Hewlett Packard has a useful technical white paper (pdf) on 2011’s top cyber security risks and identifies mobile as a rising non-traditional vulnerability for the enterprise. It’s interesting to see this from a non-malware provider’s perspective.
HP assesses the mobile risk and says the device-centric approach of anti-virus on every device is outdated and misses all attacks apart from certain categories of malware. In particular, there’s a risk of apps reading data streams of other apps. Over half of all apps tested leaked information. No mobile platform is totally safe.
This reminded me about my past posts on the security of login tokens and safe coding (see Related Articles below).