Android: How To Protect Against Malware and Viruses For Free

Posted on 28 Jan 2013 in Android, ArmorText, Awareness, Cyber Security, Gryphn Secure Text Messaging, Security 0 Comments

Brand New Android: How To Protect Against Malware and VirusesBrand New Android: How To Protect Against Malware and Viruses

Unlike the iOS App Store, the Google Play store is a much more open and accessible marketplace. This makes it easier to develop for Android, but it also means that users are vulnerable to malware and viruses posing as useful or fun apps.

Even if you haven’t  downloaded an app from the Play store yet, your phone is still extremely vulnerable to loss or theft. It’s likely you keep personal data, business correspondence, or even banking information on your device. How can you protect that data if the device goes missing?

People are trusting their devices with more personal data, while at the same time malware and viruses are becoming more ambitious and common. These two trends have been met with the rise of mobile security apps, protecting users from these exact threats.

Below are three apps that keep the user safe from most of threats to their data and mobile device.
Brand New Android: How To Protect Against Malware and Viruses

Lookout Mobile Security (Free, with a Premium option)

The main threats for Android users exist on the Google Play store, which is why apps like Lookout exist. During setup, it scans your old apps for malware and viruses. After initial setup, it runs in the background, scanning new apps as they are downloaded.

Not only does Lookout provide basic malware protection, it also comes with several other security and peace-of-mind features. Upon logging in to your Lookout account on their website, you can locate the device on a map or make your phone or tablet “scream” (much louder than your ringer and works even if your phone is on silent). Premium users ($2.99/mo or 29.99/year) can also lock the device and wipe all data if it is permanently lost or stolen.

Lookout even backs up contacts, pictures and call history to the web portal, although picture and call history backups are only available to premium users.

Brand New Android: How To Protect Against Malware and Viruses

Avast! Mobile Security (Free)

Where Lookout provides simplicity and ease of use, Avast! Mobile Security provides an utterly exhaustive feature set. In addition to securing you from malware and virus threats, you can locate the device, sound a siren, lock the device, wipe the device, call the device, send a message to the device and much more, right from the Avast! portal.

Unlike Lookout, Avast! places a heavy emphasis protecting you and your data if your device is lost or stolen. Avast! Anti-Theft features allow a user to force the data connection to stay active so the device can be tracked, lock the phone settings, and prevent USB debugging (which is often used by thieves to reset a device to factory settings after it has been stolen).

Avast! also tries to keep its users aware of privacy and permission settings of the different apps on their device. Privacy Advisor shows you which apps have access to which areas of your device, but as far as I can tell does nothing to help you limit that access from within the app. Network Meter tracks how much data each app is using, which is helpful for those of us who aren’t using unlimited data plans.

Because it has most of the features Lookout has, Avast! could be used as a replacement for lookout, but if used together, they present a very thorough security solution for Android devices.

Brand New Android: How To Protect Against Malware and Viruses

Gryphn Secure Text Messaging (Free)

Lookout protects the information on your device from falling prey to malware and viruses on the Google Play store, while Avast! is a great solution for preventing your data from getting into the wrong hands if the phone is lost or stolen, but what about the contents of your text messages, on the phone and coming and going from your device?

Gryphn Secure Text Messaging replaces your stock texting app and encrypts text, picture and video messages, both on your device and in transit. Even if you do have the misfortune to download malware or come into contact with a virus, neither of these will be able to access any of your messages, images or any other texting content.

After the quick setup process you are greeted by a clean interface (based on the stock Android Jelly Bean messaging app) and all of your old text conversations, ready to continue them in a safer environment.

If you have friends, family or colleagues who have the app, you can enable encryption for those conversations, meaning your messages are encrypted in transit and decrypted by their device on the other end. Even your wireless carrier, which usually stores your text messages for anywhere from 3 months to a year, can’t read what you are saying. Only the sender and the recipient can read encrypted messages.


