While many organizations have comprehensive activity monitoring for servers, desktop and laptop computers, they lack the same telemetry for iOS, Android, and Chrome OS endpoints. As employees have increased their use of mobile devices for work, attacks on these devices have increased. To be effective at stopping data breaches, security teams need the same comprehensive data for mobile endpoints that they have for servers, desktops and laptops. Because mobile operating systems never permitted kernel access and required apps to operate in isolation, it had been incorrectly assumed that collecting comprehensive telemetry was not possible.