Mobile malware hits new high as cybercrims get smarter

Peter Dinham
Thursday, 16 February 2012 22:01

Business IT - Security

Last year saw a record number of mobile malware attacks, with Google's Android platform high on the target list, and with a new security report warning that cybercriminals are smarter than ever and finding new ways to exploit vulnerabilities.

In its latest threats assessment, Juniper's mobile threat centre says that mobile malware has already reached a new stage of maturation and that from 2010 to 2011 it identified a 155 percent increase in mobile malware across all mobile device platforms.

Juniper examined more than 790,000 applications and vulnerabilities across every major mobile device operating system to come up with its report in what it says is one of the largest first-hand quantitative research studies of its kind.

According to Juniper's chief mobile security evangelist, Dan Hoffman, the rapid growth in mobile malware combined with ongoing concerns about lost and stolen devices illustrate just how important of an issue mobile security is - 'and that it is an issue that affects everyone, not just corporations. At Juniper, we believe building trust in mobility is just as important as building great networks and powerful applications."

Juniper also has some advice for consumers and businesses, with vice president and general manager of the Junos Pulse business unit saying it is vital they take the necessary security precautions when using mobile devices.

'Securing mobile devices requires a combination of safeguarding connections from interception, securing data in transit from prying eyes or theft, protecting against fast-propagating malware, possessing the tools to manage devices and apps, and securing the data, usernames and passwords on them in the event that they are lost or stolen," Hoffman says.

"It is vital that consumers and businesses take the necessary security precautions when using mobile devices. Securing mobile devices requires a combination of safeguarding connections from interception, securing data in transit from prying eyes or theft, protecting against fast-propagating malware, possessing the tools to manage devices and apps, and securing the data, usernames and passwords on them in the event that they are lost or stolen."

Juniper's top findings reveal that the barrier to entry, for those conducting the malware attacks, is low and that its data shows an evolution from 'sophisticated, complex and deep technical attacks to schemes that are lightweight, social and able to deliver fast profits.'

'As mobile users download more applications than ever before, applications themselves are becoming the 'killer app' for hackers and the most popular way to compromise devices, Hoffman says.

Other key findings of the Juniper survey include:

'¢    In the last seven months of 2011 alone, malware targeting the Android platform jumped 3,325 percent.

'¢    In 2011, spyware and SMS Trojans comprised the vast majority of malware targeting mobile devices, at 63 percent and 36 percent respectively.

'¢    Research into Apple iOS security remains limited given the closed nature of its platform; but in 2011, security researchers were successful in getting an unapproved application onto the Apple App Store.

'¢    A new attack method dubbed "Fake Installers" was the fastest growing type of malware found in 2011. Fake Installers trick victims into unknowingly paying for pirated versions of popular applications that are normally free.

'¢    In addition to the rising threat of malware, consumers and enterprises remain susceptible to a very low-tech risk: lost or stolen mobile devices. In the last year alone, nearly one in five users of Junos Pulse Mobile Security Suite -- Juniper's comprehensive mobile device security and management solution -- required a locate command to identify the whereabouts of a mobile device.