Norton, the web security firm, has revealed the year’s biggest mobile security threats, including a fake app that punished illegal downloads.
The threats to mobile phones through dangerous mobile applications have increased substantially over the past year. Google’s Android phones are less resistant to most key security threats, and mobile devices have better built-in security than PCs.

This year’s biggest and most intriguing mobile threats to consumers, include:
• popular mobile games which have been modified by cyber criminals to access the victims’ personal information, log ins and credit card numbers;
• dangerous applications often posing as games, music applications and sex sites;
• modified legitimate apps that allow cyber criminals to take control of a victim’s mobile phone and send text messages remotely.
“Cyber criminals will go where the money is and they know people are increasingly using mobile devices to buy goods and store personal data,” says Sian John, Norton mobile security expert

1. Mobiles meet the Day of Judgement
In May, a doomsday prophecy was spread, saying that Judgement Day would come on May 21st. Linked to this, a trojan version of a legitimate application was developed. This was immersed in a pirate version of an application called ‘Holy F***ing Bible’, which was available on unofficial Android marketplaces.
Once the adapted application is installed on a mobile phone, the malicious code lays dormant waiting for the phone to restart. After reboot it initiates a process called ‘theword’ which after 22 minutes tries to contact a host computer, and sends unpleasant text messages to contacts within the phone. Learn more here:

2. Geinimi and Pjapps
In February, Android.Geinimi was discovered. This is a pirated application posing as a legitimate game, but one which has been modified to include a Trojan horse with the ability to open up the victim’s phone to intruders.

3. Fake Patch by Google
In March, Google published the security application “Market Security Tool”, which is a tool designed to eliminate the effects of Android.Rootcager (see above). This application was automatically sent to the mobiles that had downloaded and installed the infected applications. This application was dangerously modified – allowing a command-and-control server running in an unknown physical location to send text messages from the phone. Symantec discovered the suspect code in a repackaged version of ‘Market Security Tool’ – Android.Bgserv. Google subsequently removed the app from its marketplace.

4. A punitive mobile app
Android.Walkinwat is the first mobile threat detected that actually tries to punish users who illegally download applications from unauthorized sites. Mobi Lappen was discovered by Symantec again in late March. The malicious code was hidden in a non-existent version of the application ‘Walk and Text’, available on Android Market. When the malicious code was installed, it took the form of sending SMS messages to a mobile’s entire contacts list stating that the sender had downloaded an illegal application and is therefore stingy!

5. Droid Dreams – a recurring nightmare for Android users
Android.Lightdd was spotted in June, the sequel to Android.Rootcagers, or Droid Dreams – one of the earliest threats spotted among Android mobiles. This is an interesting development as it shows the evolution of mobile threats: building on one threat and adapting them slightly: the same as PC-based malware has done. Android.Lightdd was originally only linked to five user accounts, but in early June more affected user accounts were found. Mobile users were attacked through an invite to download an update of a legitimate mobile application, and the dangerous code was installed with this false application. Read more about the harmful mobile applications here:


Top security tips for mobile users

• Set a password lock on your phone
• Consider setting a remote wipe functionality, either through the phone’s settings (a set number of incorrect passwords and the phone is wiped) or through an application
• Carefully check the permissions which each app is asking of you: think about whether you’re happy for a gaming company to have access to your messaging systems, for example
• Do not store sensitive data in your calendar, notes or media library – particularly any work-related data or log-in codes for online banking, passwords for other sites etc
• Do not jailbreak your phone
• Back up your photos, music and other data
• Check with your work systems administrators before attempting to access any work-related items on your smartphone
• Remember you are still vulnerable to social engineering attacks such as phishing and spam – be on your guard. Don’t download applications you’re not absolutely sure of which are distributed by email or SMS – they may be malicious
• Always download apps from the official application store: while these apps are still open to attack or infiltration, the official store is less likely to host malicious apps
• When using your smartphone at work – check and adhere to your IT policy!
• It’s recommended you do not:
o Synch your work calendar onto your personal mobile device
o Synch your work calendar onto your personal, web-based email or calendars
• Synch your work mobile device with your home PC

Web: http://www.symantec.com/connect/blogs/droid-dreams-reoccurring-nightmare-android-users

email

You may also like: