IBM sponsored study finds mobile app developers compromise user security Essay Example

network.The Ponemon Institute reveals a disturbing level of vulnerability in mobile security. In collaboration with IBM, the institute conducted a study that uncovered significant security weaknesses in the processes by which most companies create and implement mobile applications for their clients.

The study examined various organizations, including Fortune 500 companies (40%), in sectors like financial services, health and pharmaceuticals, the public sector, entertainment, and retail. These organizations collectively spend an average of $34 million annually on mobile app development. However, a mere 5.5% of this substantial budget is currently allocated to ensuring the security of mobile apps against cyber-attacks prior to their release. Surprisingly, half of these companies do not allocate any funds towards security measures.

The study found that these organizations prioritize speed-to-market and user experience over security measures. Consequently, many organizations only occasionally or belatedly scan their mobile apps for security vulnerabilities - if they do so at all. This negligence creates opportunities that hackers are increasingly exploiting to gain unauthorized access to confidential data through BYOD or corporate mobile devices.

According to IBM X-Force research, in just 2014 alone, over 1 billion pieces of personally identifiable information (PII) were compromised due to cyber-attacks. Unfortunately, during the development of mobile apps, user convenience takes precedence over user security and privacy. The study reveals that a majority (65%) of organizations put the security of their apps at risk due to customer demand or need. Additionally, 77% attribute the inclusion of vulnerable code in mobile apps to the urgent pressure for quick releases.Only a small proportion (15%) of companies that perform vulnerability scans prior to app launches actually test their apps with the necessary regularity for ensuring effectiveness.

The increase in BYOD leads to higher mobile risks

BYOD has become more popular and necessary for organizations. However, the problem arises when employees connect to unsecured networks or download unsafe apps from untrusted sources, making their devices vulnerable to malware. According to the Ponemon Institute's findings, even apps from trusted organizations and available in traditional app stores can pose significant risks. The study also reveals that more than half of employees (55%) state that their organization lacks a policy defining the acceptable use of mobile apps at work, and a majority (67%) of companies allow employees to download non-vetted apps on work devices. Furthermore, 55% of organizations permit employees to use and download business apps on personal devices (BYOD).

IBM MobileFirst Protect introduces mobile threat management

IBM has introduced new mobile threat management (MTM) technology to its IBM MobileFirst Protect offering (formerly known as MaaS360) to combat cyber-criminals who are taking advantage of this opportunity. Utilizing advanced cyber-threat and intelligence technology, IBM MobileFirst Protect Threat Management detects suspicious activities on mobile endpoints and prevents malware as soon as a device is breached.

Delivered through the cloud and updated over-the-air, IBM MobileFirst Protect Threat Management provides automatic and highly intuitive protection against hackers targeting corporate and personal mobile devices used for work. Built by IBM Security, this offering integrates the flexible power of cloud, the comprehensive control of enterprise mobility management, and sophisticated defense tools against malware and mobile fraud.