Nowadays, more and more information is being stored on smartphones such as contact details and often emails that contain sensitive information. I predict an upward trend in the number of mobile phone attacks in the next couple years because of the amount of data that is stored on mobile phones. Recently a security vulnerability was found in a iPhone application- Skype. The vulnerability allowed an attacker to steal address book information off an iPhone which could potentially be disastrous. The attack would be administered by a cross-site scripting vulnerability which exists in Skype’s chat window.
CNET discusses the vulnerability here- http://www.zdnet.com/blog/security/xss-bug-in-skype-for-iphone-ipad-allows-address-book-theft/9426?tag=mantle_skin;content
To add to the issue of security flaws around smartphones physical security is also an issue. Stolen, lost, or un-password protected- leaves any information on the phone exposed to a potential thief. A possible solution would be to encrypt your personal mobile phone. Most smartphones have the option to do this for an extra layer of security. Also for basic security adding a password to the phone keeps unwanted people from going through your phone. What are your thoughts on this? Do you think mobile security is an important issue?