Malware Threatens 5 Percent Of Android And iPhones

One in 20 Android mobiles and iPhones will be infected by financial malware and Trojans within the next 12 months, according to security company Trusteer.

As smartphones grow in popularity, fraudsters are increasingly researching iOS and Android for vulnerabilities, said Trusteer CEO Mickey Boodaei. Many have effective exploit kits which can automate this process, and carry out large scale operations which compromise websites and force them to distribute malware.

“In my opinion, this all leads to one conclusion – we are about to face one of the worst security problems ever and it won’t be long before we do,” said Boodaei.

Jailbroken iPhones

While iOS – the operating system that runs on iPhones, iPads, and iPods – is fairly secure, many users choose to ‘jailbreak’ their devices, in order to run applications that are not on the App Store. This makes them much more vulnerable to attack – as the recent Jailbreakme.com hack proved.

Last week, a team of hackers working on software to jailbreak the iPhone uncovered zero-day vulnerabilities in several versions of Apple’s iOS, that allowed malware to be transferred from infected PDFs onto devices, allowing criminals to access confidential data.

“This recent vulnerability is not the first which allows fraudsters to compromise iOS devices and it won’t be the last,” said Boodaei. “Fraudsters will continue to research iOS and discover more vulnerabilities which will allow them to compromise devices and commit fraud. I hope I’m wrong, but a year from now this can become so common that it will not even hit the news.”

Weak Android security

Meanwhile, Trusteer reckons that Android’s security architecture is so weak that building a powerful fraudulent Android application that steals and abuses the user’s identity and their bank account details is “almost trivial”. Because the Android Market is by its nature open, distributing malicious applications is relatively easy.

Several malicious applications have already been identified on the Android Market and, although Google removes this malware as quickly as it can, more keep coming. Trusteer claims to have identified malicious applications on the Android Market in the past which have stayed there for weeks before being taken off by Google.

“In order to take down an applications in Google Market we actually had to use contacts within Google which are not available to the average user,” said Boodaei. “The process of identifying and removing malicious applications from the Android Market requires major improvements.”

Trusteer highlights and occasion earlier this year when Man in the Mobile (MitMo) malware was ported onto Android devices. The malware took over the user’s online bank account and injected fraudulent transactions on behalf of the user.

Sophie Curtis

Recent Posts

Ericsson To Cut 1,200 Jobs in Sweden Amid ‘Challenging’ Market

Swedish telecoms giant Ericsson blamed “challenging mobile networks market” and “further volume contraction” for job…

17 hours ago

FTX’s Sam Bankman-Fried Sentenced To 25 Years In Prison For $8bn Fraud

Dramatic downfall. Sam Bankman-Fried sentenced to 25 years in prison for masterminding $8bn fraud that…

18 hours ago

Elon Musk Orders FSD Demo For Every Tesla US Sale

Fallout avoidance? Tesla buyers in the US must be shown how to use the FSD…

18 hours ago

Amazon Pumps Another $2.75 Billion Into Anthropic

Amazon completes its $4bn investment into AI firm Anthropic, after providing an additional $2.75bn in…

20 hours ago

The Sustainability of AI

While AI promises unparalleled efficiency, productivity, and innovation, questions regarding its environmental impact loom large.…

23 hours ago

Trump’s Truth Social Makes Successful Market Debut

Shares in Donald Trump’s social media company rose about 16 percent after first day of…

23 hours ago