ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.
Find Eavesdropper Apps in Appthority MTP
book
Article ID: 173311
calendar_today
Updated On:
Products
Endpoint Protection Mobile
Issue/Introduction
Important: These instructions refer to the pre-release version of the new Appthority MTP. See Find the Eavesdropper Apps in Appthority for instructions that apply to the current production version.
In these instructions, you activate the TIs listed below, and create a new App Policy that uses the TIs.
Uses Twilio Hardcoded Credentials
Uses Known Vulnerable Twilio Hardcoded Credentials
Uses Amazon Hardcoded Credentials
Resolution
To activate the TIs:
In Appthority MTP, go to Dashboard > Mobile Threat Team Updates dashlet.
Click one of the TIs to open the Compliance > Threat Indicators tab and see the TI.
Click the checkbox next to the TI name.
Click Actions > Activate.
The Status column changes from Inactive to Active.
Repeat 1-4 for the other two TIs.
To create the App Policy:
Go to Compliance > App Policies.
Enter a unique name for the policy, such as "Eavesdropper apps".
Enter a description for the policy.
In the Threat Indicators section of the App Policies tab, click Add New. The App Threat Indicators selector popup opens.
Use the Search box to quickly find the TIs.
Select a TI and click the right arrow to add it to the policy. Repeat to select the second and third TIs.
Uses Twilio Hardcoded Credentials
Uses Known Vulnerable Twilio Hardcoded Credentials
Uses Amazon Hardcoded Credentials
Click Add Selected.
The App Policies Threat Indicators section lists the selected TIs and shows important information about each.
Optionally, you can add policy filters. See the Help for more information.
Save the policy.
Appthority MTP will check the TIs against the apps and update the ?Apps in violation link if any apps are found to be in violation. If there are no violations, the number 0 shows.
If there are apps in violation, click the link to see details.
Set up any relevant compliance actions in your EMM.
If you have the MTP Mobile App deployed, optionally set up an Appthority Remediation Policy. See the Help for details.
Activate the App Policy.
When you activate the policy, remediation and/or EMM compliance enforcement is initiated.