Lookout Mobile Endpoint Security
Mobile threat defense with endpoint detection, response, and behavioral threat intelligence.
Vendor Information
Lookout Mobile Endpoint Security Overview
Lookout Mobile Endpoint Security is a Mobile Threat Defense solution delivering endpoint protection for iOS, Android, and ChromeOS devices through security intelligence analyzing telemetry from 220 million devices, 351.8 million mobile apps, and billions of web items. Unlike traditional security tools missing mobile-specific threats, Lookout provides mobile Endpoint Detection and Response enabling teams to detect mobile-targeted phishing, investigate suspicious activity, and respond before incidents escalate.
The platform operates through Lookout Security Cloud using machine learning to detect app behavior anomalies, network traffic threats, and device posture violations, having identified 484.4 million phishing and malware sites since 2019. Core capabilities include Smishing AI using Large Language Models to understand context addressing 328 percent increase in SMS phishing attacks, Mobile EDR providing real-time visibility from reconnaissance to data access, and Advanced Persistent Threat tracking attributing attacks to adversaries including Sandworm, APT41, and Scattered Spider. The platform delivers privacy-first architecture and enforces device compliance with Zero Trust policies.
Founded in 2007 by John Hering, Kevin Mahaffey, and James Burgess who demonstrated Bluetooth vulnerabilities at 2007 Academy Awards, Lookout raised $616 million achieving $1.8 billion valuation in 2020. The company acquired CipherCloud in 2021 and divested consumer business to F-Secure in 2023. Lookout protects hundreds of enterprises and government agencies, recognized as Leader in Forrester Wave for Mobile Threat Defense Solutions 2024, maintaining SOC 2 Type II and ISO 27001 certifications.
Key Capabilities
Standardized capabilities mapped to this product's security niche
Analyzes installed application binaries for malicious behavior, excessive permission requests, data exfiltration patterns, and policy violations beyond what app store review catches.
Detects device integrity compromise (jailbroken iOS and rooted Android), and can enforce conditional access policy or quarantine the device via MDM/UEM integration.
On-device analysis runs threat detection locally without sending data to cloud, preserving privacy and maintaining protection when off-network. Cloud-assisted detection enables more sophisticated analysis at the cost of data egress.
Intercepts and evaluates URLs in SMS, email clients, messaging apps, and browsers, blocking malicious links regardless of which app the user opens them in.
Identifies connection to malicious or impersonation Wi-Fi networks (including captive portal attacks and SSLstrip-capable access points), and can block connection or alert the user.
Integrates with Jamf, Microsoft Intune, VMware Workspace ONE, and other UEM platforms to trigger automated response actions (wipe, quarantine, access revocation) upon threat detection.
Detects novel mobile threats using behavioral heuristics and ML models without requiring known signatures, relevant for targeted attacks against specific organizations.
Provides equivalent detection coverage, behavioral analysis depth, and response capability on both iOS and Android, most mobile security tools have material detection gaps on one platform.
Performs threat detection using an on-device model without requiring all telemetry to be sent to cloud infrastructure, relevant for regulated environments and privacy-sensitive deployments.
Triggers automated remediation actions via MDM/UEM API (device quarantine, selective wipe, access policy enforcement) upon confirmed threat detection.
Uses Android kernel interfaces (inotify, netlink, SELinux audit), for deep system visibility, enabling detection of sophisticated malware that evades user-space analysis.
Integrations
Compatible tools and platforms
Solution Details
Compliance & Certifications
Regulatory frameworks and security certifications
Deployment Options
Where and how this solution can be deployed
Support Channels
Available support and communication options
Pricing Model
How this solution is priced
How to buy
This profile hasn’t been claimed yet. Contact the vendor directly for pricing and purchasing options.
Is this your company?
Claim Your Profile