Task 2 Tips: Addresses Mobile And WLAN Issues

Posted on December 26, 2025

Task 2 Tips Task 2 Addresses Mobile And Wlan Issues At The Fictional

Task 2 addresses mobile and WLAN issues at the fictional company, Alliah. You need to identify 2 mobile vulnerabilities and 2 WLAN vulnerabilities. Read the scenario carefully, consider not only technical vulnerabilities but potentially physical vulnerabilities as well. Make sure to differentiate between preventative and mitigating solutions in your narrative and state how your solution will be used as a preventative or mitigating solution. Reference a governmental regulation to justify your solutions for Aspect D. Consider the company has stated plans of going public. Consider what types of data the company is collecting from its users. Remember NIST/ISO/CISA are not regulations. Leveraging various standards/frameworks such as NIST/ISO/CISA is often the “how” for regulatory compliance, but regulations themselves are the “why”.

Paper For Above instruction

In modern business environments, especially for a rapidly growing social media company like Alliah, the security of wireless local area networks (WLANs) and mobile devices is paramount. The expansion of wireless technologies and mobile device utilization has introduced numerous vulnerabilities that can threaten data integrity, confidentiality, and system availability. Recognizing and addressing these vulnerabilities through appropriate mitigation and prevention strategies, justified by relevant regulations, ensures the safeguarding of sensitive information and supports organizational growth, especially as the company considers going public.

WLAN Vulnerabilities

One significant WLAN vulnerability at Alliah involves the potential for unauthorized access due to weak Wi-Fi encryption protocols. The company's wireless network, although protected by a firewall and managed through access points, might be using outdated encryption standards such as Wired Equivalent Privacy (WEP) or Early Wi-Fi Protected Access (WPA). These standards are susceptible to attacks like packet sniffing and brute-force key cracking, which can allow malicious actors to access internal resources or intercept corporate communications, risking confidentiality and integrity (Kumar & Badgujar, 2019). The physical proximity of unauthorized individuals could also exploit the open or poorly secured patio access point, especially given the company's open-office layout and outdoor employee space.

A second vulnerability pertains to inadequate physical security controls around WLAN hardware. Since the wireless access points are strategically placed but potentially accessible, intruders might physically tamper with or steal these devices. Such physical vulnerabilities could lead to device replacement with malicious hardware, network eavesdropping, or introduction of rogue access points that mimic legitimate ones, deceiving authorized users and creating a backdoor for cyber threats (Cheng et al., 2020). The company's old warehouse infrastructure, with less physical security oversight, heightens such risks.

Mobile Vulnerabilities

Alliah's use of personal mobile devices—laptops, tablets, and smartphones—introduces vulnerabilities related to mobile device security. Firstly, the use of Bring Your Own Device (BYOD) policy exposes the network to risks stemming from uncontrolled device security configurations. Many user devices may lack proper encryption, updated patches, or anti-malware defenses, making them susceptible to malware infections or data breaches (Chen et al., 2021). Malware like ransomware can spread via compromised personal devices, risking unauthorized access to corporate data through the network.

A second mobile vulnerability arises from insecure mobile app usage. The company’s mobile application, designed for social media access, could have vulnerabilities such as insecure data storage, lack of proper encryption for transmitted data, or insecure authentication mechanisms. These flaws can be exploited by attackers to intercept personally identifiable information (PII) or proprietary data (Kim & Park, 2018). Given that many employees and reps are mobile and use these apps to connect to corporate resources, any breach in app security can lead to unauthorized data access or malicious data extraction.

Mitigation Strategies for WLAN Vulnerabilities

To mitigate risks associated with weak encryption protocols, Alliah should upgrade their wireless network to utilize the latest security standards, specifically WPA3, which offers enhanced encryption and protection mechanisms against brute-force attacks (Wi-Fi Alliance, 2019). Implementation involves updating firmware on existing access points and configuring the network to disallow outdated or insecure protocols. Documentation such as configuration guides and security policies will support this transition. Regular network audits with tools like Wireshark can ensure encryption is properly implemented, and sensors or physical security controls around access points can prevent physical tampering.

Addressing physical vulnerabilities requires implementing strict physical security measures. This involves locking access to network hardware, deploying surveillance cameras, and using tamper-evident enclosures on access points. Physical security policies should be enforced and documented, including access logs and regular inspections. Employing network segmentation to isolate access points with sensitive data further reduces risk of breach or physical tampering.

Mitigation Strategies for Mobile Vulnerabilities

For mobile device vulnerabilities, Alliah should implement Mobile Device Management (MDM) solutions. MDM enables organization-wide enforcement of security policies, such as requiring device encryption, remote wipe capabilities, and mandatory updates (Sharma & Mukhopadhyay, 2020). Installing MDM software ensures that BYOD devices adhere to security standards and can be remotely disabled or wiped if lost or compromised. Staff should receive training on mobile security best practices, emphasizing the importance of strong authentication, VPN use, and avoiding insecure networks.

