Mobile and IoT cause security concerns for businesses

Despite more than half of companies saying they've been breached, they aren't protecting their apps sufficiently

Companies are worried about insecure mobile apps causing a data breach, yet many are doing nothing to protect themselves, a new study has shown.

Research by the Ponemon Institute, IBM Security and Arxan Technologies revealed the code running many apps on mobile and IoT devices has not been protected to prevent hackers breaking in and stealing data.

Advertisement - Article continues below

Indeed, although 60% of businesses said their organisation has already experienced a data breach caused by an insecure mobile app, with almost all of those affected saying they're worried it'll happen again, 44% are taking no steps to protect their apps against attacks.

"The laissez-faire attitude toward the security of mobile and IoT applications needs to come to an end and organisations must start emphasising security in the development process in order to prevent a detrimental attack," Mandeep Khera, chief marketing officer of Arxan, said.

However, many of those surveyed revealed their businesses don't have the budget to address the growing threat. The biggest factor for the company deciding to allocate a bigger budget is if they experienced a serious hacking incident, or new regulations were introduced.

"One breach can set a company back dramatically in brand damage, financial loss and recovery costs. You have to think of the old idiom - penny wise, pound foolish," Khera said.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Commenting on the findings, Larry Ponemon, chair and founder of Ponemon Institute, said: "Factors revealed in this study may help to explain the lack of urgency."

"Respondents voiced minimal budget allocation, and those responsible for stopping attacks are not in the security function, but rather other lines of business. Without proper budget or oversight, these threats aren't being taken seriously and it should come as no surprise for mobile and IoT applications to be the culprit of major data breaches to come," he added

Other findings of the research revealed that businesses find IoT much harder to secure compared to mobile apps. Two thirds reported their business lacked the quality assurance and testing procedures for IoT apps, meaning they often launch before they're ready.

"Mobile and IoT applications continue to be released at a rapid pace to meet user demand. If security isn't designed into these apps there could be significant negative impacts," said Diana Kelley, global executive security advisor at IBM Security.

"Organisations are at risk and cybercriminals know where the soft spots are. Raising awareness of application security in the enterprise is a critically important first step toward a more secure future for businesses and consumers."

Main image credit: Bigstock

Advertisement

Recommended

Visit/security/cyber-security/355185/165-million-britons-experienced-a-cyber-crime-in-the-past-year
cyber security

Report: 16.5 million Britons fell victim to cyber crime in the past year

1 Apr 2020
Visit/cloud/amazon-web-services-aws/355183/aws-launches-amazon-detective
Amazon Web Services (AWS)

AWS launches Amazon Detective for investigating security incidents

1 Apr 2020
Visit/security/privacy/355182/government-to-launch-coronavirus-contact-tracking-app
privacy

UK government to launch coronavirus 'contact tracking' app

1 Apr 2020
Visit/software/video-conferencing/355180/zoom-does-not-use-end-to-end-encrypted
video conferencing

Zoom admits meetings don't use end-to-end encryption

1 Apr 2020

Most Popular

Visit/security/cyber-security/355200/spacex-bans-the-use-of-zoom
cyber security

Elon Musk's SpaceX bans Zoom over security fears

2 Apr 2020
Visit/development/application-programming-interface-api/355192/apple-buys-dark-sky-weather-app-and-leaves
application programming interface (API)

Apple buys Dark Sky weather app and leaves Android users in the cold

1 Apr 2020
Visit/security/cyber-crime/355171/fbi-warns-of-zoom-bombing-hackers-amidst-coronavirus-usage-spike
cyber crime

FBI warns of ‘Zoom-bombing’ hackers amid coronavirus usage spike

31 Mar 2020