{"id":2584,"date":"2015-08-20T12:58:43","date_gmt":"2015-08-20T16:58:43","guid":{"rendered":"https:\/\/solutionsreview.com\/mobile-device-management\/?p=2584"},"modified":"2018-02-23T09:43:26","modified_gmt":"2018-02-23T14:43:26","slug":"new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/","title":{"rendered":"New iOS Vulnerability \u2018Quicksand\u2019 puts Enterprise Managed Devices at Risk"},"content":{"rendered":"<p><a href=\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg\"><img loading=\"lazy\" decoding=\"async\" data-attachment-id=\"2585\" data-permalink=\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/quicksand_peril__part_two_by_alyxcaptor\/\" data-orig-file=\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg\" data-orig-size=\"960,545\" data-comments-opened=\"1\" data-image-meta=\"{&quot;aperture&quot;:&quot;0&quot;,&quot;credit&quot;:&quot;&quot;,&quot;camera&quot;:&quot;&quot;,&quot;caption&quot;:&quot;&quot;,&quot;created_timestamp&quot;:&quot;0&quot;,&quot;copyright&quot;:&quot;&quot;,&quot;focal_length&quot;:&quot;0&quot;,&quot;iso&quot;:&quot;0&quot;,&quot;shutter_speed&quot;:&quot;0&quot;,&quot;title&quot;:&quot;&quot;,&quot;orientation&quot;:&quot;0&quot;}\" data-image-title=\"quicksand_peril__part_two_by_alyxcaptor\" data-image-description=\"\" data-image-caption=\"\" data-medium-file=\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor-300x170.jpg\" data-large-file=\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg\" tabindex=\"0\" role=\"button\" class=\" wp-image-2585 aligncenter\" src=\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor-300x170.jpg\" alt=\"quicksand_peril__part_two_by_alyxcaptor\" width=\"367\" height=\"208\" srcset=\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor-300x170.jpg 300w, https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor-768x436.jpg 768w, https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor-800x454.jpg 800w, https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor-140x80.jpg 140w, https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg 960w\" sizes=\"(max-width: 367px) 100vw, 367px\" \/><\/a><\/p>\n<p>A new enterprise vulnerability called Quicksand has been found in the iOS Sandbox that affects third party applications. This means that all enterprise apps installed on your employee\u2019s devices are susceptible to hacks and potentially expose sensitive corporate data.<\/p>\n<p>The Appthority Enterprise Mobility Team uncovered this violation and determined that it impacts all iOS users who have mobile device management (MDM) applications on their phones.<\/p>\n<p>\u201cThe violation impacts all MDM clients as well as any mobile apps distributed via an MDM that use the Managed App Configuration setting to configure and store private settings and information,\u201d said the <a href=\"https:\/\/www.appthority.com\/enterprise-mobile-threats\/2015\/08\/19\/quicksand-a-new-enterprise-ios-vulnerability\/\" target=\"_blank\">report by Appthority<\/a>. \u00a0\u201cIn order to \u2018auto-fill\u2019 account setup for the MDM client and MDM-distributed apps, IT will commonly send the credential and authentication information along with the managed app binary for installation on corporate mobile devices. We found this information often included access to the \u2018corporate data security jewels\u2019, including server url\u2019s, credentials with plaintext passwords, etc. The end goal with this practice is a more streamlined user experience, where the user can gain virtually instant access to their corporate apps (and corporate data) without having to enter long strings of authentication credentials.\u201d<\/p>\n<p>The biggest risk factor for this security gap is that anyone can see your corporate data through your employee\u2019s credentials. They gain this access through other apps installed on the device; quicksand allows apps to read each other\u2019s data when installed on the same device, making your corporate data just as vulnerable as any other third party app despite all of the security measures you\u2019ve taken.<\/p>\n<p>This is particularly concerning for enterprise because developers could create rogue apps that are virtually undetectable. Not only could this be devastating to your files, but it could also get you in a lot of trouble, depending on what industry you\u2019re in. For example, in the medical field Appthority found that apps in the healthcare field could potentially leak private patient information, getting your company in a lot of trouble.<\/p>\n<p>Most MDM vendors have fixed this app, but the problem still lies with updates. If your employee hasn\u2019t updated their iOS device in the past month, they are still vulnerable to this security gap.<\/p>\n<div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"speedbump-1\" href=\"https:\/\/solutionsreview.com\/mobile-device-management\/buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" title=\"MDM Buyer's Guide\" src=\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2019\/02\/mobility-bg-speedbump.jpg\" alt=\"Download Link to MDM Buyer's Guide\" width=\"800\" height=\"225\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div>\n","protected":false},"excerpt":{"rendered":"<p>A new enterprise vulnerability called Quicksand has been found in the iOS Sandbox that affects third party applications. This means that all enterprise apps installed on your employee\u2019s devices are susceptible to hacks and potentially expose sensitive corporate data. The Appthority Enterprise Mobility Team uncovered this violation and determined that it impacts all iOS users [&hellip;]<\/p>\n","protected":false},"author":22,"featured_media":2585,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"footnotes":"","_jetpack_memberships_contains_paid_content":false,"jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[15],"tags":[87,88,89],"jetpack_publicize_connections":[],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>New iOS Vulnerability \u2018Quicksand\u2019 puts Enterprise Managed Devices at Risk - Best Enterprise Mobility Management Vendors, MDM UEM EMM Software and MDM Platforms<\/title>\n<meta name=\"description\" content=\"A new enterprise vulnerability called Quicksand has been found in the iOS Sandbox that affects third party applications. This means that all enterprise apps installed on your employee\u2019s devices are susceptible to hacks and potentially expose sensitive corporate data.