Light Dark
May 26, 2017 By Larry Loeb 2 min read

The challenge of using mobile devices for business while keeping endpoints secure remains a top concern among security leaders.

In its “2017 Mobile Security Report,” iPass surveyed 500 chief information officers (CIOs) and senior IT decision-makers from the U.S., U.K., Germany and France. It found that 93 percent of organizations were “somewhat or very concerned” about risks associated with the mobile workforce. Additionally, 47 percent of respondents were “very concerned” about these risks, up from 36 percent last year, suggesting that the unease is mounting.

Geographical Differences

Although the respondents generally agreed on the focus areas of worry, the study revealed that the level of concern varies by geography. U.S. organizations were most likely to express their apprehension about mobile security, with 98 percent reporting that they were “very” or “somewhat concerned.”

European organizations showed less worry, with 89 percent of respondents expressing anxiety about increasing mobile threats. Only 32 percent of U.K. respondents indicated that they were “very concerned” about mobile security threats, compared to the 58 percent of U.S. respondents.

MitM and Other Mobile Workforce Hazards

The survey respondents pointed to location-based threats as a particular area of concern, since many mobile workers use public Wi-Fi to access company data. Forty-two percent said the mobile workforce most often leveraged insecure internet connections from coffee shops, followed by airports and conference centers, respectively.

“Cafes invariably have lax security standards, meaning that anyone using these networks will be potentially vulnerable,” Raghu Konka, vice president of engineering at iPass, said in a statement.

Sixty-nine percent of respondents ranked man-in-the-middle (MitM) attacks as the greatest risk associated with using public Wi-Fi hotpots. Other problems included lack of encryption (63 percent), hotspot spoofing (58 percent) and unpatched devices (55 percent).

Banning the use of public Wi-Fi may be good for security, but it can negatively impact the business opportunities and the productivity of the mobile workforce. Organizations must strike a balance to empower their employees with both mobility and security.

 |  |  |  |  |  |  | 
Larry Loeb
Principal, PBC Enterprises

More from

May 3, 2024

What we can learn from the best collegiate cyber defenders

3 min read - This year marked the 19th season of the National Collegiate Cyber Defense Competition (NCCDC). For those unfamiliar, CCDC is a competition that puts student teams in charge of managing IT for a fictitious company as the network is undergoing a fundamental transformation. This year the challenge involved a common scenario: a merger. Ten finalist teams were tasked with managing IT infrastructure during this migrational period and, as an added bonus, the networks were simultaneously attacked by a group of red…

May 2, 2024

A spotlight on Akira ransomware from X-Force Incident Response and Threat Intelligence

7 min read - This article was made possible thanks to contributions from Aaron Gdanski.IBM X-Force Incident Response and Threat Intelligence teams have investigated several Akira ransomware attacks since this threat actor group emerged in March 2023. This blog will share X-Force’s unique perspective on Akira gained while observing the threat actors behind this ransomware, including commands used to deploy the ransomware, active exploitation of CVE-2023-20269 and analysis of the ransomware binary.The Akira ransomware group has gained notoriety in the current cybersecurity landscape, underscored…

May 1, 2024

New proposed federal data privacy law suggests big changes

3 min read - After years of work and unsuccessful attempts at legislation, a draft of a federal data privacy law was recently released. The United States House Committee on Energy and Commerce released the American Privacy Rights Act on April 7, 2024. Several issues stood in the way of passing legislation in the past, such as whether states could issue tougher rules and if individuals could sue companies for privacy violations. With the American Privacy Rights Act of 2024, the U.S. government established…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature