Do you have smartphone and mobile device cybersecurity in mind when securing your small business data? If you answered no, here are two different vulnerabilities that impact some of the most popular devices on the market.
The first vulnerability is related to brute force attacks on the fingerprint readers of Android based devices. If the cybercriminal has possession of your phone, they can unlock unlimited attempts to match your fingerprint to unlock your smartphone. You might now think, “but they would need my finger,” but you would be wrong. Cybercriminals can purchase copies of known fingerprints on the darkweb from known data breaches or they can even buy them legally from legitimate sources.
The second vulnerability is related to Samsung devices that run Android 11, 12, and 13. The vulnerability identified allows an attacker to install spyware and other malware to your mobile devices. The cybercriminal bypasses the “ASLR exploit mitigation technique” that is in place to help protect your device from cyberattacks. This vulnerability has been patched in the latest May 2023 Samsung Android update. So update your Samsung smartphones soon.
Don’t forget mobile
It is important to remember how much access our smartphones really have. For a lot of us, we use these devices more often than computers. Our smartphones are also oftentimes used when authenticating into accounts protected with multifactor authentication. So it is extra important to project them. Our smartphones usually have anywhere from 50-200 separate apps installed on them, all granting varying permissions and access. You may have a few banking apps, some medical apps, your social media, email accounts, etc. all on one device. This makes your device priceless for a cybercriminal.
To learn more about smartphone and mobile device cybersecurity and other current cybersecurity trends, threats, or tips visiting Small Business, Big Threat!