 |
|
PDA, Handheld Security Guidelines
PDAs as "simple devices" has left many owners so as corporate networks
vulnerable to attack. Not only can the PDAs themselves be compromised, but
PDAs can also be used as trojans to attack a network.
Attacking a PDA is not as easy as attacking a PC. Because the operating
system is in ROM, PDAs tend to be unique, and the art of exploiting PDAs
is relatively new. But if a hacker is willing to accept these limitations
and is sufficiently obsessed, there are a number of ways that PDAs can be
exploited.
PDAs running Windows are compromised, using cabinet files and the autorun
feature of removable media cards to introduce malicious programs. Pocket
Internet Explorer can be used to trick users into revealing personal
information. Additionally, Soft Input Panel (SIP) that substitutes for a
hardware keyboard on Pocket PCs can easily be replaced by a seemingly
identical program that logs keystrokes.
|
|
|
|
|
INTRODUCTION |
|
Losing your PDA is bad enough, given the expense and inconvenience
of replacing the hardware, but lost data can pose an even greater
problem. When you lose your handheld, you lose all of the data
you've entered since your least synchronization. Even worse, all the
sensitive data on your handheld is exposed. Whoever finds your
handheld can read the data, copy it, even publicize it unless you
take steps to protect it from prying eyes.
Do you keep personal email, private files on your handheld? Would
you want others to have access to that information? The good news is
that with a small amount of effort, there are steps you can take to
protect your sensitive data.
Proceed to:
[ Ways to Secure Your
PDA ]
|
|
|