IAC 2024 - IA Fast Track to Search Focused AI Solutions
The state of mobile app security
1. Data at rest encryption
In association with
Detection of jailbreak and rooting of device
obile app encryption
obile privacy implementation
M
M
R
D
E
H
S
ardware encryption
egular screen dimming & blurring
isabling screen captures
ncrypted copy/paste to clipboard
oftware encryption
Challenges & Best Practices
KAysharbor.com
THE STATE OF
MOBILE APP
SECURITY
MOBILE APP
THREAT AGENTS
MOBILE APP SECURITY
IN THE ENTERPRISE
TOP 5 APP CATEGORIES WITH VULNERABILITIES
TOP BLACKLISTED APPS
BY IT SECURITY TEAMS
MOBILE APPS
AS A THREAT
HOW VULNERABLE
ARE MOBILE APPS ?
ANDROID IOS
HUMAN INTERACTION
AUTOMATED PROGRAMS
50.19.212.127
192.168.23.17
More than 1.5 million new incidents of
mobile malware have been detected in
the first quarter of 2017 alone – for a
total of more than 16 million mobile
malware incidents.
BYOD and mobile apps will pose a major security
threat to the enterprise over the next 8 years.
By the end of 2017, 75% of mobile security
breaches will be the result of mobile application
misconfigurations.
60% of an organization has already experienced
a data breach caused by an insecure mobile app.
44% are taking no steps to protect their apps.
Araxan Technologies
CyberSecurity Ventures
MobileIron Security & Risk Review
Gartner
ANGRYBIRDS DROPBOX FACEBOOK WHATSAPP TWITTER
SKYPE OneDrive OUTLOOK NETFLIX GOOGLEDRIVE
MALWARE
SCRIPTS
MALICIOUSAPP
An average phone connects to over
160 different IP addresses during
the day, with about a third of
the information flowing in and out
of a phone unencrypted (SMS,
some emails, etc.).
90% of the Android apps set the allowBackup
flag to true which can allow an attacker to
backup the app folder and recover private
data from it.
Cookie without secure flag is a common
configuration issue in iOS which leads to
security vulnerabilities.
50.18.212.157
Mobile malware reports from
Asia doubled in Q1, contributing
to a 62.5% increase in global
infection rates.
McAfee
WhiteHat Security
NEWSAPPS
GAMES
LIFESTYLE
BUSINESS
HEALTH&FITNESS
50.18.212.157 50.18.212.223
50.18.212.114
47% 69%
64%43%
33%
33%
32%
198.100.95.1210.0.20.15
191.168.154.1
MUSIC
NEWS
FINANCE
BUSINESS&INVESTING
GAMES
49%
47%
46%
StolendeviceuseR
Ownerofthedevice
Commonwifinetworkuser
HACKERS/DEVELOPERS
Organizationinternalemployees
Appstoreapprovers/reviewers
OWASP
HOW TO SECURE
MOBILE APPS?
Data loss prevention
www.kaysharbor.com @kaysharbor|