About Mobile Malware Protection

Mobile devices have become an intrinsic part of the workplace. Organizations are providing users with mobile devices to enhance their productivity. Users are bringing in their mobile devices and connecting them to corporate networks. Mobile devices are everywhere, as personal as well as business tools, and they’re introducing security vulnerabilities and issues into your organization. If your organization has a Mobile Security subscription, you can define policies specifically for mobile devices that forward traffic to the Zscaler service and protect the devices from malicious apps that can compromise the security of your data.

The Zscaler service has a default Mobile Malware Protection policy that prevents users from unwittingly downloading apps that are known to contain vulnerabilities or perform malicious activities, but allows all other apps. You can modify this policy and block apps that leak certain types of information.

To see how this policy fits into the overall order of policy enforcement, see How does the Zscaler service enforce policies?

To define the Mobile Malware Protection policy, see the instructions below:

  1. Go to Policy > Mobile > Mobile Malware Protection.
  2. By default, all the insecure apps are blocked. Choose to Allow or Block any of the following:
  • Malicious Activity
  • Known Vulnerabilities
  • Unencrypted User Credentials
  • Location Information
  • Personally Identifiable Information
  • Device Identifiers
  • Communication with Ad Servers
  • Communication with Unknown Servers
  1. If you change any of the policy settings, click Save and activate the change.

 Click Recommended Policy to view the policy Zscaler recommends.

Screenshot of the Recommended Policy icon for the Mobile Malware Protection policy