mobile security

Cyber Security at Mobile World Congress

mobilephonesecurity936843331Leave a comment

Here is a re-post of the blog I did for the Smart UK site (@smartukproject) in preparation for Mobile World Congress. I’m doing quite a few things out there, but I’m looking forward to this on the Tuesday morning (28th), it is going to be a great event,. There are still places available and I encourage anyone interested in mobile security and fraud related topics to sign-up.


The UK government recently published the Cyber Security Strategy. What implications does this have for the mobile industry and society at large? With the mobile device at the centre of nearly everyone’s life, the integrity of mobility is paramount. The mobile industry has weathered a variety of security incidents over the years but has been relatively successful in comparison to other industries. Can any lessons be learnt from the past successes of mobile that will help for the future? Is the industry living on borrowed time?

This year’s UKTI and ICT KTN Mobile World Congress seminar: Cyber Security in the Mobile World; will look at the vast array of subjects which now come under mobile security – including cyber bullying between children, fraud against telephony systems through to emerging technologies such as machine-to-machine and LTE infrastructure. Crossing all of these varied topics are industry needs such as the lack of security-aware software engineers and the need to prosecute criminals who defraud or attack electronic systems.

While the mobile industry has made great efforts to learn the past mistakes of the PC world in terms of security, the anti-virus industry has reached saturation in its traditional space. Do mobile devices really need anti-virus or can newer operating systems and technologies negate the need for this type of end point security? Can these companies transform their business models to the changing mobile security landscape and continue to provide a useful service to consumers? How can application stores and developer programmes be improved?

We are pleased to have some of the world’s leading mobile security experts speaking at the event next week. Make sure you sign up as soon as possible in order to reserve your place.

David Rogers runs http://blog.mobilephonesecurity.org. He is also advising the UK Department for Business, Innovation & Skills on Cyber Security for mobile.

Global Mobile Awards 2012 – Spread the Word

mobilephonesecurity936843331Leave a comment

So here we are, before Christmas talking about Mobile World Congress (MWC). This is normal in the mobile industry – most companies in the industry are busily working on demos, deciding who to meet and sorting out stands. #mwc12 is after all, the biggest event in the 2012 calendar for the mobile industry. As a regular, it was sad not to be able to make it to 2011’s MWC, but I’m really looking forward to going back in 2012. Like most Brits, I made sure I had my flights from Heathrow booked back in March!

This year,  I am also heading over as a judge for the Global Mobile Awards 2012. I am very honoured to have been asked to judge in the Best Technology category – for Best Technology Product or Solution for Safeguarding and Empowering Customers. The product or solution must have been launched and commercially available prior to the closing deadline – which is very soon – the 30th of November 2011. I’d like to encourage entries. If you think your product or solution fits the bill, make sure you register your entry. More details on the criteria can be found on the award page. The judging criteria will be as follows:

  • How does the use of your technology safeguard and protect mobile users’ privacy and/or security?
  • Does your technology prevent fraud against the operator?
  • How does this technology improve the end user experience
  • Does this technology allow access to new services by illuminating privacy and security issues?

If you know anyone who you think should enter this, make sure you spread the word! Good luck to all the entrants and to the rest of you, let me know if you’re coming to Barcelona!

Faceniff – sniffing Facebook accounts with Android Phones

mobilephonesecurity9368433315 Comments

I’ve been meaning to have a look at ‘Faceniff’ for a while. I came across a good video today which demonstrates it (and has some nice music). It is basically Firesheep for Android. I’ll let the video do the talking, but my advice to people is to go to Facebook, select “Account” (at the top right of the page), choose “Account Settings” and then go over to the left and choose “Security”. Go over to “Secure browsing” and choose the option for “Browse Facebook on a secure connection (https) whenever possible”. This blocks the Faceniff attack. Google changed this to be a default setting a long time ago with gmail. There are plenty of other threats out there when connecting to WiFi access points, so try and be safe.