Mobile malware coming your way every day

August 24th, 2015 by Stephen Jones Leave a reply »

This is a summary of a blog post by Michael Canavan is the Vice President, Sales Engineering, Kaspersky Lab North America
That I feel is important enough to share.

Malware is a threat to all platforms not just to Windows devices.
The more popular the O/s the more it is targeted , and the more vulnerabilities are found.
Smartphones connect us with social media accounts, banking services, and retailers.
The important question for a mobile device is not just whether its operating system is secure, but whether it has an effective security patching strategy for when (not if) the latest malware eludes a device’s safeguards.
The mobile device market is dominated by two operating systems.
Android owned 81.5 percent of the market in 2014, compared to 14.8 percent for iOS
However, only Apple can patch its mobile operating system similar to the way desktop OS manufacturers patch security holes and shortcomings.
Android’s openness is a strength, but is also its greatest security weakness – Google doesn’t have the last say when distributing security updates and patches – the OEMs and service providers hold that power. Google is virtually powerless to stop malware from compromising an Android device, unless the program comes through the Play Store.
Controls that block the installation of unknown, third-party software are easily circumvented, which an easy means of attack for cybercriminals.
Mobile malware — 99 percent in fact —mainly targets Android devices.
The number and kinds of attacks of mobile malware are growing at a staggering pace,
In 2014, the number of mobile malware attacks against Android more than quadrupled, affecting about one in five Android devices.
When you consider that mobile devices now often store critical information – credit card numbers, online banking logins, etc. – and are more vulnerable to a host of attacks, it’s critical to defend devices against malware. Most users don’t get updates in time, or at all.
Users are installing unknown, third-party software and no controls (e.g., security software) in place to detect malicious apps or activity.
Complicating matters is Apple’s controls for iOS. It’s true that software sources are more tightly controlled through the App Store, but protection software is banned, and it’s unclear how often iOS devices are compromised.

In these days of BYOD this raises questions for the safety of your corporate systems.
If the mobile devices are provided by your company the you can restrict what is loaded by whom, enforce patching, control what sites are accesses us etc.
Ask us about mobile device management.


Leave a Reply

You must be logged in to post a comment.