Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Comments
BYOD: 'We Have Met the Enemy & He Is Us'
Oldest First  |  Newest First  |  Threaded View
Alison Diana
Alison Diana,
User Rank: Apprentice
11/18/2013 | 9:31:35 AM
BYOD Backlash
I spoke to many CIOs last week -- and to a person, they all agreed that BYOD is a time-consuming nightmare. While employees and c-levels want this policy, CIOs themselves often continue to carry around two phones because they get the legal ramifications facing users who blur the lines between 'what's mine' and 'what's the company's' data. I foresee lots of work for attorneys as more employees face wiped and destroyed mobile devices.
Marilyn Cohodas
Marilyn Cohodas,
User Rank: Strategist
11/18/2013 | 10:04:23 AM
Re: BYOD Backlash
A nightmare might be an understatement, Alison! I think part of the difficulty is that it's not purely a technical issue or a problem that can be totally resolved by a technology solution, even one as simple as keeping separate smartphones for work and office use. As mobile technology continues to blur the lines between work and personal, it's going to be harder not easier to sort out.
MarciaNWC
MarciaNWC,
User Rank: Apprentice
11/18/2013 | 5:59:04 PM
BYOD challenges
BYOD creates so many challenges on multiple fronts. On the technical side, security controls get complicated due to all the different mobile platforms. On the legal side, issues of personal vs. corporate data and corporate control over personal devices are just starting to play out, making it tough to devise corporate policies.
mwagner919
mwagner919,
User Rank: Apprentice
11/18/2013 | 6:54:06 PM
Re: BYOD Backlash
The appeal of BYOD baffles me. Companies face management problems, and employees have to pay for their own devices out of their own pockets. How does ANYBODY win in this scenario?

That said: I have a personal iPhone and iPad and use both for work. So it goes. 
Adam2IT
Adam2IT,
User Rank: Apprentice
11/19/2013 | 3:24:53 PM
BYOD Challenges
I can understand the IT people that are against BYOD. However, I don't think they can do anything to stop it. It's already happening, whether officially sanctioned or not. So the question becomes - how to deal with it?

Does BYOD come with headaches? Of course it does. However, security issues and IT management headaches (how do I support all those devices?) can be addressed by using new HTML5 technologies that enable users to connect to applications and systems without requiring IT staff to install anything on user devices.
ramakol
ramakol,
User Rank: Apprentice
11/19/2013 | 11:16:24 PM
BYOD is here to stay
BYOD trend has already started and is happening. As the stats shown in this article, BYOD is here to stay. The appeal of BYOD is the increase in productivity and ease of use that end-users enjoy. I understand the risk and reservation from IT and that is exactly why an enterprise grade solution with same ease of use and productivity enhancement is important. 


Edge-DRsplash-10-edge-articles
I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
News
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
Commentary
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Building the SOC of the Future
While an attacker just needs to find one vulnerability to get in to the network, the defender has to look everywhere. Defenders have to identify, disrupt, and stop attacks in the short period of time between when an attacker gets in and causes damage. One way is a security operations center to get that "all the time" coverage. What's Inside: --AI and cybersecurity response --Automation --Proctive threat hunting --Next-gen SIEM
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-3276
PUBLISHED: 2022-10-07
Command injection is possible in the puppetlabs-mysql module prior to version 13.0.0. A malicious actor is able to exploit this vulnerability only if they are able to provide unsanitized input to the module. This condition is rare in most deployments of Puppet and Puppet Enterprise.
CVE-2022-41574
PUBLISHED: 2022-10-07
An access-control vulnerability in Gradle Enterprise 2022.4 through 2022.3.1 allows remote attackers to prevent backups from occurring, and send emails with arbitrary text content to the configured installation-administrator contact address, via HTTP access to an accidentally exposed internal endpoi...
CVE-2022-31680
PUBLISHED: 2022-10-07
The vCenter Server contains an unsafe deserialisation vulnerability in the PSC (Platform services controller). A malicious actor with admin access on vCenter server may exploit this issue to execute arbitrary code on the underlying operating system that hosts the vCenter Server.
CVE-2022-31681
PUBLISHED: 2022-10-07
VMware ESXi contains a null-pointer deference vulnerability. A malicious actor with privileges within the VMX process only, may create a denial of service condition on the host.
CVE-2022-3275
PUBLISHED: 2022-10-07
Command injection is possible in the puppetlabs-apt module prior to version 9.0.0. A malicious actor is able to exploit this vulnerability only if they are able to provide unsanitized input to the module. This condition is rare in most deployments of Puppet and Puppet Enterprise.