Closing the Security Gap in Mobile App Development
You know there’s an issue when the very industry that promotes standards related to security, is having an issue with security vulnerability. Internet of Things (IoT) systems are being easily compromised by hackers. A recent study by HP found that one of every 10 popular Internet-connected security systems – as in systems implemented to increase your security and peace of mind and reduce your risk like cameras and locks – had significant security vulnerabilities that allow for hackers to access them and ultimately control them.There are a growing number of major Fortune 500 companies developing mobile apps that have security issues as well. These are companies we really want to trust, like banks, health care and online retail organizations handling our billing and personal health information. The hackers themselves have reached a new level of attention in the eyes of the public. 60 minutes featured a story with hackers selling the malware that was used to hack into Sony, now widely available to anyone who has the ability to pay for it.
It is concerning to discover that cyber security experts say over 40 percent of companies developing mobile apps do not scan their apps for vulnerabilities before releasing them to the public. Some test only a portion of their apps or never test them at all. Corporate budgets often don’t include funds for testing. We are seeing only the beginnings of regulations being put in place to deal with this reality.
Serious data breaches can cost companies millions of dollars. The issue causes firms to invest in securing their IT networks, computers and servers linked to them. But strangely, not the mobile apps that are brought into the workplace on worker’s mobile devices. With mobile devices and the amount of data growing at a rapid pace, the opportunities for hackers are growing as well. Companies will be forced to take action and protect themselves from mobile data breaches from unverified apps downloaded by personnel on work devices connected to company networks. What does the company stand to lose? The reputation of brands for products and services, sensitive documents, proprietary information, customers, amounts in the millions of dollars.