The top five Android threats
SECURITY| June 14, 2012, 1:36 p.m.
Sophos has revealed the extent of malware targeting Android mobile phones, by analysing detection statistics from its Sophos Mobile Security app. This data was taken from installations of the application on Android smartphones and tablets in 118 different countries around the world.
SophosLabs' research revealed the top five most commonly detected malware on Android are:
1. Andr/PJApps-C - 63.4%
2. Andr/BBridge-A - 8.8%
3. Andr/Generic-S - 6.1%
4. Andr/BatteryD-A - 4.0%
5. Andr/DrSheep-A - 2.6%
Others - 15.1%
1. Andr/PJApps-C. When Sophos Mobile Security for Android detects an app as Andr/PJApps-C it means that it has identified an app that has been cracked using a publicly available tool. Most commonly these are paid for apps that have been hacked. They are not necessarily always malicious, but are very likely to be illegal.
2. Andr/BBridge-A. Also known as BaseBridge, this malware uses a privilege escalation exploit to elevate its privileges and install additional malicious apps onto Android devices. It uses HTTP to communicate with a central server and leaks potentially identifiable information. These malicious apps can send and read SMS messages, potentially costing the mobile owner money. In fact, it can even scan incoming SMS messages and automatically remove warnings that you are being charged a fee for using premium rate services it has signed the user up for.
3. Andr/Generic-S. Sophos Mobile Security generically detects a variety of families of malicious apps as Andr/Generic-S. These range from privilege escalation exploits to aggressive adware such as variants of the Android Plankton malware.
4. Andr/BatteryD-A. This "Battery Doctor" app falsely claims to save battery life on an Android device. But it actually sends potentially identifiable information to a server using HTTP, and aggressively displays adverts.
5. Andr/DrSheep-A. This is an Android equivalent of the desktop tool Firesheep. It can allow malicious hackers to hijack Twitter, Facebook and Linkedin sessions in a wireless network environment.
"The volume of malware that Sophos discovered highlights that mobile security is a real and growing problem, especially on Android," says Brett Myroff, CEO of Sophos distributor NetXactics.
"Criminals are creating more and more targeted malware for different platforms. Smartphone users need to realist that security is no longer limited to PCs; mobiles and tablets are also at risk if not sufficiently protected."
A new version of Sophos's free anti-virus for Android is available from: https://play.google.com/store/apps/details?id=com.sophos.smsec
MORE SECURITY NEWS
Risks of cyber attacks hard to defineIt is extremely hard to apply to the risks caused by the myriad cyber threats out there, as they are hard to define, harder to prevent, and it is almost impossible to accurately assess the cost and damage of a breach once it has taken place, says Intact Software Distribution. Read More
Cyber Security Africa set for EthiopiaThe 2nd Annual Ethiopia Banking & ICT Summit will take place in November 21st, 2014 at Sheraton Hotel, Addis Ababa, Ethiopia. Read More
EFCC searches for $38m bank e-fraudsterNigeria's Economic and Financial Crimes Commission (EFCC) has started a manhunt for a 38-year-old bank worker over the alleged theft of $38 million from his employers by hacking into computer systems. Read More
Financial phishing skyrocketsKaspersky Lab’s experts have reported a substantial increase in the amount of financial phishing in spam globally. Read More
Fortinet: JP Morgan hack has the hallmarks of an APTThe coordinated hacks of JPMorgan Chase and a number of other banks, which was revealed in the global media yesterday, bear all the hallmarks of an APT attack, says Fortinet South Africa. Read More
McAfee names new Regional DirectorMcAfee, part of Intel Security, has announced the appointment of Trevor Coetzee as its new regional director, South Africa and Sub Saharan Africa. Read More
Security professionals slam govt, banks over securityNigeria’s Information Technology System and Security Professional (ITSSP) body says lenders are putting the cart before the horse by not first considering the security of applications before deploying them. Read More
Kaspersky Lab launches free app scanner for AndroidTo safeguard users against a number of Android vulnerabilities discovered in recent months, Kaspersky Lab has released a free mobile application for the platform. Read More
Police claim rise in cyber crimeBotswana Police have indicated that there is marked increase in crimes involving the internet in the country. Read More
Multi-layer security to combat social media attacksEnterprises are vastly underestimating the risk of social media, says Fortinet distributor Networks Unlimited. Read More
FEATURED STORYMFarmer SMS redefines market access for Ugandan farmers
Ugandan smallholder farmers are benefitting from an ambitious innovative ICT mobile phone initiative that offers weather reports and up-to-date market information about changes in prices for agricultural commodities, thus granting them lucrative returns from their farming ventures.
BEST READ NEWS
IN DEPTHiProcure delivers inputs to farmers’ doorsteps using ICTs
An innovation dubbed iProcure is already being used by several agro input firms which are now relying on it to distribute their products to farmers.
COMPANY NEWSVMware announces VMware Workstation 11 and VMware Player 7 Pro
VMware Workstation 11 marks 15 years of innovation with Windows 10 Tech Preview readiness, state of the art performance and cloud connectivity.Schneider Electric signs exclusive off-grid solar distribution agreement with Zimbabwean firm
Schneider Electric has announced the signing of an exclusive agreement with Samansco, a Zimbabwean renewable energy, back-up power and appropriate technology company.