We will begin by discussing smartphones and their unique capabilities as well as risks. We will look at examples of common smartphone attacks from researchers as well as in the wild. We will then look at mitigating practices and what end users, companies that support smartphones in the workplace, and smartphone carriers can do to minimize risk without compromising functionality. We will then switch gears and revisit our attacks, but this time focus on attacks that stem from poor coding practices on the part of third party app developers for smartphones. We will then look at strong coding practices that developers should adopt to keep their apps free from these vulnerabilities.