Gryphn Secure Text Messaging: Our Recent Update

Posted on 18 Jan 2013 in Android, Gryphn Secure Text Messaging, Media Roundup, Press, Startup 0 Comments

Our latest release has seen us juxtaposed with Snapchat and Facebook poke. Our image self-destruct feature and corresponding media encryption and disabled screenshot security additions have seen us called “totally secure”. We’re a proud bunch here at Gryphn. Check out our new features in the video below!
-

The Press

Gryphn Updates Secure SMS Platform To Better Compete With Facebook… - TechCrunch
These text messages will self-destruct in five, four, three, two… - Upstart Business Journal
Gryphn updates secure SMS platform – Washington Business Journal
Gryphn Is An App That Will Let You Send Sexts And Actually Get Away… - Business Insider
Gryphn Launches Self-Destructing Text App That Solves the Security… – In The Capital

Secure messaging with Gryphn’s app:

“Go from unsure to secure in 60 seconds or less — with the ‘year’s most innovative startup for national security

Follow @GryphnCo on Twitter & Like Us on Facebook

Android: Selling As Fast As the Big Mac

Posted on 28 Dec 2012 in Android 0 Comments

Android

Graphic courtesy of MBAonline.com

Secure messaging with Gryphn’s app:

“Go from unsure to secure in 60 seconds or less — with the ‘year’s most innovative startup for national security

Follow @GryphnCo on Twitter & Like Us on Facebook

States Can’t Agree on Smartphone Privacy: Businesses Protect Themselves (continued)

Posted on 26 Dec 2012 in Android, Apple, ArmorText applications, BYOD, Enterprise, News, Security, State Texting Laws 0 Comments

States can't agree on smartphone security law use armortext encrypted text messaging

Continued from last week…

Overcoming uncertainty

To view the mobile security and privacy problem in management terms, consider that businesses generally dislike uncertainty of any kind.  But the mobile revolution and resulting patchwork quilt of search and seizure laws across borders suggests plenty of businesses have zero certainty about whose hands their data could fall into.  Once an unencrypted device is imaged, there is no going back.  It is impossible to know with certainty how law enforcement authorities here or anywhere will parse patent drawings; budget spreadsheets or acquisition plans while searching for evidence.  There are too many variables. Even if we assume authorizes will act in good faith and take measures to respect confidentiality, encryption is a far better bargain for applying controls over information, particularly if you are a lawyer worried about attorney-client privilege or work in an industry subject to tough data protection regimes.  As mobile device searches become increasingly routine enterprise data swept up in evidence searches – “caught in the crossfire,” if you will – may have to be deemed “compromised,” if only for practical purposes.  

The way forward

Companies need to monitor the global regulatory picture closely.  The best defense, of course, is to compartmentalize access and information.  A salesperson headed overseas does not need to carry your patent portfolio through border crossings.  But except for these kinds of obvious cases, reconfiguring devices and networks around today’s shifting job roles and travel is tedious and impractical.  Plus, when you strip-down handhelds to the point where they become safely “expendable” you start to offset the business value of all these great tools and connectivity.  Why not build a standardized mobile security profile with encryption instead and let users bring the apps they need to be productive?  Senior executives need to lay the foundation here by looking at requirements, risks that can be tolerated and mitigating them as far as possible.

On the technology side, mobile encryption is a powerful tool to tactically deploy in your plan.  To securely harden many common types of smartphones quickly, look for encryption tools that to not require cumbersome hardware accessories or multi-tasking between apps just to read e-mail. Such ease of deployment positively empowers users and helps different types of devices in a company to benefit from consistent protection.  Users of different hardware that all run some version of Android, for example, can in most cases go to the same app storefront and pull down their own security software.   As technology rewrites our legal and societal perceptions of trust, privacy and security, businesses and consumers should expect continued legal dust-ups and uncertain times.  Often the only recourse is to seize the initiative by taking proactive control.  In this spirit, armoring-up your smartphone is easily done and could spare your company and career from needless future worry and pain.

 

Secure messaging with Gryphn’s app:

“Go from unsure to secure in 60 seconds or less — with the ‘year’s most innovative startup for national security

Follow @GryphnCo on Twitter & Like Us on Facebook

Merry Christmas Android Malware! Make Sure Your New Toy Isn’t out to Get You

Posted on 24 Dec 2012 in Android, ArmorText applications, Cyber Security 0 Comments

 

Encrypted your text messages to protect against malicious apps - ArmorText encrypted messaging

Have a new Android app you got for Christmas?

Make sure it’s not malware, stealing your data, uploading your contact information to a foreign server or sending premium international SMS messages at your expense! Check the list below for the worst offenders:

3D Anti-terrorist

Android.Trojan.SMSSend

Android.Trojan.FakeInst

Holiday SMiSishing

Geinimi Trojan

TapSnake

Red Bunny Trojan

Ikee Worm

Beware of an HTC flaw allows malicious apps to steal WiFi passwords

 

Many apps not on this list threaten user security. Protect yourself in advance so even if one of those new toys you downloaded happens to be malware, it won’t have access to your data. Have a Merry Christmas. Enjoy your new Android apps!

