Cyber Security Issues For The Mobile Industry

Uploaded on 2023-01-19 in TECHNOLOGY--Developments, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

The widespread availability of spyware, and international scandal over the  technology being used to intercept and monitor supposedly secure communications platforms is combining with growing concerns of the security of 5G network technology to undermine confidence in the mobile industry.

More and more mobile users are aware that their smartphones and the networks that they rely upon are a lot more vulnerable than they thought. 

Against this backdrop, Members of the Board of Directors at The Mobile Ecosystem Forum were asked to consider cyber security issues and share their predictions for the mobile industry in 2023.

 

Verifiable Credentials Will Gain Major Traction

In 2023 we will see the use of Verifiable Credentials start to gain real traction. It's the next generation of digital identity in which people keep their identity information in their own personal digital vault rather than it being managed by a third party. 

The important thing for the industry to keep in mind is that everything about transactions will be standardised by brand new World Wide Web Consortium (W3C) standards. So, the key to this is not the technology but the W3C standards. 

However, as the technology converges around this issue, we will see some great solutions that will create a new layer of trust around verified credentials. This will benefit everyone, especially those in developing countries where bank accounts and documentation are less common. With trusted verified credentials, people in these regions will suddenly be able to access a whole range of services that were previously closed off to them. I think that’s going to be a real game-changer.  Contributed by Andrew Bud, CEO of iProov

IOT Security Standards Are Coming

With the increasing number and complexity of Internet of Things (IoT) devices and the amount of sensitive data they collect and transmit, security is a critical concern. Ensuring the security of IoT systems is essential both for protecting the privacy and safety of individuals and organisations, as well as maintaining the integrity and reliability of critical infrastructure.

Unfortunately, the industry is failing to self-regulate when it comes to IoT security. Paying a premium to enforce IoT security or standards isn’t profitable, so there is no incentive for device manufacturers to worry. As a result, regulators are currently grappling with the issue and, I expect, will be publishing legislation in 2023.

Manufacturers will need to address security issues by embedding measures such as encryption, authentication, access control, and vulnerability management into their IoT devices. So, prepare now!  Contributed by Dawood Ghalaieny, CEO of Zariot

Mobile Operators Offering New Identity Services

Currently, mobile operators are really struggling to find ways to grow their revenues beyond traditional services: voice, SMS and data. Yet, one asset mobile operators can monetise is mobile identity.

Over the coming year, I expect we will see a breakout of systems whereby enterprise can query mobile operators to verify a customer’s age, address, credit status, etc. This information is known and verified by mobile operators to establish a contract, and it is tied to a unique number: a phone number. So, phone numbers could become the unique identifier to verify all this information. 

It will be interesting to see how enterprise will take all those pieces of information and use it to formulate an opinion on a customer that can be used and monetised. It would make things much easier for customers - rather than filling out forms and completing Know Your Customer (KYC) data, they could simply link their mobile number. In turn, this would also be very helpful to businesses. Contributed by Jason Lunn is Global Connectivity, CPaaS at Cisco 

Preventing Fraud Will Become Essential

As the global technology market has grown, so too has a shadow economy of fake accounts. Robots set up fake accounts which are then served ads, draining advertising budget with no benefit. It’s also hard to estimate the size of this shadow economy - it could already be very big.

Telecoms operators play a key role in this economy. Take social media, for example. There are thousands of robots creating fake accounts, with lots of SMS being sent to activate and serve those fake accounts.

On the other side, mobile customers are receiving an unprecedented level of fraudulent phishing (or ‘smishing’ as we call it for SMS) messages with dangerous links.

To help combat these issues, a lot of organisations are currently working on more holistic, 360-degree solutions which would combine multiple data sources into a data pool to analyse and come out with intelligent identification of possible fraudulent transactions as soon as they're triggered.

By using artificial intelligence and machine learning for fraud prevention, organisations will be able to identify patterns immediately and flag off possible situations of fraud and phishing/smishing. They can then intercept these fraudulent or spurious links, displaying a landing page where a user is notified that it’s possibly a fraudulent page, similar to the warnings users get in the likes of Google Chrome. They will also, then, be able to track and block these fraudulent accounts more quickly, making fraud much harder to commit.  Contributed by Anurag Aggarwal is VP Partnership and Alliances at Tanla.

 

Dario Betti is CEO of the Mobile Ecosystem Forum 

You Might Also Read: 

Conversational Commerce Is Going To Be Big - But Could Be Risky:

____________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Building An Identity-First Security Strategy
Europol Arrest Crypto Currency Fraud Gang »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Digitus Biometrics

Digitus Biometrics

Digitus Biometrics is a market leader in biometric access control. We can secure access to any entry point, from the front door to the server rack cabinet.

QATestLab

QATestLab

QATestLab is a leading International software testing company offering a full range of software testing services including security testing.

Ambersail

Ambersail

Ambersail provide Penetration Testing and Cyber Security Compliance services.

Military Cyber Professionals Association (MCPA)

Military Cyber Professionals Association (MCPA)

MCPA are a team of Soldiers, Sailors, Airmen, Marines, Veterans and others interested in the development of the American military cyber profession.

File Centre

File Centre

File Centre is a leading specialist when it comes to data backup, we offer our clients a premium backup retrieval and delivery solution.

Ledger

Ledger

Ledger is a leader in security and infrastructure solutions for cryptocurrencies and blockchain applications using its proprietary technology.

SYSGO

SYSGO

SYSGO is the leading European provider of real-time operating systems for critical embedded applications in the Internet of Things (IoT).

Smart Contract Security Alliance

Smart Contract Security Alliance

The Smart Contract Security Alliance supports the blockchain ecosystem by building standards for smart contract security and smart contract audits.

HOBI International

HOBI International

HOBI International is a leading mobile, IT and data center asset management provider with solutions for device management, reverse logistics, data erasure, refurbishment and recycling.

TechStak

TechStak

TechStak is the easiest way for businesses to find and connect with IT Pros and other technology solution providers in their area.

Boeing

Boeing

Boeing is the world's largest aerospace company and leading manufacturer of commercial jetliners, defense, space and security systems.

MailChannels

MailChannels

MailChannels protects companies against malicious email threats. Used by 750+ hosting providers around the world.

Morpheus Enterprises

Morpheus Enterprises

Morpheus Enterprises offer managed security solutions designed to keep your web applications secure and your business running smoothly.

Beaming

Beaming

Beaming is an established Internet Service Provider for businesses across the UK. We deliver reliable voice, data and managed services, including cybersecurity.

NeuroID

NeuroID

NeuroID combines the power of industry-leading behavioral analytics with advanced device and network intelligence to create your first line of defense against malicious bots, bad actors, and fraud.

Fernao Group

Fernao Group

Fernao offer you all solutions from a single source - from cyber security, business resilience and digital infrastructure to cloud technologies and pentesting.