302 Chapter9·ForensicAnalysisofMobileMalware Notes from the Underground... The Impact of Mishandling Mobile Devices Never guess passwords to gain entry to a device. A BlackBerry, for instance, will do a complete data wipe after the tenth password failure, resulting in the loss of any infor- mation on the device. This is a result of the software on this device that logs the attempts at entry and which is set to do a complete wipe following a preset number of invalid login attempts. Mobile malware could also be configured to detect tampering and wipe the device. Deploying Mobile Forensic Tools When you are conducting a forensic investigation, no shortage of tools is available; however, the standard forensics tools do not cover the majority of mobile phones that are available. In either case, far fewer tools are available for the analysis of a mobile device than for a typical digital forensic investigation (see Table 9.1). Table 9.1 Mobile Device Analysis Tools Mobile Device Tool PDA Seizure EnCase Autopsy PalmDD Windows Mobile Acquisition and reporting Reporting and examination Reporting and examination NA Linux/UNIX NA Reporting and examination Acquisition, reporting, and examination NA Palm OS Acquisition, reporting, and examination Acquisition, reporting, and examination NA Acquisition and reporting PDA Secure PDA Secure tool offers enhanced password protection, along with encryption, device lock- ing, and data wiping. The PDA Secure tool allows administrators greater control over how handheld devices are used on networks. Additionally, it allows you to set a time and date