Successfully reported this slideshow.
Your SlideShare is downloading. ×

Zimperium Enterprise Mobile Threats

Jan. 12, 2018
2 likes 1,228 views
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Upcoming SlideShare
Zimperium Global Threat Intelligence - Q2 2017
Zimperium Global Threat Intelligence - Q2 2017
Loading in …3
×

Check these out next

Techvorm com-android-security-issues-solutions
Saad Ahmad
Infographic network protection security
IBM Security
Case Closed with IBM Application Security on Cloud infographic
IBM Security
Top 5 website security myths
kanika sharma
Mobile security
Naveen Kumar
Mobile security
home
Understanding the Risk & Challenges of Cyber Security
Neil Parker
The state of mobile app security
Mahima Anand Sharma
1 of 16 Ad

Zimperium Enterprise Mobile Threats

Jan. 12, 2018
2 likes 1,228 views

Download to read offline

Technology

The latest report summarizes mobile threats recorded from July 1 to September 30, 2017, for device risks, network threats, and app malware, click bots, and privacy abuse. Data in the “Zimperium Global Threat Report” is initiated by Zimperium’s mobile security and mobile threat defense technology, z9, on enterprise customer devices. The threat detection is delivered via the zIPS mobile security app or the lightweight zIAP SDK for mobile app developers. zIPS and zIAP enable companies to detect threats to mobile devices in real-time, so attacks on a mobile device are terminated and won’t advance beyond the targeted device.

The latest report summarizes mobile threats recorded from July 1 to September 30, 2017, for device risks, network threats, and app malware, click bots, and privacy abuse. Data in the “Zimperium Global Threat Report” is initiated by Zimperium’s mobile security and mobile threat defense technology, z9, on enterprise customer devices. The threat detection is delivered via the zIPS mobile security app or the lightweight zIAP SDK for mobile app developers. zIPS and zIAP enable companies to detect threats to mobile devices in real-time, so attacks on a mobile device are terminated and won’t advance beyond the targeted device.

Technology
Advertisement

Recommended

Zimperium Global Threat Intelligence - Q2 2017
Zimperium
1.2k views
7 slides
How to Protect Mobile Banking Users from BankBot
Zimperium
1.8k views
19 slides
Mobile Security: Perceptions vs Device-harvested Reality
Zimperium
446 views
22 slides
Bitdefender Android/Mobile Security
Kazi Sarwar Hossain
102 views
7 slides
2017 Security Report Presentation
ixiademandgen
2.8k views
37 slides
Cyber security threats for 2017
Ramiro Cid
25.9k views
30 slides
Home cyber security
Michael File
411 views
7 slides
2017 Cybersecurity Predictions
PaloAltoNetworks
11k views
1 slide
Advertisement

More Related Content

Slideshows for you (20)

Techvorm com-android-security-issues-solutions
Saad Ahmad
57 views
Infographic network protection security
IBM Security
1.9k views
Case Closed with IBM Application Security on Cloud infographic
IBM Security
13.8k views
Top 5 website security myths
kanika sharma
56 views
Mobile security
Naveen Kumar
2.7k views
Mobile security
home
5.4k views
Understanding the Risk & Challenges of Cyber Security
Neil Parker
358 views
The state of mobile app security
Mahima Anand Sharma
55 views
The New NotCompatible
Lookout
2k views
CSS Trivia
Alert Logic
272 views
Mobile Security
Kevin Lee
3.4k views
Infographic: The High Cost of BYOD
Trustwave
726 views
Mobile Security 101
Lookout
19.2k views
Cyber crime
Zeeshan Khan
529 views
David Emm | The What, How, Who and Why of Computer Malware
Pro Mrkt
356 views
Four Network Security Challenges for the Cloud Generation
AboutSSL
401 views
cyber crime - slideshare by jayed hossain jibon
Jayed Hossain Jibon
208 views
Cloud Access Security Brokers
Abhishek Tripathi
49 views
Stephanie Vanroelen - Mobile Anti-Virus apps exposed
NoNameCon
222 views
We are all info sec
Michael Swinarski
107 views
Techvorm com-android-security-issues-solutions
Saad Ahmad
57 views
6 slides
Infographic network protection security
IBM Security
1.9k views
1 slide
Case Closed with IBM Application Security on Cloud infographic
IBM Security
13.8k views
1 slide
Top 5 website security myths
kanika sharma
56 views
7 slides
Mobile security
Naveen Kumar
2.7k views
17 slides
Mobile security
home
5.4k views
14 slides

