One of the key takeaways is that third party-provided software used on Windows Mobile often causes problems. In addition, the report says, some vendors are purposefully misleading about the status of their products.
This is a good report to read, even for non-experts. Though it gets quite complex very quickly, the piece aptly conveys the level of danger. Seth Fogie, the vice president at the company who wrote the report, pulls no punches. He concludes early on that "it is our belief that Windows Mobile platform creates an environment conducive to poorly designed security software."
That's not hard to believe, of course, since this is a Microsoft product.
Internal developers must be exceedingly careful. This is particularly true when they acquire and test applications. We aren't developers, but it seems pretty clear to us that the connection points between an OS and applications would figure to be rich in possibilities for hackers. It also seems that Microsoft and the third parties in question would have some room to try to shift blame.
This all plays into a point we've made before: As wireless becomes more central to the corporate mission, a new level of hacker scrutiny will emerge. While it's easy to kick Microsoft around, the responsibility ultimately rests with the company doing the buying and running the applications.