Hi again. As the title says there is a growing pain in the mobile device field. If you compare your laptop against your mobile phone and think how much there is actually information in your mobile phone you will be surprised. Mine includes contacts, all the meetings and company/personal email.

Think about the situation that you somehow have lost your phone. Maybe a competing company has stolen it from you (these things happen). There is all the information they need to know. What are your plans and who you have been talking to. You mights loose cases just because they know who to talk to and what to offer. That would piss me off.

Companies must start thinking about modern day phones as laptops as they actually have as much information as laptops. Encryting data is not enough as most of the encrypting softwares still are bit too heavy to use. You can not deny users connection to Internet beacause that will prevent normal working. Firewall is ok and there are not enough viruses yet to be worried about. So what to do ?

What is the biggest security problem at the moment for companies ? Isn't that you loose/misplace your phone or someone steels it.
What to do then ? I do hope that you had a software installed which has backed up all information from your phone and enables you to erase, wipe and close the phone remotely. If you do not have it yet I do suggest that you contact at least us contact (at) arnora dot com that we can help you to find a provider who can help you.

Cheers,
Markus

now the article...

By Vivian Yeo, ZDNet Asia
04/04/2008
URL: http://www.zdnetasia.com/news/security/0,39044215,62039840,00.htm

Businesses in Asia are still not paying enough attention to securing corporate mobile devices, according to findings of a recent Symantec survey.

Conducted between November 2007 and February 2008, the Web-based survey found that nearly half of the 560 respondents use mobile devices to access corporate e-mail accounts, but fewer than one-third of the enterprises had mobile security policies in place.

In addition, 27 percent indicated they did not have mobile antivirus software.

Conducted on businesses in India, Indonesia, Malaysia, the Philippines, Singapore and Thailand, the survey featured questions on e-mail security, backup and archival. A rating of the "health" of the respondent's corporate e-mail systems would be generated at the end of each completed questionnaire.

Don Ng, Symantec's director of enterprise security for the Asia-Pacific, told ZDNet Asia Friday that in terms of absolute numbers, mobile viruses are not as prevalent as Windows-based PCs.

However, the threat is "more significant" as mobile devices, and in particular smartphones, increasingly contain more personal data. For example, Ng said other than access to his corporate e-mail, his smartphone also contains passwords and banking credentials.

The value of a mobile device has gone beyond just a communication tool; it's a lifestyle companion with all our information on it," he noted.

Businesses need to treat mobile devices as PCs and implement the same protective measures, said Singapore-based Ng. "Whatever that [businesses] have accomplished in order to protect personal computers, workstations and servers within the corporate environment, [they] will need a similar infrastructure for mobile devices," he added.

Symantec highlighted three key ways to secure corporate mobile devices such as smartphones:

1. Put in place adequate protection measures
Ensure that there are multiple layers of security such as a firewall or antivirus software, and that they are able to run on different mobile platforms.

2. Encrypt data
Companies need to implement encryption technology to protect their mobile devices, especially if the users are entrusted with confidential information. This is to prevent important or sensitive data from being stolen.

3. Administer network access control
Identify access levels and classify users accordingly on a rigid basis to minimize the impact of data leakage.