Similar to Zimperium Enterprise Mobile Threats (20)

Using Your Network as a Sensor for Enhanced Visibility and Security
Lancope, Inc.
1.5k views
Безопасность данных мобильных приложений. Мифы и реальность.
Advanced monitoring
718 views
Guarding the guardian’s guard: IBM Trusteer - SEP326 - AWS re:Inforce 2019
Amazon Web Services
1.2k views
Securing Mobile Banking Apps - You Are Only as Strong as Your Weakest Link
IBM Security
2.7k views
Lessons learned from 2017 cybersecurity incidents, 2018 and beyond
APNIC
224 views
SECON'2017, Чемёркин Юрий, Безопасность данных мобильных приложений
SECON
590 views
How Aetna Mitigated 701 Malware Infections on Mobile Devices
Skycure
1.9k views
OpenSouthCode '19 - Application Security Fundamentals [2019-May-25]
AngelGomezRomero
173 views
Keeping up with the Revolution in IT Security
Distil Networks
384 views
Delivering secure mobile financial services (MFS) - "Frictionless" vs diligence
NowSecure
739 views
Unicom Conference - Mobile Application Security
Subho Halder
110 views
Nuts & Bolts of the Dynamic Attack Chain
IBM Security
1.2k views
Mobile Application Security Threats through the Eyes of the Attacker
bugcrowd
1.7k views
5 Mobile App Security MUST-DOs in 2018
NowSecure
1.2k views
iOS and Android security: Differences you need to know
NowSecure
989 views
IQT 2010 - The App Does That!?
Tyler Shields
416 views
Cisco cybersecurity essentials chapter 3
Mukesh Chinta
3k views
Securing Mobile Apps - Appfest Version
Subho Halder
364 views
What is Network Security and Why is it Needed?
lorzinian
148 views
The Consumerisation of Corporate IT
Peter Wood
456 views
Using Your Network as a Sensor for Enhanced Visibility and Security
Lancope, Inc.
1.5k views
43 slides
Безопасность данных мобильных приложений. Мифы и реальность.
Advanced monitoring
718 views
51 slides
Guarding the guardian’s guard: IBM Trusteer - SEP326 - AWS re:Inforce 2019
Amazon Web Services
1.2k views
76 slides
Securing Mobile Banking Apps - You Are Only as Strong as Your Weakest Link
IBM Security
2.7k views
40 slides
Lessons learned from 2017 cybersecurity incidents, 2018 and beyond
APNIC
224 views
29 slides
SECON'2017, Чемёркин Юрий, Безопасность данных мобильных приложений
SECON
590 views
56 slides
Advertisement

Recently uploaded (20)

CLRT-01 CO2 Volume Tester yang@celtec.cn.pdf
cellinstruments
0 views
Technical_Paper_Presentation.ppt
Balamurugan619913
0 views
Role of AI In Cross Functional Drivers Performance
RohanRajMudvari
0 views
chilled-water-system-presentation.pdf
bui thequan
0 views
NVS_Sentinel
Mike Mihm
0 views
OT Solution Overview.pptx
Alejandro Daricz
0 views
Sets.pptx
EllenGrace9
0 views
New insights into the selective adsorption mechanism of cationic and anionic ...
PhatHuynh49
0 views
multiple-chiller-system-design-and-control-trane-applications-engineering-man...
bui thequan
0 views
5-mediaandinfosources-170730072054-converted (1).pptx
Lyka Gumatay
0 views
Welcome to SoftMaker Office for Android.potx
GeovaneReisdeMoura
0 views
MOK MIS Ch08 PowerPoint.pptx
MavisKnox1
0 views
INTENSIFYING SCREEN(1)-1.pdf
VanshikaGarg76
0 views
Borel Products catalogue 2023
Borel Swiss
0 views
Web hosting.pptx
Sahil467698
0 views
Getting Started with SQL Language.pptx
Cecilia Brusatori
0 views
Living In The Clouds - Moving A Business To O365 - DWCNZ2019
Ben Mountain
0 views
ajeep_04a_energy_eficient_chiller - Mitsu.pdf
bui thequan
0 views
The User Revolution - DWCNZ2023
Ben Mountain
0 views
Introduction.pptx
EllenGrace9
0 views
CLRT-01 CO2 Volume Tester yang@celtec.cn.pdf
cellinstruments
0 views
1 slide
Technical_Paper_Presentation.ppt
Balamurugan619913
0 views
14 slides
Role of AI In Cross Functional Drivers Performance
RohanRajMudvari
0 views
13 slides
chilled-water-system-presentation.pdf
bui thequan
0 views
119 slides
NVS_Sentinel
Mike Mihm
0 views
33 slides
OT Solution Overview.pptx
Alejandro Daricz
0 views
7 slides

Zimperium Enterprise Mobile Threats

  1. 1. 1All Rights Reserved © 2017 Source: 2017 Mobile Security Spotlight, Zimperium, Inc.
  2. 2. 2All Rights Reserved © 2017 BroadPwn M o b i l e T h r e a t s A r e R e a l …
  3. 3. 3All Rights Reserved © 2017 BankBot M o b i l e T h r e a t s A r e R e a l …
  4. 4. 4All Rights Reserved © 2017 KRACK M o b i l e T h r e a t s A r e R e a l …
  5. 5. 5All Rights Reserved © 2017 Mobile OS is Constantly Changing Source: CVE.Mitre.org. CVEDetails.com: Android and iOS CVEs 0 100 200 300 400 500 600 700 800 900 1000 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 CVE Score 7+ CVE Score 1-6 Windows 10 Through Sept 2017 CVEs
  6. 6. Malicious App
  7. 7. 7All Rights Reserved © 2017 Install app from third party store App Exploit executed App Used as weapon to internal network Leak data Malicious App M o b i l e T h r e a t s A r e R e a l … Permissions abuse App ALLOW
  8. 8. 8All Rights Reserved © 2017 Malicious App M o b i l e T h r e a t s A r e R e a l … 0% 1% 2% 3% 4% 5% Malicious Android Apps Malicious iOS Apps Source: Zimperium Global Threat Intelligence
  9. 9. Device Configuration Changes
  10. 10. 10All Rights Reserved © 2017 Consultant that goes in and out of client networks client1_wifi client2_wifi client3_wifi client4_wifi Doesn’t like client network restrictions on-site client3_wifi CONNECTED! Installs “free” VPN profile to bypass restrictions Installs SSL cert to encrypt / decrypt device traffic SSL CERT All company data is decrypted to the hacker iOS Profile M o b i l e T h r e a t s A r e R e a l …
  11. 11. 11All Rights Reserved © 2017 Unnecessary Device Risks M o b i l e T h r e a t s A r e R e a l … 0% 10% 20% 30% 40% 50% 60% 70% Malicious Profiles Extreme Risk Configuration High Risk Configuration Vulnerable Devices Source: Zimperium Global Threat Intelligence
  12. 12. Network Attacks
  13. 13. 13All Rights Reserved © 2017 At a coffee shop near an office coffee_wifi CONNECTED! Redirect to phishing page LOGIN Data exploit Access to corporate data Wi-Fi MITM M o b i l e T h r e a t s A r e R e a l … Wi-Fi MITM
  14. 14. 14All Rights Reserved © 2017 Source: Zimperium Global Threat Intelligence Wi-Fi MITM M o b i l e T h r e a t s A r e R e a l … 0% 1% 2% 3% 4% 5% 6% 7% 8% 9% 10% Rogue AP SSL Strip MITM Attacks

×