Crowd strike researchers have prepared a report that analyzes malware and other mobile device threats. According to experts, attacks on smartphones have recently become much more difficult and dangerous. Previously, the main problem for smartphone and tablet users was clickjacking and adware. But now people are increasingly connecting their lives with mobile devices – they store important data, payment information, and the like there.
Cybercriminals are well aware of this and are developing new methods of attacking smartphones. The document (PDF) Crowd strike identifies five major modern Mobile Device Threat: remote access tools (RAT), banking Trojans, ransomware, crypto miners, and advertising click fraud. Also, as the sixth potential threat, the researchers noted legal commercial spyware (also called spouse ware or stalker ware). RAT programs are mainly used for espionage, which is often easier on mobile devices because the camera, microphone, and GPS chip are already built in.
Cyber Threats Feature
Once installed, such malware usually intercepts SMS messages, looking for tokens for multi-factor authentication. Since cross-platform RAT programs are difficult to develop and maintain, they are more common for heavily resourced government hackers. Mobile banking Trojans, whose capabilities are similar to RAT, are another cyber threat that is growing rapidly. A distinctive feature of this class of programs is the ability to overlay their windows on top of legitimate applications. Imagine: you enter your credentials or bank details, but an invisible malware window is superimposed on top of the official application of your bank. As an upshot, all the material you enter sprays into the arrows of cyber criminals. Ransomware and ransomware – these programs have also recently switched from desktops to mobile devices.
The Latest Modern Threat to Smartphone Users
Smartphone users are often helped out by cloud storage, which stores backup copies of files and the operating system, but attackers have come up with their working schemes here too – just completely block the device and demand a certain amount for unlocking it. Security experts also began to find malicious cryptocurrency miners on smartphones. Initially, the idea of mining on mobile devices may seem crazy – usually, such code is not at all optimized for smartphone processors. On the other hand, according to Crowd Strike, the sheer number of potential victim devices makes crypto mining a tempting endeavor.
It is predictable that in the upcoming all malware for mobile devices will be armed with removal scripts. This will be facilitated by minimal development requirements and a relatively low degree of risk. The latest modern threat to smartphone users – click fraud – is perhaps the least dangerous of all. The purpose of this method is to send hidden HTTP requests to advertising resources. According to experts, by 2025, click fraud will bring up to $50 billion.
Biggest Data Security Threats
If you’ve ever seen The Lord of the Rings, you’ll no doubt remember the turning point when the wizard Gandalf insistently whispers to Frodo, “Keep it a secret, keep it inoffensive.” He’s starting to that exasperating circle, of sequence, but the similar information smears to your processor, smartphone, and particularly your information. Keep them private, keep them safe.
Easier said than done, right? It sometimes feels like we’re living in the computer age equivalent of the Wild West, where devices and data are hacked, infected, and stolen with alarming regularity. Fortunately, with a little planning and strategy, you can avoid the latest security threats.
Stolen and Hacked Passwords
It seems like every couple of months we read another story about how hackers broke into a supposedly impenetrable database and escaped with thousands of user passwords. This may not seem important, but consider this: if you used the same password for your favorite online shoe store that you use for your bank, the hacker now has that password.
Computer users are notoriously bad at creating and managing passwords, so hackers can often guess or crack weak passwords, and thieves can use stolen databases. The solution is to use a super strong password, but never use the same password in different places.
Huge hassle? Not if you’re using a program like Dash lane or Last Pass, which can automatically generate super-secure passwords, organize them for you, and even log you into various sites so you don’t have to type them. Both offer surprisingly good free versions, but it’s worth paying extra (usually between $15-$40 per year) to get the premium features of these tools, including auto-sync mobile apps that keep your passwords close at hand.
Smartphone Malware
Almost everyone has a smartphone these days, which is why they are such a tempting target for hackers. From 2012 to 2013, mobile malware—malicious apps that infect smartphones and tablets—increased by 614%, according to a Juniper Networks report.
That’s a pretty staggering number, but iPhone users can relax a bit: Studies show that 92-97% of all known mobile malware appears on Android devices. And what does this malware do? In many cases, it sends scam “premium” text messages that can bring immediate profit to hackers using the phone and leave you with a huge bill from your carrier.
How to protect yourself? If you are an Android user, do not download apps from third-party app stores; stick to google play. Second, update your device to the latest available version of Android; most hacked phones have older versions installed. (If your phone is a couple of years old and can’t be updated, it’s time to consider a newer model.) Finally, when you install an app, pay attention to what personal and personal information it wants to access—and don’t. install it if you think you need too many interceptors for your data.
Anxiety in the Workplace
There is a fast-growing trend in today’s business world: BYOD, which means bringing your device. Mobile workers often bring their laptops and tablets to the workplace instead of relying on company-branded equipment. Theoretically, this is normal; the problem is that these devices are often outside the control of any office security system. Therefore, if you connect a virus-infected laptop to the office network, the virus can spread to others – and vice versa.
What’s more, when you connect your device to a public Wi-Fi hotspot (like your favorite coffee shop), you’re potentially exposing your data and passwords to hackers. This is easy to fix: use a utility (a popular choice is Hotspot Shield) that can create a VPN – a virtual private network – every time you connect to a network.
For other risks, check with your office’s IT manager to discuss policies that can help prevent BYOD risks. This could be something as simple as checking out new software before installing it, or it could require specialized security software. Either way, this is a problem that needs to be addressed.
Lost and stolen equipment.
Finally, there is the constant threat of loss or theft of a laptop, tablet, or phone. These devices are prime targets for thieves, partly because they are easy to steal, but also because they contain a wealth of potentially valuable data.
To keep your laptop safe, lock it first – literally. If you spend a lot of time working in coffee shops and other public places, spend a few dollars on a laptop lock that secures your system to a table leg or some other fixed point. Kensington is among the companies offering a variety of locks ranging in price from $25 to $75.
At the same time, consider installing a laptop recovery system such as Lack for Laptops, which can help you find the missing system and, if necessary, remotely lock or wipe it. This is the best way to teach the machine to “call home”.
