Wednesday, April 3, 2013

Mobile Device Security in the US Military Comes Under Fire

Kudos to my colleague & friend Will Lippert for cluing me into this one :)

On March 26th, the DoD Inspector General released a report on the effects of BYOD on the U.S. military.  Among the report's findings:
  • Mobile devices were not secured to protect stored information.
  • The US Department of Defense (DOD) did not have ability to wipe devices that were lost or stolen.
  • Sensitive data was allowed to be stored on commercial mobile devices acting as removable media.
  • DOD did not train users and did not have them sign user agreements.
  • The Army CIO was unaware of more than 14,000 mobile devices used throughout the Army.
Sophos posted an entry on its security blog about this report earlier this week.  Strangely enough, shortly after the Sophos story released the DoD report was taken down from website "pending further review of management comments."  The site states that the report should be reposted on April 4th...keep an eye out for it!

1 comment:

  1. UPDATE: The report is back on the DoD IG site. You can also link to it here:

    http://tech.groups.yahoo.com/group/WarriorOfLight_Security/files/

    ReplyDelete