On app tracking, both Android and iOS have to do better
Tuesday, September 28, 2021
In this context, “personal data” is sort of a misnomer. Don’t get me wrong: those apps are absolutely grabbing lots of personal data. But from an IT perspective, it’s important to focus on the fact that the apps are also potentially accessing pallets of sensitive enterprise data as well. And as long as your employees/contractors continue to communicate with clients and partners and others with unencrypted communication methods, you have problems both with cybersecurity and with compliance.
Still, mobile security advocate Ilia Kolochenko, founder of ImmuniWeb, argued that the Android move really is a positive step. “This is a game-changer for many unwitting Android users who erroneously granted excessive permissions to mobile apps that don’t need them or even to malware,” Kolochenko said. “Many millions of non-technical users are tricked to grant dangerous permissions to adware apps or even installing malicious applications and then grant all existing permissions that may lead to a full compromise of the device.”
The first line of defense for any mobile apps should be the OS vendor checking for problems. Of course, neither Google nor Apple have been willing to spend the money needed for the staff necessary to do that. Both companies believe a lack of app security is not a deal-killer for its customers, meaning they won’t lose a lot of sales by doing the bare minimum. Read Full Article
Security Buyer: ImmuniWeb launches a free cloud security test
SiliconANGLE: Free ImmuniWeb service detects unprotected cloud storage from 19 providers