How Organizations are Attacked

  • Home
  • How Organizations are Attacked

How Are Organizations Attacked via Mobile Endpoints?

Cyber Armor has identified the primary ways an attacker will compromise a mobile device to gain access to organizational information or use it as a stepping stone into the network. We call these attacks vectors “Mobile Menaces”.

image

OS Exploit

The most serious and impactful attack. OS exploits target old or vulnerable mobile device operating systems. Updated devices are more immune to attack but not completely safe and can still be vulnerable to zero day attacks.

image

Rogue Profile

This often comes in on the back of another app (like a VPN app) installing various escalated rights and permissions.

image

Phishing

This attack disguised as something legitimate like an email, sms, or application and often appears to come from a friend, a business you often work with (like a bank), etc. Once you activate the phish, various attacks can be launched.

image

Bad Wi-Fi

A bad Wi-Fi, also called rogue Wi-Fi or rogue access point, looks like a legitimate Wi-Fi but is actually controlled by the attacker. Once a device connects to the bad Wi-Fi, the attacker can monitor and direct traffic at their discretion which often leads to an exploit being delivered to compromise the device.

image

Man in the Middle

Often abbreviated as MiTM, this attack inserts itself between the mobile device and the intended destination. The attack uses something familiar (like a website or online banking) as it sits in the middle with the user not knowing they are being attacked.

image

Malicious App

These are apps that often look like a normal app (like a flashlight app) but behind the scenes are stealing information..

image

Risky Apps

These apps are not necessarily malicious but have privacy and/or mobile app security issues as a result of how they were developed.

Get In Touch