Secure your software and apps
Downloading an app does not involve any risk, right? But what happens if the app damages your IT system or introduces malicious code? Only download software and apps from well-known sources. Malicious code generally takes advantage of known vulnerabilities in the operating system and software, so be sure to update them continually.
Security updates contain important security improvements which help protect equipment and systems from malicious code and other types of vulnerabilities. When possible, equipment, software, etc. must be configured to automatically install necessary security updates. If automatic updates are not technically possible, manual procedures must be put in place instead.
Software and apps
In order to reduce the risk of malicious code, applications for mobile phones and tablets must be downloaded from trusted sources such as AppStore, Google Play or the company’s own internal site for approved programs and applications. In addition to the increased expense for purchasing and maintaining software and applications that are not required for the organization’s operations, there is an increased risk involved with individual software and applications since they always contain known and unknown vulnerabilities.
To reduce the risk of malicious code, software and applications which are no longer used must be uninstalled.
Automatic program launch and automatic playback
Automatic program connection always entails a risk of intrusion or malicious code. The number of programs which are automatically launched (at startup) on the computer must be minimized, and automatic launch must be completely shut off on portable storage devices. Applications which have been approved to launch automatically should be documented.