Mobile Security: Use Your Mobile Device Safely
February 28, 2012
By Nazar Tymoshyk, Security Consultant, R&D Manager at SoftServe Inc.
It is a well-known fact that a mobile device of an average employee contains lots of personal and valuable corporate data, including working correspondence, contacts, documents etc. Quick and efficient business data sharing as well as data access is a great advantage, accelerating overall communication and functionality, but the risks involved are equally impressive.
No matter, whether you are a proponent of Bring Your Own Device approach or not, you cannot fully control the way your employees would use their devices, so the best way to prevent data leakage is to ensure that your employees are aware of dangers and know how to mitigate security risks, thus protecting both their private and corporate information.
Here are some tips to take into consideration:
- Don`t leave your mobile device lying around – you wouldn`t just leave your credit cards unsupervised, would you?
- Manage your network connections, download and use Wi-Fi analyzers, avoid open (not password protected) Wi-Fi networks.
- Avoid using your smartphone for online payments.
- Always protect your phone with anti-virus software.
- When installing new application, be sure to check whether it needs administrator or less privileges and don`t install applications from unverified sources.
- Disable automatic linking to wireless networks, check that the network you are connecting to is really your corporate one, secure and protected.
- Regularly update both native and installed applications as well as mobile software.
- Any access to your emails (private or corporate), phone settings and so on should be password protected.
- Never save passwords when browsing on a mobile device. Remember to clean cookies, cache and history afterwards.
- Make a reserve copy of the valuable data and protect it with password.
- Enable remote data lock and clearance function.
- Ask your mobile provider to block sending text messages to short codes (special short telephone numbers).
- Use cryptographic Transport Layer Security (TLS) 1.1 protocol.
- Use Virtual Private Network (VPN) and corporate proxy server for secure data transmission.
- In the wireless networks settings indicate the following DNS-server address: 188.8.131.52 and 184.108.40.206 (Google DNS-servers).
- Turn off Bluetooth and disable MMS.
- Your passwords should contain letters and numbers as well as blank spaces and special symbols, so that you could type them in quickly, remember them perfectly well, and simultaneously make them complicated to hack. For example, “_1,dJl,O.?”.
- Don`t follow the provocative links received via email or text messages with the statements like: “I saw you there ” or “Look at this photo ”, “You won`t believe what he’s saying about you ”, “It’s awesome ”.
- Don`t save your passwords when using Remote Desktop Protocol (RDP), Secure Shell (SSH), Teamviewer or other remote systems.