Tuesday, December 8, 2015

Blog 2: Shoulder Surfing the Mobile Device

Image courtesy of jesadaphorn at FreeDigitalPhotos.net
In my effort to increase security awareness and obtain a cultural acceptance, I started a little game for myself.  This game was to see how many phone security pin numbers I could harvest, within 2 months, by simply shoulder surfing.  Everywhere I went, I would watch for those about to look at their phones and make an effort to harvest.  It was like my eyes were a farming combine and the people were my corn crops!

Of course, I would never attempt anything malicious with this information, as I do not actually have the phone in my possession anyways, but it proves how easy it is to obtain.  In fact, at my son's parent teacher conference in November, I was able to secure 3 more to my list, two teachers and one parent, hitting number 23 (Go Michael Jordan!!) over that two month period.

The point of this is, be aware of who is around you when utilizing your pass code.  Here are a few suggestions to consider prior to entering your "secret" code:
  • Re-position your body prior to entering your code.
  • Create a shield with your spare hand when entering your code.
  • Use both thumbs and hit the left and right side, by crossing your thumbs across the phone prior to entering the number, for pattern confusion.
  • Enter one of the numbers and turn your body prior to entering the next.
  • Change your code at times.
To completely hide the pattern of your code, and you have the option available, utilize the fingerprint reader.  It is exceptionally difficult to discover a pattern over the shoulder when a pattern isn't even presented.  

A word of caution though with the fingerprint reader.  If you fall asleep with your phone nearby, be careful of your kiddo picking it up and pressing it, ever so lightly, against your finger to unlock it for some fun game playing!  Unfortunately, I am speaking from experience on this one!

Thank you for reading!  Until next time, remember that you don't have to become a victim of a threat to become aware of a threat!



Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)