Personal mobile devices aren't so personal any longer

Cell phones, smartphones, and PDAs are being used more and more by corporate employees to store and transmit sensitive business data. Many companies are not only granting mobile devices access to corporate networks but are integrating mobile devices into their existing fixed network security architecture.

While a significant productivity boon in today's business environment, these devices are five times more likely to be lost or stolen than, say, a laptop. Even if they aren't lost or stolen, the computing sophistication of today's devices means they can easily fall prey to the same security vulnerabilities as other corporate computing systems. An increasing number of malware (viruses, worms, and Trojan horses) are targeting mobile devices.

Even more frightening is "snoopware," which allows for eavesdropping on users during business meetings or at other inopportune times. "Whether you're on a phone call or not, snoopware can activate the microphone and listen in on a conversation," notes Paul Miller, Symantec's Director of Mobile and Wireless.

Ignoring the danger

If you're aware of these threats but haven't done anything about them, you're not alone. In one survey, 82% of corporate executives said they believe damage from attacks on a mobile network is at least as great a danger as attacks on a fixed network. Yet only 26% had actually taken steps to improve mobile security. Meanwhile, 55% of smartphone users say they store confidential personal or business information on these devices.

In a November 2006 article on SearchSMB.com, Carmi Levy, Senior Research Analyst for Info-Tech Research Group compared this attitude to drunk driving. "Drinking and driving is dangerous and can have serious legal consequences. Yet thousands continue to die every year in alcohol-related accidents. The same ethos applies to mobile data security," Levy said. "It's a known threat and an easy threat to understand, but most organizations don't allocate the resources necessary to bring it truly under control."

But reducing mobile risks may be easier than you think. With products like Symantec Mobile Security Suite 5.0 and Mobile VPN 2.6 (www.symantec.com/endpoint) security and management features can go beyond the PC to mobile phones, smart phones, or PDAs. Integrated antivirus technology, firewalls, password enforcement, phone feature controls, network access control, VPN, and encryption technology provide real-time protection against mobile threats and unwanted network intrusions. That way, your users can avoid getting DUIs on their smartphones.