Mobile Malware: Are You Exposed?

Category: Mobile , Security

I'm reading more about viruses and malware on mobile phones. My wife has an iPhone and I have a Droid. Should we be concerned enough to look into anti-virus or other security software for our smartphones? Or is it all hype at this point?

Do You Need Anti-Malware Protection for Your Smartphone?

Malware targeting mobile operating systems is on the rise. Security firm McAfee Labs says its count of mobile malware programs has risen from about 600 in 2009 to 1,200 in 2011. Mobile malware is just as sophisticated as its desktop brethren, too. "Mobile threats already take advantage of exploits, employ botnet functionality, and even use rootkit features for stealth and permanence," according to McAfee's most recent threat report.

Google Android was the target of 76 per cent of new mobile malware apps detected in the second quarter of 2011 (44 new malware apps, in raw numbers). Clearly, the fastest growing mobile operating system is also the fastest growing target for mobile malware authors. Java Micro Edition placed second with 14 new malware apps. Symbian was third, followed by Blackberry.
Mobile Malware

Notably, no iPhone or iPad malware has been detected yet. McAfee says, "It is probably a matter of 'when' rather than 'if.'" But the fact that Apple closely vets and controls the apps that make it into the Apple App Store undoubtedly makes it difficult for malware authors to sneak their wares in. Google's App Market, in contrast, does not pre-screen apps before they become available to users.

Who Benefits From Mobile Malware?

Mobile malware aims to make money, of course. One straightforward scheme is malware that secretly subscribes the infected device to premium SMS services; every text message sent or received costs the user money. This type of malware may be concealed in another app such as a calendar or game. Each time you add an appointment or kill a robot, a text message is added to your monthly bill. Other forms of mobile malware may log passwords, steal financial data, and so on.

As you might expect from the foregoing, there's a booming market for Android anti-malware solutions.

Lookout Mobile Security offers one called the Mobile Threat Network. App stores and download sites submit their apps to Lookout, which scans and tests them for suspicious behavior. When an app is identified as probable malware, all of the participating stores are notified and the app is pulled. Lookout also offers a free anti-malware app through the Android App Market.

All of the major security vendors are rolling out mobile anti-malware apps. Norton, McAfee, AVG, and Kaspersky are just a few well-known names. As mobile computing grows, so will mobile malware and mobile anti-malware.

But Do You Really Need It?

So do you need mobile anti-malware protection? If you have an iPhone, I'd say definitely not. One caveat to that would be "jailbroken" iPhones. If you hack your phone in order to enable downloading apps from sources outside of Apple's App Store, then all bets are off.

But what about those with Android or Blackberry phones? To the best of my knowledge, there are no mobile threats similar to the "drive-by viruses" that affect desktop users. So if your smartphone activity is centered on web browsing, and not apps, I don't see a risk that warrants anti-malware protection.

Well-known apps such as Facebook, Gmail, Yelp, Angry Birds, Kindle, Weather Channel and others with good reputations are safe to use. And I have not heard any reports about malware in any paid apps. Check for reviews before you download an app. But if you are the type who can't resist the latest game or productivity tool, then I'd say you run a significant risk.

To summarize, the danger zone for mobile users right now is free apps with unknown or sketchy reputations. Stay away from those and you should be safe. For now.

Your thoughts on this topic are welcome! Post your comment or question below...
Sign up now for AskBob Updates!

Boost your Internet IQ, keep up with the latest online trends... get your FREE subscription now!

Email:

Share this article with friends!


Posted by on 1 Sep 2011

Need More Help? Try the AskBobRankin Updates Newsletter. It's Free!
Prev Article:
Five Good Reasons to Trash Your Fax Machine
The Top Twenty 		Next Article:
How To Defeat a Keylogger

Link to this article from your site or blog. Just copy and paste from this box:

Most recent comments on "Mobile Malware: Are You Exposed?"

Posted by:

Jim
01 Sep 2011

Having Apple in control of Apps is a good thing. I'm glad I have an iPhone. Thanks for all your hard work Bob.

Posted by:

MmeMoxie
01 Sep 2011

I agree, that Apple takes a good look, at the apps that are used, to make sure that their customers are safe, as possible. The Android phones are a complete different 'bird'. Google tends to be in the 'open source' area, of computing, so it makes good sense to me, to 'cover' yourself, as much as possible.

I just got an Android smartphone & LOVE it!!! But, I had been reading your articles about all of the issues with Smartphones & one of the first apps that I got, was a Anti-Virus app. for it. Does it 'cover' Malware? I don't think so, but at least I do know when I download an app, that it is 'virus' free. For me, that is a good start in the battle of protection.

I use NetQin. First off, I noted that this company is in China. I was concerned, but then checked it out. I remembered when Spyware/Malware started & my concerns for Lavasoft, a company based in Germany. But, as I read more about Lavasoft, I realized that the best programs for protection, were the ones that were located in 'hacker threat' country. So, I thought OK to NetQin.

I can only say, so far, I have been quite satisfied. I got the 'Pro' version, for a reasonable price of $6.99 for 6 months. Rarely, do I pay for programs/apps, but I thought it was worth it.

Posted by:

Spencer Parkinson
01 Sep 2011

As a Symantec employee I think the advice regarding staying away from apps that are relatively unknown or have sketchy reputations is good, but users should also bear in mind that the majority of the mobile malware out there is actually Trojanized versions of legitimate apps. In other words, legitimate apps that have been cracked by hackers – adding malicious code in the process – then re-released either on third-party apps sites or even on official app markets. Usually, the original functionality of the app is left intact while the new malicious functionality goes completely unnoticed by users. The intention is to dupe users into thinking they are downloading the legitimate app, when they are actually getting the app plus malware. Though there have been many examples of this, here is a Symantec blog post on one this was particularly concerning: http://bit.ly/mZ1INI.

Spencer Parkinson
Symantec

Post your Comments, Questions or Suggestions

*     *     (* = Required field)

    (Your email address will not be published)
(you may use HTML tags for style)

YES... spelling, punctuation, grammar and proper use of UPPER/lower case are important! And please limit your remarks to 3-4 paragraphs. If you want to see your comment posted, pay attention to these items.

All comments are previewed, and may be edited before posting.

NOTE: Please, post comments on this article ONLY.
If you want to ask a question click here.

Free Tech Support -- Ask Bob Rankin
RSS   Add to My Yahoo!   Feedburner Feed
Subscribe to AskBobRankin Updates: Free Newsletter
Copyright © 2005 - Bob Rankin - All Rights Reserved
Privacy Policy -- See my profile on Google.

Article information: AskBobRankin -- Mobile Malware: Are You Exposed? (Posted: 1 Sep 2011)
Source: http://askbobrankin.com/mobile_malware_are_you_exposed.html
Copyright © 2005 - Bob Rankin - All Rights Reserved

 
Free
Newsletter
Get the FREE  "AskBob Updates" newsletter!       Email:    (Details)