1 min read

Half of companies have employees who play Pokémon Go with corporate credentials

Răzvan MUREȘAN

August 25, 2016

Half of companies have employees who play Pokémon Go with corporate credentials

Pokémon Go has broken all mobile gaming records, with more than 75 million installs across Apple and Google platforms globally, becoming a phenomenon that has sent users out of their homes and offices to catch wild Pokémons.

According to several reports cited by Enterprise Innovation, 150,000+ unique apps connect to corporate cloud environments, a number that increased 30-fold in the last two years alone. Some 27% of connected third-party apps are of high or very high risk and need immediate attention from corporate security teams.

“Implementing a high-level strategy as well as a specific Application Use Policy that outlines how they will whitelist or ban applications is critical,” authors of the report say.

Pokémon Go is authorized to act on behalf of the user through an OAuth connection.

When launched, this OAuth connection allowed the app, and by extension the vendor, Nintendo, to view, edit, collect or delete anything related to the user”s Google account; send emails, analyze navigation history, and exfiltrate and externalize user data through programmatic API access; and collect personal data alongside geotagging functionality and camera access.

Findings show that 44% of all organizations have employees who granted access to Pokémon Go using their corporate credentials.

On average, 5.8% of an organization’s employees have installed Pokémon Go. Only 12% of affected institutions have banned the app. The education, media and technology industries are seeing the greatest impact.

tags


Author



Right now

Top posts

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

July 16, 2021

3 min read
How to protect yourself against cyberstalking

How to protect yourself against cyberstalking

July 06, 2021

2 min read
The Top Five Security Risks Smartphone Users Face Today

The Top Five Security Risks Smartphone Users Face Today

July 02, 2021

4 min read
Phishing Alert: Scammers Use Fake SharePoint and DocuSign Messages to Steal Users’ Login Credentials

Phishing Alert: Scammers Use Fake SharePoint and DocuSign Messages to Steal Users’ Login Credentials

July 02, 2021

3 min read
Your Doxxing Dossier Will Keep Growing Thicker Until You See the Danger

Your Doxxing Dossier Will Keep Growing Thicker Until You See the Danger

June 30, 2021

2 min read
Mobile security threats: reality or myth?

Mobile security threats: reality or myth?

June 13, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Fraud Family cybercrime ring under the spotlight as arrests made in the Netherlands Fraud Family cybercrime ring under the spotlight as arrests made in the Netherlands
Graham CLULEY

July 23, 2021

3 min read
Homoglyph domains used in BEC scams shut down by Microsoft Homoglyph domains used in BEC scams shut down by Microsoft
Graham CLULEY

July 22, 2021

3 min read
China Sets Up New Worrying Vulnerability Disclosure Rules China Sets Up New Worrying Vulnerability Disclosure Rules
Silviu STAHIE

July 20, 2021

1 min read