The top five Android threats

SECURITY

|
Image: By BiztechAfrica
The top five Android threats

Sophos has revealed the extent of malware targeting Android mobile phones, by analysing detection statistics from its Sophos Mobile Security app.  This data was taken from installations of the application on Android smartphones and tablets in 118 different countries around the world.

SophosLabs' research revealed the top five most commonly detected malware on Android are:

1. Andr/PJApps-C - 63.4%

2. Andr/BBridge-A - 8.8%

3. Andr/Generic-S - 6.1%

4. Andr/BatteryD-A - 4.0%

5. Andr/DrSheep-A - 2.6%

Others - 15.1%

1. Andr/PJApps-C.  When Sophos Mobile Security for Android detects an app as Andr/PJApps-C it means that it has identified an app that has been cracked using a publicly available tool. Most commonly these are paid for apps that have been hacked. They are not necessarily always malicious, but are very likely to be illegal.

2. Andr/BBridge-A.  Also known as BaseBridge, this malware uses a privilege escalation exploit to elevate its privileges and install additional malicious apps onto Android devices. It uses HTTP to communicate with a central server and leaks potentially identifiable information.  These malicious apps can send and read SMS messages, potentially costing the mobile owner money. In fact, it can even scan incoming SMS messages and automatically remove warnings that you are being charged a fee for using premium rate services it has signed the user up for.

3. Andr/Generic-S.  Sophos Mobile Security generically detects a variety of families of malicious apps as Andr/Generic-S. These range from privilege escalation exploits to aggressive adware such as variants of the Android Plankton malware.

4. Andr/BatteryD-A.  This "Battery Doctor" app falsely claims to save battery life on an Android device. But it actually sends potentially identifiable information to a server using HTTP, and aggressively displays adverts.

5. Andr/DrSheep-A.  This is an Android equivalent of the desktop tool Firesheep.  It can allow malicious hackers to hijack Twitter, Facebook and Linkedin sessions in a wireless network environment.

"The volume of malware that Sophos discovered highlights that mobile security is a real and growing problem, especially on Android," says Brett Myroff, CEO of Sophos distributor NetXactics. 

"Criminals are creating more and more targeted malware for different platforms. Smartphone users need to realist that security is no longer limited to PCs; mobiles and tablets are also at risk if not sufficiently protected."

A new version of Sophos's free anti-virus for Android is available from: https://play.google.com/store/apps/details?id=com.sophos.smsec



Share the News

Get Daily Newsletter

comments powered by Disqus

MORE SECURITY NEWS

Leading newspaper site hacked

Botswana is seeing unprecedented cases of internet hacking with one of the latest attacks targeting one of the country’s leading private newspapers, Mmegi. Read More

Senegal hit by wave of cyber attacks

Senegal has been hit by a wave of hackings in the past two weeks, two of which hit the popular news website Seneweb.com and ADIE. Read More

Cyber attacks may get more virulent, Cisco, Kaspersky warn

Cyber attackers are using more subtle methods to infiltrate corporate networks with the aim of stealing vital information or simply causing mayhem. This is according Kaspersky Lab and Cisco, who say IT security experts should up their game in educating users how to ward off potential attackers. Read More

SIM box task team steps up successes with help from ICT firm

Ghana’s efforts to crack down on SIM boxing fraud have been given a boost by the efforts of Subah Infosolutions Ghana Limited, which now partners with the authorities in the fight against this crime. Read More

Software vulnerability led to Ghana govt site hack

A software vulnerability and failure to update software led to the hacking of some websites on the government of Ghana’s official portal. Read More

CBN issues directive on two factor authentication for internal banking processes

The Central Bank of Nigeria has issued a directive requiring all deposit money banks (DMBs) to implement two factor authentication for internal processes this year. Read More

SA: 57% could not recover money stolen in online fraud

A recent survey conducted by Kaspersky Lab and B2B International found that more than half of those respondents in South Africa who lost money in fraudulent online transactions did not get all – or sometimes any – of their funds back. Read More

Addressing the mobility gap in corporate security

Mobile devices have the potential to open up corporate networks to a wide variety of threats, and tackling this challenge requires a comprehensive mobility strategy, says DCC. Read More

Keeping yourself safe in 2015 – Kaspersky Lab Examines IT security trends globally and in Kenya

Cyber security is something that nobody can take for granted. With attacks escalating as a result of people's increased connectedness, there can be no respite for being vigilant, says Kaspersky Lab. Read More

ESET: Internet Explorer most vulnerable Microsoft Windows component

Internet Explorer, Microsoft’s ubiquitous web browser, has topped an ESET list of the most frequently targeted Windows components. Read More

PRESS OFFICES

Sage ERP AfricaSAP AfricaSage Pastel AccountingTrust PayVMWareSamsung ElectronicsMitsumi DistributionPhoenix DistributionMTN BusinessSchneider ElectricMultichoiceMicrosoft 4Afrika

FEATURED STORY

UCC launches 2015 ACIA awardsUCC launches 2015 ACIA awards

Uganda has launched the fifth Annual Communications and Innovation Awards, which celebrate and foster ICT innovation and achievement.

IN DEPTH

Kenya’s digital TV battle hots up Kenya’s digital TV battle hots up

Kenya’s journey to Digital TV broadcasting took a new turn this week, when the Communication Authority of Kenya (CAK) accused three local media firms of intent to disrupt the process.

COMPANY NEWS

Albany CTG, Microsoft, collaborate on School of Government Program

The University at Albany’s Center for Technology in Government (CTG) has announced its collaboration with Microsoft Corporation to deliver executive level training to government leaders in Africa ...

VMware reports fourth quarter and full year 2014 results

VMware, the global leader in virtualisation and cloud infrastructure, has announced financial results for the fourth quarter and full year of 2014.

MTN to empower African businesses with AWS Direct Connect

MTN Group today announced it would be the first African company to offer Amazon Web Services (AWS) Direct Connect to business customers across multiple countries on the ...