Enterprise Mobile Security: How to reduce the cybersecurity threat

Editorial Type: Opinion Date: 2019-12-01 Views: 1,343 Tags: Security, BYOD, Mobile, Cloud, Lookout, Schneider Electric
Tom Davison, EMEA Technical Director at Lookout examines how modern businesses can scale up their mobile security. As employees using company devices become an ever more attractive target for attack how can companies protect their endpoints?

The mobile-first, cloud-first, modern workplace has resulted in employees accessing corporate data and networks from anywhere, on any device. Today, employees keep their mobile device with them constantly and enterprises are fully embracing the bring your own device (BYOD) model to help achieve greater productivity, efficiency and fluidity.

Yet, this has introduced serious security issues for businesses as these endpoints are new routes bad actors look to target and exploit through malicious means. While there are a host of mobile threats, two popular mobile attack tactics hackers leverage = are phishing and malicious mobile applications.

To compromise a mobile device, many hackers use social engineering to trick their unsuspecting users into installing malware or clicking a link that directs them to a malicious site via a personal email, SMS message or a popular social media messaging platform. In fact, data has shown enterprise users are three times more likely to fall for a phishing link when on a small screen than when using a desktop computer. Applications also pose a significant threat to enterprises, especially those being downloaded outside of public app stores. Rogue apps have been found containing spyware included alongside legitimate code from well-known applications, allowing hackers to steal login credentials and customer data.

Schneider Electric adopts a comprehensive mobile security solution
As the number of threats to the enterprise increase and with mobile a growing security concern, Schneider Electric, a global energy management and automation enterprise with 170,000 employees, made the decision to implement an endpoint cybersecurity strategy to protect the increasing number of internal and external endpoint devices that connect to their network.

An Enterprise Mobility Management (EMM) solution was already in use, but Schneider Electric wanted to take this further with a dedicated mobile threat defence (MTD) to help recognise on-device threats and provide remediation. Once implemented, Schneider Electric immediately saw the benefit and value the MTD provides by identifying and preventing such threats as man-in-the-middle attacks and the installation of unsafe third-party applications.

In addition to this, outdated software on employee devices was shown to be an issue. This can be common for most enterprises considering the diverse range of devices available. The visibility offered by the MTD enabled Schneider Electric to flag the issue to their employees, alerting them to patch their devices, thus adding another level of security. Given the positive results, Schneider Electric has now decided to expand the MTD solution across their entire endpoint infrastructure. The enterprise is also moving towards conducting cybersecurity training, including specific mobile modules to help the workforce become more aware and understand the potential dangers of threats like mobile phishing.

Finding a solution that secures the entirety of the workforce whilst effectively integrating with existing security infrastructure can be a difficult task. Yet, Schneider Electric was able to fill a gap within its security posture using a comprehensive mobile threat defense solution that offered an extra level of comfort, visibility and, most importantly, security.