19 November 2014
PA Consulting Group’s Simon Green, a cybersecurity expert, is quoted in an article in SC Magazine on NotCompatible, the android trojan. According to the article, its sophistication suggests the malware industry sees mobile as worth spending time, effort, and money on.
Simon explains that people are still using the unpatchable flaw despite the sophistication of the Android botnet: “The weakest link in all of this is still people. Social engineering is the primary attack method which can be mitigated through the use of HoMER (CPNI's people risk approach)”
Simon goes onto comment: “Corporate security should look to identify SSL session initialisation as a technical measure, deploying monitoring for mobile devices performing any sort of local network whilst educating people about safe practices”