{"id":136,"date":"2006-06-07T00:00:00","date_gmt":"2006-06-07T00:00:00","guid":{"rendered":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/2006\/06\/07\/the-top-9-ways-to-secure-mobile-devices\/"},"modified":"2021-12-30T11:36:35","modified_gmt":"2021-12-30T11:36:35","slug":"the-top-9-ways-to-secure-mobile-devices","status":"publish","type":"post","link":"https:\/\/www.cybersecurityinstitute.com\/blog\/?p=136","title":{"rendered":"The top 9 ways to secure mobile devices"},"content":{"rendered":"<p>In the past six months a disturbing trend has emerged involving the theft of laptops containing sensitive personal information &#8212; most recently from the home of a U.S. Department of Veterans Affairs data analyst.  These inevitably involve the loss of names, addresses, Social Security numbers and often credit card or investment account numbers of thousands of people.  These losses are embarrassing and costly, and they may be only the tip of an oncoming iceberg, as corporations increasingly equip their outside sales and support people and traveling executives with mobile &#8220;gadgets&#8221; &#8212; smart phones and other handhelds &#8212; that not only access corporate e-mail but carry copies of databases on corporate clients, R&#038;D, financials and strategy.  Jack Gold, founder and president of <a href=\"http:\/\/www.jgoldassociates.com\" title=\"J.Gold Associates\">J.Gold Associates<\/a> in Northboro, Mass estimated that these losses cost a minimum of $35 per customer whose personal data is lost, just in notification costs.   We estimate companies will spend approximately $35 in notification  costs for each exposed customer. So, in the case of Fidelity, it would have cost $7M just to notify all its customers that their data had been exposed. However, the cost does not stop there.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Remediation costs, such as a credit monitoring service which Fidelity offered each customer to allow them to monitor that no fraud is taking place, can add up to several million more dollars. And the loss of some percentage of its angry customers, perhaps as much as 20% of its clients, will add even more to the total cost of the data breach. It is also likely that Fidelity will ultimately be assessed fines\/penalties from government agencies, resulting in total monetary loss to Fidelity from this one data breach in excess of $10M.  &#8220;Then you add on the cost of the personal credit watchdog services that companies often provide users who are victimized, plus the potential loss of business from the negative publicity, and the total loss to the company grows rapidly,&#8221; he said.  And the loss of some key business information can also be a violation of the new business regulations, such as the Sarbanes-Oxley Act and the Health Insurance Portability and Accountability Act (HIPAA). <\/p>\n<p>Gold suggested that companies need to take a series of steps to mitigate the risk both on laptops and smaller mobile devices:<br \/>\n   1. Educate users<br \/>\n   2. Password protection is set to &#8220;on&#8221;<br \/>\n   3. Mobile management system<br \/>\n   4. Determine which files can and cannot be downloaded<br \/>\n   5. Encryption<br \/>\n   6. Enforce connection\/VPN security standards<br \/>\n   7. Require active firewall protection and virus protection<br \/>\n   8. Enable device lockdown and &#8220;kill&#8221; functions<br \/>\n   9. Log device <\/p>\n<p>The good news is that at least partial solutions for common BlackBerry, Windows Mobile and Palm OS handhelds are available on the market today.<\/p>\n<p>http:\/\/www.computerworld.com\/action\/article.do?command=viewArticleBasic&#038;articleId=9000996&#038;source=rss_topic17<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-136","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"_links":{"self":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/136","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=136"}],"version-history":[{"count":1,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/136\/revisions"}],"predecessor-version":[{"id":2623,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=\/wp\/v2\/posts\/136\/revisions\/2623"}],"wp:attachment":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=136"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=136"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=136"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}