smartphone security advice for consumers 2014 · smartphone security advice for consumers 2014...
TRANSCRIPT
NetSafe Smartphone Security Report 2014
Smartphone Security Report 2014
NetSafe Smartphone Security Report 2014
Smartphone Security Advice
1. Lock your smartphone Use a pin, password, complex swipe or other option to restrict access to your phone should it be lost or stolen. Whilst there may still be ways for persistent attackers to gain access to your device, taking steps to prevent casual use is essential and helps secure the contents of your phone – especially your photos and contacts -‐ from prying eyes. Check settings to enable automatic screen locking after several minutes of non-‐use.
2. Investigate security software that lets you find, lock, wipe or disable your phone Many popular smartphones come with easy options to help you locate your device, flash up a message on screen to anyone finding it or to activate a loud noise to aid recovery or deter a thief. This may be part of the operating system or available as a stand alone app or bundled with an anti-‐virus security suite.
3. Consider installing anti-‐virus software Smartphone operating systems are constantly being improved with steps taken to patch security holes as they are made public. Although the majority of malware or malicious software remains focused on desktop computers, 99% of mobile malware is targeted at Android devices15 and an anti-‐virus package is another line in your defence. New computer security threats are being developed every day and mobile malware continues to be highlighted as an emerging risk.
4. Keep your operating system up to date How easy this task is depends on your chosen device but NetSafe encourages smartphone owners to actively apply operating system updates when made available. Newer versions of software tend to more secure and your smartphone is a powerful computer that also needs protecting.
5. Be cautious about what apps you install Stick with the official marketplaces to avoid installing malicious software and be cautious about what permissions are requested during the installation process. Does that free game really need to be able to read or send text messages or access your camera? Many mobile malware threats are developed and most active in Russia, Kazakhstan, Belarus, and Ukraine but security companies have reported malware being detected in more than 50 countries to date.
15 Data suggests Android malware threat greatly overhyped -‐ http://searchsecurity.techtarget.com/news/2240216335/Data-‐suggests-‐Android-‐malware-‐threat-‐greatly-‐overhyped
NetSafe Smartphone Security Report 2014
6. Jailbreak at your own risk There may be some benefits to trying out a new operating system for your smartphone but dumping the manufacturer’s system can also expose you to increased risk. Make sure you fully understand what the process involves and any additional security features that may be required to avoid malware threats.
7. Backup your device and the data stored on it Imagine the downside to losing your phone and with it your full list of contacts or photos from a recent trip. Try to keep a clean device by routinely removing data that doesn’t need to be kept on your phone just in case you lose it or someone gets access to your collection of risky selfies.
8. Consider the risks of using free Wi-‐Fi The potential for having your emails, banking transactions or purchases intercepted may seem small but NetSafe would still encourage smartphone owners to stick with trusted data connections or your home Wi-‐Fi for sensitive activities. Investigate Virtual Private Network (VPN) security apps if you really need to connect to open hotspots.
9. Don’t click on links or open attachments you weren’t expecting Text spam continues to be an issue for mobile owners so avoid responding to lottery or competition messages or clicking on links they include to strange looking websites. You can forward spam texts to 7726 where the Department of Internal Affairs monitors spam arriving from around the world. If you can read your personal or business emails on your phone, be alert to standard phishing messages that are often more successful at sucking in victims due to the small screen size and the sense of urgency they can create by triggering a notification.
10. Be wary of sharing your smartphone with others Kids love to play games and a loaded smartphone can be a handy babysitting option for bored children in a restaurant or social setting. Be aware though that it doesn’t take much for someone borrowing your phone to accidentally post a rogue tweet to a work social media account or to send an SMS or email to your business contacts. Investigate ways to lock down what apps or functions can be used or simply keep the device for work use only.
11. Be alert to your smartphone behaving oddly Check your bills regularly to see if text messages – especially to premium rate or overseas numbers – are being sent without you noticing. Similarly, high data usage may signify a problem with your phone or an app you have installed. If the battery is draining rapidly this could be a sign that other apps or processes are operating in the background so check to see what is running on the device.
NetSafe Smartphone Security Report 2014
12. Securely erase personal information before reselling or recycling If you’re thinking of selling or recycling your smartphone before upgrading, think carefully about the data stored on the phone and delete all apps and related data before wiping or securely erasing personal information. iPhone owners can use Apple’s factory reset to perform this task, Android and Windows Phone owners can use similar options or install Blancco Mobile Edition on a PC to thoroughly delete data.
NetSafe Smartphone Security Report 2014
I’ve lost my phone – what do I do now? It pays to take preventative steps to protect your phone should you lose it or have it stolen – installing software or activating the manufacturer’s service may let you track, lock or wipe the data in the future. It’s also worth recording the unique ‘IMEI’ number of the handset, which can often be found on the original packaging, under the battery or via the operating system settings. Keep a note of this number and consider storing it alongside other electronic assets you own on the NZ Police website at www.snap.org.nz.
Contact your mobile network operator Once you know your phone is missing, contact your telecoms company for help and advice and consider the new mobile handset blacklisting option.
• 2degrees – 0800 022 022 http://www.2degreesmobile.co.nz/help/lost-‐or-‐stolen-‐phone
• Telecom – 0800 800 163 http://help.telecom.co.nz/app/answers/detail/a_id/1872
• Vodafone – 0800 800 021 http://www.vodafone.co.nz/help/mobile-‐phones/lost-‐or-‐stolen/
Mobile Handset Blacklisting If you lose your handset and don’t want someone else using it on an NZ mobile network, you can have the handset blacklisted or IMEI blocked. To blacklist or un-‐blacklist your device contact your network provider using the details above. To check the status of an IMEI number you can use the Telecommunications Forum checker tool online at www.tcf.org.nz. If you’re considering buying a used handset it may be worth checking that the phone hasn’t been blocked on New Zealand networks before you part with your cash.
Report the lost or stolen phone to NZ Police Making a police report may help you recover your phone and may also be required if you want to make an insurance claim. You can find the details for your local police station in the phone book or on the www.police.govt.nz website.