Today Appthority released a new quarterly mobile security report — the Enterprise Mobile Security Pulse Report — which uses data from millions of mobile security scans Appthority performs each quarter, as well as Appthority’s proprietary Mobile Threat Risk Scores, to measure risk from thousands of data points during Appthority’s deep app analysis. The report looks at three areas of interest to enterprise mobility and security teams: 1) the most common apps, 2) the apps most often blacklisted, 3) the most common mobile app data destinations and their reputations.
The report is designed to help enterprise security teams make better informed decisions about how to protect themselves from the growing number of mobile threats to data privacy and security. With BYOD and COPE, many commonly used app-store approved apps are making their way into enterprises and posing risks to sensitive corporate data. The Pulse report helps them understand which mobile apps are being used, the risks they bring, and how their peers are utilizing mobile threat policies.
Blacklisted Apps in the Enterprise
The report lists the most frequently blacklisted apps by enterprise mobility and security teams. Enterprises blacklist apps for a range of security concerns, including specific malicious or data leakage behaviors, security policy compliance and concerns about shadow data storage. In Q3, Android apps that were blacklisted scored in the malicious range because malware was detected. iOS apps that were blacklisted scored in the data leakage range for sending SMS messages, tracking location or for sending data — including sensitive data — unencrypted. WhatsApp Messenger and Poot-debug(W100).apk top the list. To access all the blacklisted apps and their score details, downloaded the report.
Most Common Apps in the Enterprise
The Pulse report also lists the most common apps found in enterprise environments and their associated risk. The list reveals that many popular apps present in enterprise environments have mobile threat risk scores indicative of data leakage and vulnerabilities. Based on prevalence and their Appthority Mobile Threat Risk Scores, Uber and Facebook top the list. The complete list of the top 100 apps (50 iOS and 50 Android) used in the enterprise, along with their associated risk scores, can be found in the full Enterprise Mobile Security Pulse Report for Q3.
Most Common Mobile Data Destinations
The Pulse report also details the most common destination countries for mobile data and the reputation of the URLs used most by mobile apps among Appthority’s enterprise customers. Leading destination countries for the top 150 Android and iOS apps include the United States and Ireland. Android apps connected to a wider set of geographic locations than iOS apps.