Going Message function, or a file for the the inbuilt Au...
CVE-2021-37445
PUBLISHED: 2021-07-25
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via logprop?file=/.. for file reading.
CVE-2021-37446
PUBLISHED: 2021-07-25
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentprop?file=/.. for file reading.
CVE-2021-37447
PUBLISHED: 2021-07-25
In NCH Quorum v2.03 and earlier, an authenticated user can use directory traversal via documentdelete?file=/.. for file deletion.