More Phishing Protection for Mobile Devices

Monday, July 9, 2018 @ 03:07 PM gHale

Phishing is a tried and true attack method for one very good reason: It continues to work.

However, there is a new and enhanced mobile phishing and content protection capability transitioning to the government and private-sector, said officials at the Department of Homeland Security (DHS) Science and Technology Directorate (S&T).

RELATED STORIES
Joint Next Gen First Responder AI Initiative
Using AI in Sandbox Earns DHS Pact
Drone Sensors Focus on Security
Big Boost for Drone Forensics

A just-released update of the San Francisco-based Lookout, Inc. Mobile Endpoint Security platform offers enhanced endpoint and new mobile phishing protections. The enhanced platform, funded in part by S&T, is now available for iOS and Android operating systems.

“Most enterprise mobility management solutions require mobile endpoint security technology to continuously validate security and protect their mobile devices and applications,” said S&T Mobile Security Research and Development (R&D) Program Manager Vincent Sritapan. “These advancements in mobile threat defense will protect sensitive data, such as personally identifiable information, on mobile devices and enterprise networks and greatly increase the security of the federal government’s mobile systems for mission-critical activities.”

An important new and first-of-its kind feature for mobile devices — phishing protection — was introduced to block mobile phishing attacks designed to steal user credentials or deliver malware.

Beyond simply detecting phishing attempts in SMS messages, the system also detects and prevents attacks that hide inside mobile apps, social media messages, and in personal and corporate email. It inspects all outbound connections at the network level when a user attempts to connect, but does not inspect message content and therefore does not compromise end-user privacy. The phishing protection system then alerts the user in real-time if the connection is harmful, preventing exposure to risky content such malicious apps or websites with known vulnerabilities.

“These new capabilities will alert device users, mobile enterprise administrators and security personnel to a wide range of mobile threats and allow them to remediate those threats and protect sensitive data from being compromised through mobile devices,” Sritapan said.

The rapid growth of mobile device and app use and the constantly expanding mobile ecosystem requires continuous validation and threat protection. Vulnerabilities discovered in new devices and apps may be used by hackers as vectors to access sensitive government information and attack legacy enterprise network systems.

“Simply managing a mobile device is not enough to protect sensitive government information,” Sritapan said. “The device also must have mobile endpoint security that alerts IT and security personnel to potential attacks. Without proper mobile security, agencies cannot adequately protect against data compromises.”

Additionally, government mobile devices are an attractive avenue to attack backend systems containing data on millions of Americans and sensitive information relevant to government functions. Network-based attacks can exfiltrate sensitive data even when enterprise managers and app developers follow security best practices. The newly enhanced system’s capabilities will provide confidence to mobile system managers and government mobile device users in protecting their data.

In the coming months, new features will be added to the Mobile Endpoint Security platform to allow visibility into malicious and risky third-party apps; improving detection of side-loaded apps (the transferring files between two devices) and advancing network-based threats such as man-in-the-middle attacks; providing a new investigation functionality for third-party apps; and adding a mobile vulnerability management system.



Leave a Reply

You must be logged in to post a comment.