Light Dark
November 7, 2016 By Larry Loeb 2 min read

A Smartphone Upgrade Can Be Risky

As the holiday season draws closer, commercial incentives to make a smartphone upgrade grow larger. But business employees may have enterprise data stored on their phones or tablets.

According to a Blancco Technology Group survey, 68 percent of mobile users will purchase a new device during the upcoming season of festivities. Respondents said they were primarily influenced by financial incentives for switching to a new carrier or device manufacturer.

Who Is Responsible?

While 54 percent of respondents believed the original device owner was responsible for erasing data before trading in a device, 21 percent placed that onus on the reseller. Nearly half indicated that data erasure was someone else’s responsibility.

Respondents ranked financial details, Social Security numbers, credit card details, corporate emails and client lists among the most critical types of personal and company data that could be compromised when upgrading or otherwise reselling a device. Still, 72 percent of the survey participants said they had connected to insecure Wi-Fi, and 76 percent used their smartphones to access company networks.

Tweaking BYOD Policies

These findings should influence the way enterprises implement and enforce bring-your-own-device (BYOD) policies. It seems that any mobile device that is routinely used contains corporate data. Organizations must ensure that this data does not fall into the wrong hands, but they aren’t prepared to do so. In fact, 42 percent of those surveyed work for companies that lack visibility into what corporate data is on their smartphones.

Users can’t possibly be sure their older devices will be safe from data thieves, especially considering 32 percent would readily trade in their old phones to their mobile carriers or network operators. Even more concerning, 23 percent would sell their devices to online shopping sites or to retailers that cannot assure data erasure.

Enterprises must have methods in place to deal with this holiday upgrade binge. Companies should inspect any smartphone or device before it is sold to ensure that no company information can be exfiltrated.

 |  |  |  |  | 
Larry Loeb
Principal, PBC Enterprises

More from

November 15, 2024

Cybersecurity dominates concerns among the C-suite, small businesses and the nation

4 min read - Once relegated to the fringes of business operations, cybersecurity has evolved into a front-and-center concern for organizations worldwide. What was once considered a technical issue managed by IT departments has become a boardroom topic of utmost importance. With the rise of sophisticated cyberattacks, the growing use of generative AI by threat actors and massive data breach costs, it is no longer a question of whether cybersecurity matters but how deeply it affects every facet of modern operations.The 2024 Allianz Risk…

November 14, 2024

Autonomous security for cloud in AWS: Harnessing the power of AI for a secure future

3 min read - As the digital world evolves, businesses increasingly rely on cloud solutions to store data, run operations and manage applications. However, with this growth comes the challenge of ensuring that cloud environments remain secure and compliant with ever-changing regulations. This is where the idea of autonomous security for cloud (ASC) comes into play.Security and compliance aren't just technical buzzwords; they are crucial for businesses of all sizes. With data breaches and cyber threats on the rise, having systems that ensure your…

November 13, 2024

Adversarial advantage: Using nation-state threat analysis to strengthen U.S. cybersecurity

4 min read - Nation-state adversaries are changing their approach, pivoting from data destruction to prioritizing stealth and espionage. According to the Microsoft 2023 Digital Defense Report, "nation-state attackers are increasing their investments and launching more sophisticated cyberattacks to evade detection and achieve strategic priorities."These actors pose a critical threat to United States infrastructure and protected data, and compromising either resource could put citizens at risk.Thankfully, there's an upside to these malicious efforts: information. By analyzing nation-state tactics, government agencies and private enterprises are…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature