I couldn't help but notice the report that Lindsay Lohan went loco in Manhattan when a deli worker didn't return her left-behind phone to her. Interesting are the poll questions on the website publishing the article asking whether or not her behavior was inappropriate or hinting that there was sensitive information on her phone.
Lost & Found: Another Security Nightmare is portrayed accurately with Credant Technologies observations. Information is being tossed around at record levels while accessibility includes little or no protection on the devices. Since I wrote this, Apple released in their new OS and update for the iPhone the ability to login to your MobileMe account (that you must subscribe to) and disable your iPhone or send a message to display on the iPhone requesting the finder to call the displayed number to expedite safe return. Good thing for Apple because one of their engineers reportedly left his 4G iPhone prototype at a bar in Redwood City, CA.
Sensitive information is on mobile devices. Manufacturers may be inserting language in their usual disclaimers that they aren't responsible for breach of "sensitive" information stored on mobile devices. State by state I wonder if they won't be challenged at least under the warranty clause of use for particular or specific and intended purposes. Enterprise users may need to put in place a better practice that protects mobile assets and protects the enterprise's information assets.
Tiversa recently testified before Congress that on P2P security, they were able to download 3,908,060 files containing personal information that were inadvertently exposed via peer to peer networks. Tiversa also found information ranging from corporate secrets to classified military information that could threaten national security. Mobility and the devices reach within and out of corporate perimeters with ease.
Losing your mobile device is akin to losing your credit card or worse. Call your provider/carrier, notify your IT/telecom department and sometimes it's necessary to file a police report if the device is suspected as stolen. But this is only reacting to the issue and if the wrong person finds your device your information may become compromised. Does your device have password protection, encryption and a remote kill or disabling feature? What are your company policies about storing and deleting information and what kinds on mobile devices? Will these barriers be enough to protect your company or user? Mobile Peer to Peer (MP2P) presents further problems in addition to security.
Ms Lohan isn't alone since there are other celebrity reports such as the DJ that faced extortion threats; a fishy cellphone story; Paris Hilton's ongoing losses and recently coach Mike Anderson's legally sold unchecked cell phone. There will come other opportunities of compromise because the sheer number of mobile devices and incidents of loss means that sooner or later someone is going to feel some pain, embarrassment or experience a breach of security or financial loss. With mobility we can exercise great independence and freedoms but we can't forget about or neglect the responsibilities lest we learn the valuable lessons of compromise.
As interesting a method that law enforcement has used for years, dumpster/trash diving reveals mounds of information about individuals or organizations. Mobile devices connect the dots and provide opportunity for exploitation. On the personal level a lost mobile device can rock your world upside down. On the business side your company faces untold exposure and even losses not just from what's on your device but what your device can access from the office. "How mad is Steve Jobs right now?," is asked on the video about Apple's 4G prototype. Considering Apple's past tight control and the letter sent by Apple's General Counsel to Gizmodo seeking return of the lost iPhone--you can guess that he's not happy having had his hardware dissected by a geek squad. On the other hand, Apple is getting a lot of media coverage and still building up momentum of their next generation 4G iPhone due out this summer.
