Malicious apps

Apps are analyzed to determine whether they are potentially malicious. If you installed an app that is considered to be malicious, the Aurora Protect Mobile app sends a device notification.

Sideloaded apps

Sideloaded apps are apps that are installed from unofficial or unknown sources are considered to be unsafe because they don’t follow the same restrictions or protections as apps distributed through official app stores. The Aurora Protect Mobile app sends a device notification when a sideloaded app is detected.

Developer options

When developer options are enabled on your device, some sensitive settings and options become available. The Aurora Protect Mobile app sends a device notification when developer options are enabled.

Root detection

If your device is rooted or jailbroken, it means that you or someone else ran software or performed an action on the device that allows root access to the operating system of the device. You or your administrator might have to remove the rooting software from the device or perform some actions on the device to restore the device to the default state. The Aurora Protect Mobile app sends a device notification when it detects the device is rooted or jailbroken.

Full disk encryption

Unencrypted data on your device can be easily read by an unauthorized user. The Aurora Protect Mobile app sends a device notification when encryption is not enabled.

Screen lock

Setting a screen lock prevents unauthorized access on your device, for example, if your device is lost or stolen. The Aurora Protect Mobile app sends a device notification if a screen lock password or fingerprint has not been set.

Attestation

The Aurora Protect Mobile app on your device is periodically checked for integrity and authenticity. The Aurora Protect Mobile app sends a device notification if your device does not pass any of these checks.

On Samsung devices, the Aurora Protect cloud services can also use Samsung Knox Enhanced Attestation in regular intervals to validate the integrity of devices. Knox Enhanced Attestation is hardware-based and can detect device tampering, rooting, OEM unlock, and IMEI or serial number falsification, in addition to performing app health checks.

Device OS

Your administrator might restrict some device OS versions that do not meet your organization's security requirements. The Aurora Protect Mobile app sends a device notification when it detects the device is running a restricted device OS version.

Device model

Your administrator might restrict some device models that do not meet your organization's security requirements. The Aurora Protect Mobile app sends a device notification when it detects the device is running a restricted device OS model.

Wi-Fi security

If your device is connected to a Wi-Fi access point whose network encryption protocol is considered to be insecure, the Aurora Protect Mobile app sends a device notification.

Network connection

The Aurora Protect Mobile app evaluates its network connection to the Aurora Protect Mobile cloud services to determine whether the connection is safe. If the connection is considered to be unsafe, the Aurora Protect Mobile app sends a device notification.

SMS message scanning

When you receive SMS messages that contain URLs, the URLs are scanned to determine whether they are potentially malicious. The Aurora Protect Mobile app sends a device notification when a malicious URL is detected.

Work mode

Enable work mode in the Aurora Protect Mobile app to access network resources safely and protect your device from suspicious and potentially malicious network activity.