About Thawte

News

Mobile malware: OS-targeted malware and prevention tips

One security firm recently released their first quarter findings for 2014, which showed the continuation of the Android mobile malware trend. It's no secret that the Android platform is under threat of malware more often than other operating systems and this most recent research illustrates that this is still the case.

Study findings
Ausdroid contributor Chris Rowland, reporting on the security firm's study, stated that more than 99 percent of all new mobile malware samples discovered since the beginning of the year are aimed at Android users. Rowland noted that because of the platform's construction and design, hackers are more prone to attack it.

"[I]t's easy to understand why: It's fast becoming the most popular platform, and unlike iOS with its strongly enforced walled-garden approach, the security model on Android is different, and arguably more permissive, which allows greater opportunity for malware to find its way in," Rowland wrote.

Of the 277 new threat strains and samples uncovered by researchers, 275 of these malware threats targeted Android-based devices. One sample was aimed at iPhone users and one at the Symbian OS. This is a small increase from last year's findings, which showed 149 new malware risks, 91 percent of which were directed at the Android platform.

Chief research officer Mikko Hyppönen noted that this trend is expected to continue, especially as mobile device abilities evolve.

"These developments give us signs to the direction of malware authors," Hyppönen said. "We'll very likely see more of these in the coming months. For example, mobile phones are getting more powerful, making it possible for cybercriminals to profit by using them to mine for cryptocurrencies."

Newest mobile malware threat
One of the newest Android-facing mobile malware samples is called Android/Samsapo.A. The most notable feature of this strain is the fact that it attempts to expand its attack vector by stealing the victim's contact list, reported Computer World contributor Jeremy Kirk.

Once the device is infected, hackers are able to access the contact list and send text messages from the infiltrated platform to others on the list. This worm-like approach, which attracts victims by asking "Is this your photo?" in the text, has been seen in previous mobile malware samples as well. Curious as to the origin of the supposed picture, individuals open the message, which contains a malicious link to an AndroidA application package file. When users click the link, they are redirected to the file, which contains a copy of the Samsapo sample, infecting their device.

Mobile malware prevention tips
However, device owners can work to prevent this sample and others that target the Android operating system. Computer Weekly contributor Paul Marchant advised users to upgrade their platform to Android 3.0 or above to ensure that all security patches are in place. Furthermore, individuals should leverage a mobile malware monitoring application, which can alert the person should suspicious activity be detected on the device. Additionally, all sensitive information should be protected by authentication credentials and encryption.

Protected data in transit with an SSL certificate today.

corporate office

Thawte
The Gateway
Century Lane
Century City, 7441
Cape Town
South Africa

Postal Address:
P O Box 15986
Panorama 7500
Cape Town
South Africa

Call: +353 1 793 9141
Fax: +27 21 819 2950

We have updated our Privacy Policy which can be found here.

Thawte is a leading global Certification Authority. Our SSL and code signing digital certificates are used globally to secure servers, provide data encryption, authenticate users, protect privacy and assure online identifies through stringent authentication and verification processes. Our SSL certificates include Wildcard SSL Certificates, SAN /UC Certificates and Extended Validation SSL Certificates.

What is an SSL Certificate Which SSL Certificate is Right for Me? Why Choose Thawte?