Analyst Jack Gold claims to have identified a potentially serious flaw in the way data is secured on Windows Mobile devices. Gold says that while data pushed OTA from an Exchange server to a Windows Mobile client is SSL encrypted while in transit, it is not encrypted when stored on the device. If true (and Microsoft hasn't denied it), this could be bad news Microsoft's plans to push Windows Mobile as the de facto mobile enterprise platform. Sensitive data is fully encrypted on BlackBerry devices.