Secure your device from malicious apps with Lookout

Secure messaging with Gryphn’s app:

“Go from unsure to secure in 60 seconds or less — with the ‘year’s most innovative startup for national security

Follow @GryphnCo on Twitter & Like Us on Facebook

The Healthcare Innovation and Marketplace Technologies Act: HR6626

Posted on 19 Dec 2012 in Android, ArmorText, BYOD, Healthcare, HIPAA, NIST 0 Comments

HR 6626 The Healthcare Innovation Marketplace Technologies Act ArmorText Encrypted Text Messaging

On December 3, 2012, Representative Mike Honda of California introduced The Healthcare Innovation and Marketplace Technologies Act (HIMTA) with the intent to foster more innovation in the health care industry by removing barriers in wireless health.

This bill offers loans, tax relief, and grants for Health Information Technology not covered by EHR incentives, offering up to $250,000 in a taxable year for medical care providers. Health Information Technology that would qualify for these loans includes “storage, retrieval, sharing, and use of health care information, data and knowledge for communication and decision-making.”

Small businesses are elibible to receive loans or financing for any health information technology that “enhance(s) continuity of care for patients ..such that this information is accessible at the times and places where clinical decisions will be or are likely to be made; (as well as) enhancement of communication between patients and health care providers (and) technology that has already been purchased.”

There is a particular emphasis placed on technologies that will be widely adopted and useful for patients, patient engagement, doctor-patient consultation and patient health monitoring. These technologies are offered grants and prizes.

Office of Wireless Health Technology

This document would also establish the Office of Wireless Health Technology, a subsidiary of the FDA designed to coordinate regulation of wireless health technology across federal agencies, offices and institutes such that such regulation might be “more robust, predictable, and easily understood and navigated by indiiduals and entities that design, produce, disseminate, or have a prevailing interest in wireless health technology.”

Mobile Health Software Application Tehcnology is defined thus;

A:) Offers health-related services and runs on a mobile device; OR

B:) enables health-related services through other portals associated with the use of a mobile device.

 

We have visited the unnecessarily confusing topic of regulatory requirements on mobile previously, calling for consistency and clarity similar to the aspirations present in the first draft of this bill. FINRA, FIPS, HIPAA and the DoD Mobile Strategy all contain similar concepts and security measures.

Secure messaging with Gryphn’s app:

“Go from unsure to secure in 60 seconds or less — with the ‘year’s most innovative startup for national security

Follow @GryphnCo on Twitter & Like Us on Facebook

Policy and Regulatory Environments: A Mobile Perspective

Posted on 17 Dec 2012 in Android, ArmorText, BYOD, Healthcare, HIPAA 0 Comments

Encryption required in mHealth text messaging ArmorText

Gryphn had the pleasure to attend breakout sessions, in particular, “Policy & Regulatory Environments: A Mobile Perspective.” This session was moderated by Robert Jarrin of Qualcomm Incorporated and the panel included Lee Kim, Tucker Arsenberg PC; Ali Pabrai, CEO of ecfirst; James Ravitz, Partner at Arent Fox; and Marcy Wilder, Hogan Lovells US.

The panelists spoke about various regulations and their standards for mobile devices in the healthcare industry. mHealth is a topic of debate in the areas of: meaningful use, security on the device, breaches, and the introduction of a new bill called the Healthcare Innovation and Marketplace Technologies Act.

WHY MEANINGFUL USE:

The meaningful use program is a set of standards that are used to oversee the use of electronic health records (EHRs) and permits eligible providers and hospitals to earn incentives if they meet certain criteria. The meaningful use of EHRS supports complete and accurate information, better access to that information, and patient empowerment.

WHAT IS SECURITY ON THE DEVICE:

The rules and regulations that healthcare providers are required to follow, set standards for how devices should be secured. Encryption is “the last line of defense”, a required step that comes into play in the worst case scenarios of loss, theft, or hacking. it keeps the data protected even if the device itself is in the wrong hands. However,while encryption should be standard, is not enough. All devices, mobile or not, require strong authentication at the front and back end as well as audit controls.

WHERE DO DEVICE BREACHES COME FROM:

The moderator, Robert Jarrin, asked the panelists if it was true that most breaches come from the inside, believing loss to be more prevalent than hacks or theft. The panelists agreed. A lost device is as vulnerable as a stolen device if it does not have the necessary security measures installed. Some of these threats come from social media outlets like Facebook and Twitter. Both have links that if clicked could download Trojans that steal data without your knowledge.