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/\",\"url\":\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/\",\"name\":\"New iOS Vulnerability \u2018Quicksand\u2019 puts Enterprise Managed Devices at Risk - Best Enterprise Mobility Management Vendors, MDM UEM EMM Software and MDM Platforms\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/mobile-device-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg\",\"datePublished\":\"2015-08-20T16:58:43+00:00\",\"dateModified\":\"2018-02-23T14:43:26+00:00\",\"author\":{\"@id\":\"\"},\"description\":\"A new enterprise vulnerability called Quicksand has been found in the iOS Sandbox that affects third party applications. This means that all enterprise apps installed on your employee\u2019s devices are susceptible to hacks and potentially expose sensitive corporate data.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg\",\"width\":960,\"height\":545},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/mobile-device-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"New iOS Vulnerability \u2018Quicksand\u2019 puts Enterprise Managed Devices at Risk\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/mobile-device-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/mobile-device-management\/\",\"name\":\"Best Enterprise Mobility Management Vendors, MDM UEM EMM Software and MDM Platforms\",\"description\":\"News, Reviews, Buyers Guide and Best Practices\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/mobile-device-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"\",\"url\":\"https:\/\/solutionsreview.com\/mobile-device-management\/author\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"New iOS Vulnerability \u2018Quicksand\u2019 puts Enterprise Managed Devices at Risk - Best Enterprise Mobility Management Vendors, MDM UEM EMM Software and MDM Platforms","description":"A new enterprise vulnerability called Quicksand has been found in the iOS Sandbox that affects third party applications. This means that all enterprise apps installed on your employee\u2019s devices are susceptible to hacks and potentially expose sensitive corporate data.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/","twitter_misc":{"Written by":"","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/","url":"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/","name":"New iOS Vulnerability \u2018Quicksand\u2019 puts Enterprise Managed Devices at Risk - Best Enterprise Mobility Management Vendors, MDM UEM EMM Software and MDM Platforms","isPartOf":{"@id":"https:\/\/solutionsreview.com\/mobile-device-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg","datePublished":"2015-08-20T16:58:43+00:00","dateModified":"2018-02-23T14:43:26+00:00","author":{"@id":""},"description":"A new enterprise vulnerability called Quicksand has been found in the iOS Sandbox that affects third party applications. This means that all enterprise apps installed on your employee\u2019s devices are susceptible to hacks and potentially expose sensitive corporate data.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#primaryimage","url":"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg","contentUrl":"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg","width":960,"height":545},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/mobile-device-management\/new-ios-vulnerability-quicksand-puts-enterprise-managed-devices-at-risk\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/mobile-device-management\/"},{"@type":"ListItem","position":2,"name":"New iOS Vulnerability \u2018Quicksand\u2019 puts Enterprise Managed Devices at Risk"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/mobile-device-management\/#website","url":"https:\/\/solutionsreview.com\/mobile-device-management\/","name":"Best Enterprise Mobility Management Vendors, MDM UEM EMM Software and MDM Platforms","description":"News, Reviews, Buyers Guide and Best Practices","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/mobile-device-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"","url":"https:\/\/solutionsreview.com\/mobile-device-management\/author\/"}]}},"jetpack_featured_media_url":"https:\/\/solutionsreview.com\/mobile-device-management\/files\/2015\/08\/quicksand_peril__part_two_by_alyxcaptor.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9z2F4-FG","jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/posts\/2584"}],"collection":[{"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/users\/22"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/comments?post=2584"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/posts\/2584\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/media\/2585"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/media?parent=2584"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/categories?post=2584"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/mobile-device-management\/wp-json\/wp\/v2\/tags?post=2584"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}