Henry Dalziel | Hacker Hotshots, Latest InfoSec News | October 25, 2013
Since 2011 we have covered a wide range of information security related subjects – primarily through our Hacker Hotshots Web Show. Hardly surprising, and almost somewhat inevitably, we seem to be reporting more and more on mobile risk and security vulnerabilities. Point in case, we had the researcher who discovered the Android Master Key Vulnerability on our web show last week, the author of Drozer (an Android Pentesting Framework Tool) and the creator of CreepyDOL – which is worthy of further explanation. Out of all the web shows we have had – that fall within the mobile space – CreepyDOL is, in our opinion, absolutely fascinating, and for one instantly understandable reason: the hardware device shows in no uncertain terms the horrifying amount of data that are phones and apps are leaking.
We need a solution, and from our research and understanding, SnoopWall is a clear contender to shore up our mobile defenses.
The clear ‘security issue’ and threat our phones have (and other mobile devices) is that they leak data and allow for opportunities for exploitation through ports being left wide open. SnoopWall lets you, the user, take control over what ports are allowed to remain open. This level of control greatly enhances your security.
Gary Miliefsky, SnoopWall creator, sums it up nicely in a demo that he gave at DEMO Fall 2013: he illustrates that FireFox, on his mobile, is requesting GPS access. Why would FireFox need GPS? If you haven’t allowed FireFox to use GPS then that should ring alarm bells of a possible malware infection. SnoopWall nips that in the bud and with one click you’ve got that potential threat eliminated by blocking its’ access to the port dynamically.
Another feature that we really like about SnoopWall is its’ autopilot mode. The key thing here is that again, all power goes to the user. Autopilot allows for a safer and more secure environment through, for examples, the ‘phone only’ mode or ‘Internet only mode.’ In ‘Internet only’ mode the user can browse the web and send email whilst limiting and restricting other services. As well as locking down the phone by limiting necessary apps the other advantage is that the battery life of the phone is extended. Taking another example, (which Gary highlighted at the DEMO Fall 2013) highlights another advantage of ‘phone only’ mode – namely, the ability to temporarily deactivate texting: ideal when driving since as well all know, texting and driving is extremely dangerous.
For more info and for a demo of the app, and to apply for the beta version, go ahead and hit this link.
Snoopwall helps you reclaim your privacy and increase your safety and that of your children’s. As noted at the beginning of this post, mobile apps are leaking vast amounts of data, some of which can be sensitive data that you would otherwise not want shared or removed from your device. SnoopWall gives you that choice. Apps and updates downloaded from Google Play *should be* free of malware but many users (especially family members that don’t have such acute IT Security awareness) might end up side-loading apps from untrustworthy sources.
The bottom line is this: anything that helps to protect your privacy and security must always be welcomed. With the deluge of potential vulnerabilities emitting from mobile, it is good to know that SnoopWall has your back.
Let us know your thoughts. Have you used SnoopWall? Are you concerned about the amount of data that your phone is leaking and what prevention measures are you taking?