HEALTHCARE INNOVATION AND MARKETPLACE TECHNOLOGIES ACT:

The panelists mentioned a new bill that was introduced Monday, the first day of the summit, called the Healthcare Innovation and Marketplace Technologies Act. The purpose of this new bill is to increase innovation in mobile health and other health care technologies. This legislation would require the FDA to set up a new wireless health technology office. The FDA would work with other government agencies and private businesses to help build a “consistent, reasonable, and predictable regulatory framework” for wireless and digital health tools. This bill would also:

  • Set up a HHS program to help mobile health developers create technologies that follow the necessary privacy and security regulations
  • Help small businesses purchase the necessary IT health devices through a low-interest program.
  • Institute tax incentive programs to give healthcare providers incentives to use the modern health technologies.
  • Establish a grant program to support healthcare providers who retrain employees for new health technology positions
  • Begin new prize and grant programs to increase new health IT device development,

Many policies and regulations that healthcare providers are required to follow have not yet found their modern interpretation. Mobile technologies are still discovering their footing, both in terms of violations and permissible use.

 

Secure messaging with Gryphn’s app:

“Go from unsure to secure in 60 seconds or less — with the ‘year’s most innovative startup for national security

Follow @GryphnCo on Twitter & Like Us on Facebook

Snapchat: Unprotected Teen Sexting

Posted on 12 Dec 2012 in Android, Awareness, Cyber Security, Media Roundup, Security 0 Comments

A new site entitled “SnapChat Sluts” has caused a stir, collecting naked images of women sent via the app and captured through a screenshot (this website has since been removed).

SnapChat unprotected teen sexting For Secure and encrypted text messaging see ArmorText

If you’re not familiar, SnapChat is #12 on the free iOS photo app charts in the U.S. and has received a fair amount of media attention, including an article in the NY Times. Approximately 1000 photos are being shared per second using the app, roughly the same number as are posted using Instagram. SnapChat allows for a “self-destruct” timer to be attached to the photograph, from one to ten seconds, setting a viewing window that suggests protection against saving, forwarding or posting of the image by the viewer… except the simple push of a button provides a screenshot saved outside the app that the sender no longer has any control over.

SnapChat enables new context, new phrasing for digital interactions, but does not provide the security necessary to protect private information or personal photos in these interactions. Its ‘Mission Impossible’ vanishing message feature needs to be explained to users as the faux privacy protection that it is.

SnapChat Is For Kids

There is particular consternation on the part of parents in regards to this app as it appears to be targeted towards teens. The majority of users are between the ages of 13 and 24.

SnapChat provides an environment that seems friendly to private or potentially compromising texting activities. In previous posts we have dealt with the security failures of Whatsapp for the general public as well as the security issues with BlackBerry’s BBM and security issues of iMessage that make it inappropriate for use in regulated industry. Each of these messaging services has their strengths and their pitfalls, SnapChat being no different. A student, Marilyn Feldman, told a story of texting pictures of red flowers on campus to her mother, flowers they used to enjoy together while she was still living at home. “It’s subtly different even from taking a picture on my iPhone and sending that,” Feldman said. “It’s more immediate and even more casual. Almost like, ‘thinking of you.’ Picture of a red rose in the neighborhood. I didn’t even send her a message, just a picture of the red rose, and (my mother) knew what that meant.” Co-founder of SnapChat, Evan Spiegel, reiterates the same idea, stating that the app is “not about ‘privacy,’ per se,”

SnapChat - Unprotected teen sexting Gryphn ArmorText Encrypted Text Messaging

SnapChat Is NOT A Privacy App

A quote from SnapChat’s privacy policy:

“Although we attempt to delete image data as soon as possible after the message is transmitted, we cannot guarantee that the message data will be deleted in every case. Consequently, we are not able to guarantee that your messaging data will be deleted in all instances. Messages, therefore, are sent at the risk of the user.”

In this case education plays the largest component. SnapChat is not a danger in and of itself unless it is incorrectly categorized as a security app or as having security measures that protect against, well, anything. Education surrounding its use should follow similar guidelines to that of Facebook security or regular texting.

Gryphn, with our partners StaySafeOnline, promotes education and standardization of security measures that intuitively and automatically protect daily behaviors of, not only teens, but digital participants of all ages.

