Posted on May 31, 2011, at 10:02 AM .
Another Android hacked
A recent WaPo article talks about the growing shift from a single device (BlackBerry), to a multi-platform environment including iPhone, iPad and Android devices. The strange thing about the article is that the author barely touches on the subject of security, an issue that is becoming increasingly important in light of recent announcements that Lockheed Martin was hacked and the Pentagon said hacks could be an act of war.
While the WaPo likes to paint the picture as a massive shift in the way government is doing business, it seems the ways they’re actually implementing the use of these devices is pretty minimal. One such example was that the sign-in book at the reception desk was replaced with an iPad. Another example was showing video of an arrest to ATF employees with an iPad. These devices aren’t exactly transmitting highly sensitive data but do we trust employees using these devices to keep data safe?
Another question we should be asking ourselves is whether or not federal employees should even be able to use tax dollars on these devices just because of consumer hype. While many will claim that tablets increase productivity or the latest Android device has more processor power, allowing them to work faster, it’s probably just excuses to get the latest toy. There’s a reason governments shut out their devices from downloading apps and fooling around on the web: because it’s tax dollars and they have to be accountable for the time spent and security possibly compromised.
In fact, these new devices are actually impeding some federal employees from doing their jobs properly. For example, presidential recordkeeping:
Continue reading ‘Federal Government Getting an Increase of Unsecure Devices on Network’
Posted on May 2, 2011, at 6:45 PM .
Today at BlackBerry World, Fixmo announced a partnership with Veracode to integrate their cloud-based application platform into Fixmo’s Sentinel monitoring software.
Sentinel remotely tracks your organization’s mobile devices to make sure they’re remaining in a known and trusted state. Veracode’s cloud-based application platform combined with Fixmo Sentinel software will work to provide enterprise-level device integrity assurance. Sentinel features a dashboard that can do mobile administration, record detailed event logs, can perform instant over-the-air device locks or wipes, and more.
Visit Fixmo.com for more info
Posted on May 2, 2011, at 9:39 AM .
With an upward trend in Individual-liable devices, BlackBerry has announced BlackBerry Balance. Suitable for both employee-owned and corporate issued devices, BlackBerry Balance satisfies both corporate security and personal privacy in an elegant solution.
Features:
Secure access to business information while preventing the information from being copied into, sent from or used by personal applications like Facebook®, Twitter®, Windows LiveTM Hotmail, Google MailTM or Yahoo!® Mail accounts.
Business data or files created by business applications cannot be used by personal applications, not even using the copy and paste features
If a user attempts an action that is prohibited by IT policy, a notification is displayed on the device.
If an employee leaves the organization, an administrator can remotely wipe business information from the device while leaving personal information intact.
If a device is lost or stolen, an administrator can wipe all information from the device to help ensure that sensitive business information and the user’s personal information don’t fall into the wrong hands.
Get more details about BlackBerry Balance.
Posted on May 2, 2011, at 9:05 AM .
RIM has announced new multi-platform management solution for enterprise. The solution will incorporate secure device management for iOS, Android, and tablets all managed from convenient web-based console.
We’ve been hearing a lot about multi-platform deployments gaining steam in enterprise and this looks like a good tool for IT departments and CTOs to manage a multi-platform deployment. The web console will help manage and distribute software, manage policies, inventory and security services.
This new solution is from RIM’s acquisition of Ubitexx, a company that specializes in multiplatform mobile deployment software. They make a point of mentioning that there are many more security options available on the BlackBerry platform but I still find it interesting that RIM has listened to their CTO clients and embraced multiplatform deployments. RIM intends to launch this service for general availability summer 2011.
Posted on March 8, 2011, at 11:09 AM .
BlackBerry is a mostly secure platform, but information on a new Zeus Trojan that has migrated to the BlackBerry has recently been announced. In an effort to help keep you and your fellow BlackBerry users safe, we want to share the details of the trojan. According to infoseland “The malware allows remote access of infected Blackberry devices by the attacker, who can then change the SMS message default number, add a new device administrator, control blocked call lists, and even turn the device on and off. The Trojan also removes itself from the list of installed applications to avoid scanning and detection by antivirus software.”
Cert Polska reports that once the trojan is downloaded, you have a few removal options. The trojan sent the file cert.jad . Upon it’s installation, you’ll find sertificate, which is either sertificate.jar or sertificate.cod under Options -> Applications. Delete this application and reboot your phone. If this is unsuccessful or if you’d like a more thorough approach, you can do a full wipe of the device.
Stay safe out there and don’t install software via SMS unless you specifically requested it.
Sources: Infosecland and CERT
