Is your phone secured ?

By Imad Eddine Aris | justEducate | 3 Sep 2023

#Cybersecurity_topic

Introduction

The more precautions we take, and develop measures that can protect our privacy, credentials and sensitive data, the more Other people are making efforts to bypass that protection and make our life hell. But sometimes protection measures are not enough when vigilance missing and heads not up, For ridiculous reasons we may cause the loss of that sensitive information, credentials and privacy naively, and this can happen between that small screen between your hands.

Hacking or penetration has evolved over the years, so as Protection & Prevention, but as i mentioned before, being non-vigilant can lead unpleasant consequences, in this article you will find what are the threats that you can face as a Phone user and what can you do to prevent these threats.

I. Threats:

A. Social Engineering :

  • 1. phishing: Deception for data, Malicious actors target sensitive info such as credentials, login info, banking data and sensitive data. phishing it self is divided into multiple scenarios (spear phishing, vishing, baiting, QPQ... etc) But all in one strategy which is deceiving individuals to gain sensitive information about victims.

Notice: Phishing can be related to later attacks, or can be considered as first stage attack that hackers use to get closer to thier victim or it can be used as a reconnaissance stage

B. Unauthorized access :

  • 1. Application permission: Applications is another way to get access to your phone and all its data, most of appreciations these days require some permissions to work properly in your phone; some of them require files and media requirements, phone permission, contacts permission and camera and microphone permission, some apps can be trusted because these permissions are related to the logic of the app. But sometimes it can be obvious, foe example a very simple game like Snake Xenzia that you used to play it on your father's phone, when you launch the snake game for first time it requires files and media permission ⚠️ well that suspicious, why a game this simple requires access to all data saved in my phone such as pictures, documents, backups... you get it right.

snake Xenzia

C. Wireless :

  • 1. Wifi: Yes wifi can be a door to access to your phone and what's in it, can be called "man in the middle" or "Wi-Fi jacking" . by connecting to an unknown public WiFi, even if you don't know. Hackers can exploit vulnerabilities in these networks to intercept your data or launch attacks on your device. main exploitation in wifi jacking is to intercept the data sending from your phone to other sources, such as loging to your Facebook account or your bank account. yeah hackers can intercept this data through wifi (. Probably you would say nah I'm already logged in and and i won't login unless I'm at home, well unfortunately i will break it to you, COOKIES can be another way, sometimes data you send when visiting websites or suffering a specific website can lead to capturing data packets such as links contains cookies, http requests.
  • 2. Bluetooth: Like wifi jacking but not less dangerous and rarely exploited, but sometimes there can be new exploits or techniques that can be dangerous.

 

II. Protection/Prevention: 

follow these steps and you'll be safe.

  • Do not trust or send sensitive data from emails from unknown sources, always verify and check if the source is legitimate, preferably to check physically rather than checking online ( by email, sms, voice calls) because they will probably use an additional options called vishing 👇 
  • Do not trust people who tells you your PC has a technical problem, whenever you receive a similar email or voice call HANG UP and check a real repair technician preferably physically.
  • Do not believe emails, sms, voice calls that offers services and in return they trick you to leak your sensitive data. 
  • Do not trust emails, sms, voice call that offers you opportunity to get free money, free software download. there's no such thing.
  • Do not download files, media or anything sent to you by email from unknown sources. 
  • Do not download mistrustful, suspicious apps/files/documents from mistrustful sources, allways download from trustful sources, you can always use google free service to check legitimacy of websites by submitting website url to google transparency report 
  • Do not connect to Public wifi or any untrusted wifi or any unknown Bluetooth, keep your wifi qnd Bluetooth off when in public or not in use. when it's urgent you can you VPNs to connect to public wifis.
  • Always check the permissions asked by newly installed application and tech if the permission is necessary or needed. if not do not grant permission especially media and files, contacts, microphone, camera, location.
  • Keep your phone updated so as phone security updates, applications updates and updates recommended by the phone.

Conclusion

In summary, cybersecurity is crucial in protecting sensitive data. Threats like phishing, unauthorized access, and Wi-Fi and Bluetooth vulnerabilities are real. Stay vigilant and follow protective measures to protect your digital life. Thanks for reading, Thumbs up.

 

Vishing = Voice-Phishing

QPQ = Quid Pro Quo, pretending to be someone else for deceiving purposes

Man in the middle = Intercepting communication between parties secretly.

Blog Technology cybersecurity mobile protection

How do you rate this article?

3
Imad Eddine Aris
Imad Eddine Aris

This is Imad, a Cybersecurity Analyst, Forex/Crypto trader and full stack developer.

justEducate
justEducate

Hello, this is my blog, in which we will address rich, useful and interesting topics on many interesting topics, the most important of which are 3 topics: 1: Cyber Security, 2: Forex/Crypto Trading, 3: programming and development. Additionally, there will be another category which is other topics (miscellaneous) Enjoy 👌😄

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.
How Fear of Piracy [Destroyed] a 20-Year Tech Lead How Fear of Piracy [Destroyed] a 20-Year Tech Lead
scamtester94

scamtester94

22 hours ago
3 minute read

The DAILY SNAP Zone 024 - Scarlet Witch The DAILY SNAP Zone 024 - Scarlet Witch
Seven-NATE-Nine

Seven-NATE-Nine

21 hours ago
8 minute read

$TEA Goes Live June 4: tea Launches Mainnet With Trading on Aerodrome, MEXC, Gate, and KuCoin $TEA Goes Live June 4: tea Launches Mainnet With Trading on Aerodrome, MEXC, Gate, and KuCoin
Blockman PR

Blockman PR

7 hours ago
3 minute read