kenpat/comptia-a-plus-core2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
comptia-a-plus-core2/labs/TRB-3-mobile-security-issues-lab.md

1.2 KiB
Raw Blame History

Lab TRB-3: Mobile Security Inspection

Domain:

  • 3.0 Software Troubleshooting

Works on:

  • Android
  • iOS

Goal

Inspect mobile security signals without installing or removing apps.

Part 1: App Source Review

Pick three installed apps and record:

  • App name:
  • Source or store if visible:
  • Developer name if visible:
  • Permissions that seem sensitive:

Part 2: Device Controls

Record:

  • OS update status:
  • Unknown sources or sideloading status if visible:
  • Developer mode status if visible:
  • VPN status:
  • Device management profile or MDM status if visible:

Part 3: Data and Battery Signals

Record:

  • Highest mobile data user:
  • Highest battery user:
  • Any app you do not recognize:
  • Any unexpected ads, redirects, or warnings:

Part 4: Scenario Practice

Choose the risk:

  1. User installed a bank app from a link in a text message.
  2. Phone shows ads when no browser is open.
  3. Device is jailbroken.
  4. A weather app uses large amounts of background data.
  5. Fake virus warnings appear repeatedly.

What You Should Learn

  • Mobile compromise often looks like odd app behavior, ads, or data usage.
  • Rooting, jailbreaking, sideloading, and unofficial stores raise risk.
  • Managed devices should follow organization policy and MDM procedures.