 

Secure messaging with Gryphn’s app:

“Go from unsure to secure in 60 seconds or less — with the ‘year’s most innovative startup for national security

Follow @GryphnCo on Twitter & Like Us on Facebook
UPDATE: SnapChat adds Video and  a new layer of questions about privacy and security.
UPDATE: SnapChat opinion article – it’s not a sexting or security app, it’s a new way of communicating.

BYOD in Healthcare: Now Please Make It Work!

Posted on 6 Dec 2012 in Android, ArmorText, ArmorText applications, BYOD, Healthcare, HIPAA 0 Comments

BYOD in healthcare - Gryphn ArmorText secure encrypted text messaging with audit trail for enterprise

Gryphn recently attended the mHealth conference and spoke with the following individuals: Lisa Gallagher Senior Director HIMSS, Brian Balow Member Dickinson Wright PLLC, Eleanor Chye Executive Director AT&T David Houlding Lead Architect Intel, Jay Savaiano Director CommVault. These interactions led to a more complete view of the healthcare space and the importance of secure messaging solutions such as Gryphn’s Enterprise Solutions that work with BYOD.

BYOD in Healthcare

BYOD penetration into healthcare is significant. According to an AT&T representative, more than 80% of healthcare workers on their network are using a smartphone at work.

“CIO’s and CSO are saying they can’t stop it (BYOD); it’s like a freight train running them over.” – Lisa Gallagher of HIMSS

Yet the improper use of these smartphones is damaging hospital reputations, destroying careers and driving fear of the devices in healthcare environments. On August 30th Cignet Health was fined $4.3M for HIPAA violations and investigation obstruction. A nurse was fired for texting an image containing PHI, even though that image saved a patient’s life (link pending).  Fines like these deter even the most stalwart hospitals from communicating PHI.

 “When hospitals are asked ‘Do you even want BYOD’, many are saying NO.” – Brian Balow of Dickinson Wright PLLC

Yet the largest fine to date in regards to HIPAA was for patients who requested and were denied their own PHI. The dichotomy of HIPAA and HITECH are their regulatory imperative to safeguard patient data while simultaneously making it available. Protect and share. HHS and the OCR have demonstrated the relative weight of non-compliance with each section: $1.5M for failing to protect patient data, $4.3M for failing to share it with the patient.

Security Must Work FOR the Healthcare Practitioner, AND the Patient

Security policies are required to protect patient data, but these policies cannot obstruct the delivery of data to the healthcare practitioners who need it. Security cannot obstruct information flow or care quality.

“Security cannot slow these devices down…workers will find workarounds to bypass IT. We have to improve user experience with security.” – David Houlding of INTEL

 

Secure messaging with Gryphn’s app:

“Go from unsure to secure in 60 seconds or less — with the ‘year’s most innovative startup for national security

Follow @GryphnCo on Twitter & Like Us on Facebook

Securing Mobile Communications on Android

Posted on 21 Nov 2012 in Android, BYOD, Mobile Development 0 Comments

“Functional, workable security and security practices must grow in tandem with behavior; existing to mitigate the risks associated with behaviors that are fundamentally rewarding. Security exists to serve and enable education, modernization, progress… these are the dictators for how security should behave.”

- Tracy E. Bartley, Director of Communications for Gryphn, blogging at StaySafeOnline

Protection and separation of personal and public data in transit, in storage and at rest should not require extensive education and behavioral modification.

These protections need to be simply ON. Internet searches in school should be automatically set to use https; default school e-mail accounts should use an encrypted and private service. Cell phones should come standard with an encrypted text messaging service that enables control of the recipient’s ability to save and forward messages. Facebook’s default security settings should be set to the highest exclusivity.

Securing Mobile Communications on Android

Android experience phones are the most numerous on the global market. The Samsung Galaxy S III, which is Android based, is also the best-selling phone worldwide. In the interest of creating security measures that are simply ON, we targeted the biggest regulatory compliance and privacy issues via mobile in the largest market. Android is also beating out Blackberry contracts in Government, regulated industry and BYOD in enterprise.

 Smartphone Operating Systems By Global Market Share

Securing mobile communications android armortext gryphn encrypted text messaging

Best-Selling Smartphones 2012 Q3

Securing Mobile Communications android gryphn armortext encrypted text messaging

Secure messaging with Gryphn’s app:

“Go from unsure to secure in 60 seconds or less — with the ‘year’s most innovative startup for national security

Follow @GryphnCo on Twitter & Like Us on Facebook