Government agencies’ usage of Microsoft Office 365 and Teams has skyrocketed (over 900% for some agencies). Unfortunately, the cyber threats to the GFE and BYOD mobile devices that are accessing O365 has also significantly increased. Without implementing mobile threat defense (MTD) solutions, agencies and their “Zero Trust” initiatives are exposed and at risk.
This complex challenge is unique to mobile since IT lacks device administration access and remains a guest on mobile devices, as in the case of BYOD environments, and therefore cannot ensure timely updates of app and operating system security patches.
Preventing rogue network attacks
Rogue network attacks are problematic even for government entities that have robust network access policies and procedures in place. Rogue networks can be disguised to appear as official networks, so even employees attempting to comply with network-access policies can be deceived. Disguised, rogue networks make devices susceptible to man-in-the-middle (MITM) and other surveillance attacks.
Managing and mitigating the app threat
Mobile apps pose two kinds of threats. One relates to legitimate apps that nevertheless have code that makes them vulnerable to attack or leak data. Another type of threat is that from malicious apps, including apps that are deceptively named or contain deliberately malicious code in order to spy on users and compromise mobile devices.