The top five Android threats
SECURITY| June 14, 2012, 1:36 p.m.
Sophos has revealed the extent of malware targeting Android mobile phones, by analysing detection statistics from its Sophos Mobile Security app. This data was taken from installations of the application on Android smartphones and tablets in 118 different countries around the world.
SophosLabs' research revealed the top five most commonly detected malware on Android are:
1. Andr/PJApps-C - 63.4%
2. Andr/BBridge-A - 8.8%
3. Andr/Generic-S - 6.1%
4. Andr/BatteryD-A - 4.0%
5. Andr/DrSheep-A - 2.6%
Others - 15.1%
1. Andr/PJApps-C. When Sophos Mobile Security for Android detects an app as Andr/PJApps-C it means that it has identified an app that has been cracked using a publicly available tool. Most commonly these are paid for apps that have been hacked. They are not necessarily always malicious, but are very likely to be illegal.
2. Andr/BBridge-A. Also known as BaseBridge, this malware uses a privilege escalation exploit to elevate its privileges and install additional malicious apps onto Android devices. It uses HTTP to communicate with a central server and leaks potentially identifiable information. These malicious apps can send and read SMS messages, potentially costing the mobile owner money. In fact, it can even scan incoming SMS messages and automatically remove warnings that you are being charged a fee for using premium rate services it has signed the user up for.
3. Andr/Generic-S. Sophos Mobile Security generically detects a variety of families of malicious apps as Andr/Generic-S. These range from privilege escalation exploits to aggressive adware such as variants of the Android Plankton malware.
4. Andr/BatteryD-A. This "Battery Doctor" app falsely claims to save battery life on an Android device. But it actually sends potentially identifiable information to a server using HTTP, and aggressively displays adverts.
5. Andr/DrSheep-A. This is an Android equivalent of the desktop tool Firesheep. It can allow malicious hackers to hijack Twitter, Facebook and Linkedin sessions in a wireless network environment.
"The volume of malware that Sophos discovered highlights that mobile security is a real and growing problem, especially on Android," says Brett Myroff, CEO of Sophos distributor NetXactics.
"Criminals are creating more and more targeted malware for different platforms. Smartphone users need to realist that security is no longer limited to PCs; mobiles and tablets are also at risk if not sufficiently protected."
A new version of Sophos's free anti-virus for Android is available from: https://play.google.com/store/apps/details?id=com.sophos.smsec
MORE SECURITY NEWS
DDoS reality check: It can happen to youThe Distributed Denial of Service (DDoS) threat has changed to one where the attack types are more diverse and nefarious than before. Read More
Kaspersky Lab: 63% of companies affected by internal information security incidents63% of companies have been affected by internal information security incidents, and the largest single cause of confidential data losses are employees, says a new study. Read More
Arbor Networks enables availability protection for industry's most comprehensive DDOS defenceArbor Networks, the security division of NETSCOUT (NASDAQ: NTCT), has announced the industry's most comprehensive portfolio of products and services for DDOS protection, delivering unmatched scalability, deployment and cost flexibility to meet the needs of any organisation, from the world's largest service providers to small and mid-sized emerging ... Read More
Online bank accounts targeted over 5m timesDuring the past quarter, there were 5.68 million notifications about attempted malware infections to steal money from users via online access to bank accounts, says Kaspersky. Read More
Nigeria’s electronic fraud losses hit N4bWith the introduction of the cashless economy scheme of the Central Bank of Nigeria (CBN) designed to discourage use of cash, electronic crooks seem to have become more daring, fleecing banks and customers of over N4 billion. Read More
The human firewall – turning security’s weakest link into IT’s strongest allyWhen it comes to cyber security, people are often the weakest link. A comprehensive approach to ‘people security’ is essential in closing the gap on this particular vulnerability, says Galix. Read More
FNB Botswana sensitizes customers on cyber crimeFNB Botswana has advised customers to be vigilant of scammers when purchasing via money transfer and online platforms. Read More
Worse than it seems: DDoS attacks coincide with other threatsA survey undertaken by Kaspersky Lab and B2B International has demonstrated that, in most cases, a DDoS attack is only the tip of the attack iceberg. Read More
Survey: 98 days to identify advanced cyber threatsA Ponemon Institute survey has found the average time span for financial services to identify an attack inside the network is 98 days. Read More
FEATURED STORYeCommerce in Africa urged to take advantage of mobile
The Executive Chairman of Alltel has urged operators of eCommerce in Ghana and Africa as a whole to take advantage of the current trend for Africans to trade online via their mobile handsets.
BEST READ NEWS
IN DEPTHNigeria needs $25b investment in broadband, says Wood
Telecoms executive Adrian Wood speaks to Kokumo Goodie about investment potential in Nigeria.
COMPANY NEWSDDoS reality check: It can happen to you
The Distributed Denial of Service (DDoS) threat has changed to one where the attack types are more diverse and nefarious than before.