How to prevent data leaks from in-house business apps? The story of Company B that solved the blind spot of employee terminal security with LIAPP
As of 2025, many companies are developing and operating various in-house business apps as they pursue digital transformation.
Mobile-based business apps have the advantage of allowing employees to work conveniently anytime and anywhere, but they also have the disadvantage of always being exposed to security threats.
In particular, in the BYOD (Bring Your Own Device) environment where employees use in-house apps on their personal smartphones (Personal Devices), the risk of confidential information being leaked to the outside is much higher, and corporate security officers cannot be free from concerns about data leaks.
In this post, we will examine the case of Company B, which actually introduced **mobile app security service LIAPP** to strengthen in-house security, and how it was able to prevent data leaks from business apps.
Are ‘business apps’ used by employees vulnerable to security?
Company B, an IT service company with about 300 employees, developed and operated an in-house mobile app that could handle customer support, project management, internal reporting, etc.
Through this app, employees were performing the following tasks on a daily basis:
• Viewing and writing confidential business documents
• Registering project progress
• Viewing and entering customer information
• Proceeding with the approval process for managers
However, most employees using the app were installing and using the app on their personal smartphones, and the IT security team was concerned about the following security issues:
Key Security Threat Scenarios
1. If the device is rooted or a malicious app is installed
→ Risk of sensitive information being stolen or the app being manipulated
2. If employees decompile the source code and analyze the internal logic
→ Possible authentication bypass or exploitation of internal functions
3. If the app is modified to manipulate authorization rights or execute functions without authorization
→ Increased threat to internal business systems
4. If data stored in the app is extracted in an unencrypted state
→ Project or customer information is leaked as is
While the IT team was looking for a way to resolve all of these security threats, they reviewed a mobile app security service called **LIAPP**.
Introducing LIAPP – Applying ‘corporate-level security’ even to personal devices
LIAPP is a mobile app security service developed by Lockin Company, and is a solution adopted by various companies and public institutions to strengthen app security.
Company B needed the following security features for its in-house app, and LIAPP met all of them.
Check if the app has been tampered with, and block execution if tampered with → Prevent tampering
Protect internal app source code from leaking → Obfuscate and encrypt source code
Protect sensitive data from leaking to the outside → Encrypt data
Block rooted devices or hacking tool environments → Detect execution environment threats
Business app security level changes
Company B compared and analyzed security tests and user logs before and after applying LIAPP.
Before application
• Part of the source code was exposed during the decompile test
• App can be run on rooted devices
• Sensitive data plaintext stored in JSON files within the app was found
• Developer successfully attempted to obtain administrator privileges by modifying APK files
After application (LIAPP security profile application completed)
• Structure cannot be identified due to source obfuscation and encryption during decompile
• App automatically terminates in rooted and debugging environments
• Data code encryption/obfuscation protects against theft of encryption logic
• App execution is blocked when tampering is detected, and administrator notification is provided through log server integration
As a result, all internal security tests passed with a ‘no abnormality’,
and the IT audit also evaluated that “the security level of business apps has significantly improved.”
In addition, Company B’s development team positively evaluated the introduction of LIAPP for the following reasons:
“LIAPP is immediately secured by simply going through a simple security application procedure after APK build,
so there was no need to change the app structure and there was no burden on the development schedule at all. In particular, since various security options can be selected through profiling, the flexibility to adjust them as needed was good.”
Why You Should Start Securing Your Business Apps Right Now
Today, many companies are adopting **BYOD (bring your own device)**, but app security is essential to operate it safely.
If any of the following applies to you, strengthening mobile app security is urgent:
• Employees are using in-house apps on their personal smartphones
• Apps contain customer information, contracts, and project documents
• Lack of security personnel makes it difficult to respond directly
• Recently, concerns have been raised about internal information leaks
Protecting in-house apps from external threats with LIAPP
Although in-house mobile apps are introduced for work convenience and efficiency, if they are not secured, they can become the most dangerous window for corporate confidential information to be leaked. As in the case of Company B, we hope you can maintain corporate-level security on your personal devices and effectively block data leaks and internal threats through **a simple and quickly applicable mobile security solution called ‘LIAPP’**.
#In-house app security #BYOD security #Mobile app security #LIAPP #LIAPP #Data leak prevention #Confidential information protection #Forgery prevention #Rooting blocking #Obfuscation #Business app security #Mobile security solution #Corporate security case
