StiK)

Amber Schroader, Paraben Corporation:

The best security is to be aware of what your device is doing and what you have granted access to with the device use po-licies and with 3rd party apps. We have to find the line between being secure and being accessible.

Rick Blaisdell: Knowing your vulnerabili-ties and making sure that you protect them will stand you in good stead for 2016. Other precautionary steps include:

- Use strong passwords for your accounts that include numbers, lower case and ca-pitalized letters, and are not easy to gu-ess, e.g. password, 12345, etc. Don't open suspicious emails requesting that you re-enter sensitive data - Destroy sensitive documents—Use a VPN to secure your Internet connection if you need to use public Wi-Fi—Keep your antivirus softwa-re up to date.

Julie Herold, Kenny Herold, Odin’s Eye:

Unfortunately, the anti-virus/anti-malware maturity of software for phones is very immature. This is as a result of the lack of a need for it, we are barely into the pattern based detection on mobile pro-grams designed to protect an end user against threats. This lack of maturity is due, in part, to the lack of realistic threat scenarios outside of the so-called

“vetting” of applications before they are available in a store.

Mayur Agnihotri: Endpoint protection so-ftware must be used on every mobile device. • Sharply analyze cloud services for their ability to resist threats and attacks. For this, we should terminate third-party security vendor conduct testing and instead, start checking the cloud provider's certificate which should indicate that third-party security vendor has already tested its applications. •

Roberto Langdon, Nicolas Orlandini, KPMG: Mobile phones must be protected by antivirus, firewall, intrusion prevention systems, and backup policies as well. They are IT equipment! Phishing techniques will be as frequent as during 2015, and Android is still showing a lot of security hack opportunities.

By the way, a lot of people think that the mobile phone is more private than a workstation or notebook, and sometimes there are important discoveries not imagi-ned by the people involved in a fraud.

Stephan Conradin: Keep in mind it is a smart device, open and not very secure.

Awareness!

M What security measures we should use to protect ^OBILE

our mobile phones in the next year?

Ondrej Krehel, LIFARS: Be aware and read the fine print on permissions.

Paul Hoffman, Logical Operations: Use Two Factor authentication wherever po-ssible. Change passwords to be more se-cure. Use Bio where possible.

Wade Lovell, Simpatic: Establish a compa-ny-wide approved apps list for “bring your own devices” (BYOD). • Have IT set up an internal app store so IT can determine whether the checksums match with the publishers’ source files, test updates befo-re they abefo-re deployed, etc. • Turn off wi-fi outside the office and route everything through cellular data except while in the office.

Anthony Di Bello, Guidance Software: Sa-me Sa-measures we would take with any other device. Encryption, password pro-tection, turn off Bluetooth/wifi/gps when in questionable locations such as Defcon.

Andrew Bagrin, My Digital Shield: There non-exhaustive list of security precautions you can take: Check your device’s security fea-tures before you buy, such as file en-cryption, device wiping capacity, and au-thentication features. • Secure the device using locking, enabling encryption and antivirus software. • Configure web unts using encrypted connections in acco-unt options such as HTTPS or SSL. • Avoid clicking links sent in suspicious emails or text messages. • Do not reveal your mo-bile phone number on social networking websites.• Consider what personal infor-mation you will store on your device. • Vet applications before installing them on your phone by researching them first. • Disable Bluetooth, infrared and Wi-Fi in-terfaces when not in use and in public appoint-ment or to call family ). In my current ca-pacity, a smartphone is a liability and risk.

M What security measures we should use to protect ^OBILE

our mobile phones in the next year?

Nick Prescot, ZeroDayLab: For companies, the MDM sandboxing is a good idea but for personal users, they are safer than desktop systems.

Einaras Gravrock, Cujo: For starters, you should secure your home network. Often times, home hackers get access to our cell phones by penetrating your home ne-twork. Secondly, do not use public Inter-net Inter-networks.

M What security measures we should use to protect ^OBILE

our mobile phones in the next year?

Michael A. Goedeker, Auxilium Cyber Se-curity: Increased usage as a cyber war and espionage tool. Data leakage and theft.

Wade Johansen, CouriTech LLC: Bluetooth security problems currently plague the mobile phone industry. Users who link to their cars (remote start), Pandora radios, GPS mapping, etc., are highly exploitable.

Rajeev Chauhan, Cyber Oxen: Identity theft and personal data security.

Einaras Gravrock, Cujo: The challenge is that companies will need to continue shi-fting their budgets away from features and onto security which will slow down overall product improvements as well as profitability.

Mayur Agnihotri: Ransomware • Encryp-ted Penetration • No endpoint protection software • Application-Based Threats.

Gerald Peng, Mocato: The increasing po-pularity of mobile shopping and mobile beacons will make mobile phones likelier fraud targets. The ability to fight mobile platform fraud will be influenced by in-novations in data protection, intuitive se-curity compliance protocols and user au-thentication.

Roberto Langdon, Nicolas Orlandini, KPMG: Using phishing techniques, the bad guys made several devices contamination oriented to steal information, mainly fi-nancials (username, PIN, credit card infor-mation, etc.), as well as personal informa-tion. All the stuff with value at the black market. Also, it cannot be left out what it is related to spy at political level or indu-strial secrets as well.

Andrew Bagrin, My Digital Shield: More features means more vulnerabilities, and ability to control everything that you can control from you phone (car, house, etc.).

David Clarke, VCiso: Marketing apps may-be too invasive, exploits exposing more personal data.

Wade Lovell, Simpatic: As payments move to the smartphone, so will attacks. • Bio-metrics, as currently implemented, are a dangerous way to validate users to devi-ces and once a fingerprint is collected or stolen, the device and ALL FUTURE DEVI-CES where the user registers that finger-print are compromised. This is disastrous for BYOD. • Nation States requiring back-doors or compromising component manu-facturers.