Regarding insecure mobile applications, performing regular security assessments using vulnerability scanning tools, such as OWASP Mobile Security Testing Guide, is essential. Developers should ensure the app encrypts data during transmission (via TLS) and stores least-sensitive information securely. Incorporating multi-factor authentication (MFA) for app login enhances security, especially because of the sensitive data involved in a social media context. All security measures must align with industry standards, such as the NIST Cybersecurity Framework, which helps guide best practices for app and device security (NIST, 2018).

Preventive Measures Justified by Regulations

Preventive measures should align with applicable federal regulations, notably the Health Insurance Portability and Accountability Act (HIPAA), if Alliah processes health-related data, or the Payment Card Industry Data Security Standard (PCI DSS), if handling payment information. For general data protection, the California Consumer Privacy Act (CCPA) emphasizes the importance of safeguarding personal data, which justifies the adoption of encryption, access controls, and physical security measures (California Legislative Information, 2018). Additionally, the Federal Trade Commission’s (FTC) guidelines on data security specify that organizations should implement security measures proportionate to the risks encountered (FTC, 2020). Enforcing WPA3 encryption, physical security, MDM, and app security controls aligns with these regulatory expectations to minimize legal liabilities and protect consumer trust.

BYOD Policy Recommendations

Given the increased vulnerabilities associated with BYOD, a comprehensive security policy should be established. This policy should require employees to enroll their devices in an MDM platform, ensuring compliance with security standards such as device encryption, password protection, and automatic updates. Implementing a transparent BYOD policy fosters trust while reducing risks by maintaining control over devices accessing corporate resources. Alternatively, a corporate-owned device approach can enhance security but may impact flexibility and employee satisfaction; therefore, a hybrid approach—where sensitive data is accessed only through managed devices—balances security with usability. Research indicates that strict BYOD policies coupled with MDM dramatically reduce security incidents and data breaches (Fernandes et al., 2020).

Conclusion

As Alliah progresses toward going public, strengthening its WLAN and mobile security posture becomes critical. Upgrading encryption standards, securing physical hardware, enforcing MDM protocols, and adhering to regulatory requirements will mitigate present vulnerabilities. The company’s proactive security efforts will not only protect sensitive user and proprietary data but will also establish a solid foundation for compliance with future regulatory frameworks and industry best practices. Addressing these vulnerabilities now positions Alliah for scalable growth while ensuring trustworthiness and resilience against cyber threats in an increasingly connected digital landscape.

References

Cheng, L., Wang, Y., Zhang, H., & Li, J. (2020). Physical security vulnerabilities in wireless access points. Journal of Cybersecurity and Privacy, 3(2), 45-56.
Chen, Y., Lee, S., & Huang, T. (2021). Security challenges of Bring Your Own Device (BYOD) policies. IEEE Security & Privacy, 19(1), 65-70.
Fernandes, G. A., Hithnawi, A., & Muthukrishnan, S. (2020). Securing BYOD environments: A review of strategies and practices. Journal of Information Security, 11(4), 329-344.
Kim, D., & Park, M. (2018). Mobile app security vulnerabilities and testing methods. Journal of Mobile Security, 5(3), 22-29.
Kumar, P., & Badgujar, M. (2019). Wi-Fi security protocols and vulnerabilities. International Journal of Network Security, 21(4), 502-510.
NIST. (2018). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1. National Institute of Standards and Technology.
Sharma, S., & Mukhopadhyay, D. (2020). Approaches to mobile device management: A comprehensive review. Journal of Cybersecurity Technology, 4(2), 67-84.
Wi-Fi Alliance. (2019). WPA3: Wi-Fi security for the future. Retrieved from https://www.wi-fi.org/discover-wi-fi/security
California Legislative Information. (2018). California Consumer Privacy Act (CCPA). California Law, AB-375.
Federal Trade Commission (FTC). (2020). Protecting Personal Information: A Guide for Business. FTC Guidelines.

« Previous Next »

Hire Dr Jack for Homework & Academic Writing Help

Need personalised help with your homework, assignments, research papers, or dissertations? I would be happy to work with you one-to-one and support you from start to finish.

100% human-written work (no AI used) – if you ever detect AI content, I offer a full refund, no questions asked.
Zero plagiarism – I deliver original work, and if any plagiarism is found, you receive a 100% refund.
On-time delivery – your work is always completed within the agreed timeframe.
Available 24/7 – you can reach out whenever it is convenient for you.
Fixed Rate – $20 Per Page (Nothing Extra for Urgent, Title/Reference Page , Revision and many more.).

To discuss your requirements, please email me at drjack9650@gmail.com . I will respond as soon as possible.