Enterprises that use mobiles for data-based transactions need to focus more on mobile application security, suggests Indusface.
As much as 40% of mobile application vulnerabilities detected are related to unsafe handling of data, says Indusface, a provider of application security solutions for web and mobile applications. While sectors like BFSI and E-commerce that conduct a large part of their business over mobile and web are already taking proactive measures to protect their data transactions, others that are becoming more mobile-enabled also need to focus more on mobile app security, suggests the study.
The survey found that 23% of mobile apps suffered from insecure data storage vulnerability, 17% of mobile apps were suffering from unintended data leakage vulnerability and 10% suffered from weak server side controls. The survey team tested more than 100 mobile applications across a set of Indian companies and detected 21K vulnerabilities. This shows that enterprise mobile apps are extremely vulnerable to data leaks, stated the report.
Ashish Tandon, Chairman and CEO, Indusface said, "The phenomenal increase in mobile usage has also increased the risk of vulnerabilities. Almost all the mobile apps we use today have access to all the data on a user's phone, including business data, which can be extremely risky. Therefore, it has become critical for businesses to focus in a big way on mobile app security and find ways to protect their business critical information."
An interesting finding of the survey was related to vulnerability of mobile apps on Apple iOS as against Android. Although a majority of security breaches and hacking incidents reported in the past have been on Android apps, Indusface Research Team discovered that some of the critical mobile apps on Apple iOS could actually be more vulnerable to security threats.
According to the survey, while the high level vulnerabilities were divided equally (50%) between the two operating systems, among the critical ones Apple iOS was found to be much more vulnerable at 67% in comparison to Android which stood at 33%.
The other key findings of the survey were related to degrees of vulnerability, specific apps and level of preparedness among enterprises, particularly in the E-commerce and BFSI sectors that are heavy users of mobile and web applications. Please click here to view.