Terms Glossary

BYOD/Mobile Device Security Risks

When it comes to mobile device security, the overlooked and unintended path is usually the best one to an objective. A bring-your-own-device policy for any company brings about a few apparent risks, including IoT device misconfiguration, mixing work and personal activity on the same device, home Wi-Fi security vulnerabilities, and lack of security precautions on the physical device. However, there are also other less obvious risks to a BYOD policy to consider. 

The desktop operating system has significantly matured since it first came out, making it much more difficult to compromise a modern, properly configured Windows 10 box. Microsoft has worked long and hard to make them secure and has come a long way since Windows XP. In contrast, the mobile operating system is relatively young. While the desktop operating system came out in the 1960s, mobile OS has only been around since the 1990s.

There are specific permissions a developer must set in an application to read, write, and delete what is on the SD card in the Android operating system. This is a little bit like if a website could not just download a file to your downloads folder but could also go through, read, modify and delete any files there that it saw fit. While this might be handy with contacts, if an employee has downloaded a file with sensitive data, it's a recipe for trouble.

Explore More Terms
Cross-site Request Forgery (CSRF)
CIS Critical Controls
White-Box Testing
Whaling Phishing Attack
Grey-Box Testing

Featured On

National TV news and media outlets often consult with us for our expertise as a boutique, high-touch ethical hacking firm highly trained in a narrow field of cybersecurity. Please click on any logo below to view the featured story.
Kare11 logoTech Insider logoFox News logoCNN logoBusiness Insider logo

Get your FREE security evaluation today. Learn how our experts can reduce your organization's security risk

Test the effectiveness of your own security controls before malicious parties do it for you. Our security experts are here to help — schedule a call today.
Consultation Request
Dedicated client portal icon
Dedicated Client Portal
Interact in real-time with your RedTeam security professionals on our user-friendly client portal and see firsthand as the team closes in on your company data.
on demand tools icon
Certified Security Experts
Our trusted security professionals hold certifications from the leading industry organizations, including OSCP, CASS, CPT, CISSP and more.
research focused approach icon
Research-Focused Approach
We hold industry-leading certifications and dedicate part of every day to research the latest exploit techniques to ensure our clients remain protected from evolving online attacks.
Free remediation testing icon
Free Remediation Testing
Once your team addresses remediation recommendations, RedTeam will schedule your retest at no additional charge.
LET'S CONNECT
linkedin icontwitter iconfacebook icon
REDTEAM SECURITY
Union Depot Building
214 4th Street E., Suite 140
St. Paul, MN 55101
(612) 234-7848
CONTACT US
info@redteamsecure.comSchedule a Free ConsultationPartner With RedTeam