Mon, 17 Oct 2016 18:18:34 +0000

According to the 2016 Check Point Security Report, “Unknown malware downloads rose over 900% with more than 970 downloads per hour compared to 106 previously.” Why are attacks on mobile phones on the rise? Easy: most organizations and individuals have not bothered to take the time to proactively protect their personal data, like they do with their computers.

Mobile Phones a Target

Verizon’s 2015 Data Breach Investigations Report states that almost 90% of 2015 hacks used a vulnerability that has been in existence since 2002. Why are mobile phones becoming such a target? Consider all of the data that flows in and out of the typical mobile phone.

While not every company supplies its workforce with mobile phones, most employees carry one — and they may access company information, social networks, do a bit of web browsing, or download new apps from it during a typical workday.

These cellphones carry information for a slew of websites. They are typically always connected to the internet — and are capable of recording through audio and video. These kinds of extras are exactly what a thief is looking for. There’s a lot of information packed inside these phones and, for a high-profile target, personal, sensitive information can easily be obtained.

Lacking in Protection

Unlike desktop computers, mobile platforms don’t often possess anti-virus protection. There’s usually no sort of intrusion monitoring service. No one is performing frequent virus scans. At the same time, inexperienced developers are uploading apps that could make them easy to exploit. People use their phones everywhere, for everything, and download apps without thinking twice.

With chargeware and ransomware entering the scene, the problem can only escalate. So, a mobile phone could potentially be attacked, and that attack could go unnoticed for a significant period of time — all while data is being stolen right from under the mobile phone owner’s nose.

Part of the problem is the operating system bundled with some devices — it’s old, outdated, and may never be updated. Another part of the problem is deciding who needs to keep these phones protected. Should it be the responsibility of the network carrier or the operating system developer?

How To Protect Yourself

In a report from Alcatel and Lucent’s Kindsight Security Labs, it is stated that 15 million mobile devices are infected with malware. Consider that number for a moment. How safe is your Android cell phone?

Be proactive. Keep your cell phone safe while browsing the web. Install PSafe Total for advanced antivirus and malware protection. Let your phone stay safe and secure with PSafe.

]]>

Thu, 07 Jul 2016 19:04:17 +0000

The newest sensation sweeping European nations isn’t quite as fashionable as pantsuits or as tasty as flakey milk chocolate; it is a new piece of Android malware that is gaining ground in countries like Denmark, Italy, Germany, and Austria. This software takes over apps like Uber and Google Play by mimicking their familiar user interfaces and tricking users into inputting confidential information.

This malware functions by using a particular SMS phishing scheme that sends out links in SMS messages to trick recipients into installing it on their devices. These links have gotten increasingly more deceptive, as some messages are as simple as “We could not deliver your order. Please check your shipping information here.” After a user clicks on the given link he/she has, unknowingly, given the malware access to monitor and manipulate the device.

Once users have clicked on the link, the malware tracks which apps are used most frequently and which are running in the background. If one of those apps (usually WhatsApp, Uber or Google Play) is launched, the malware overlays a phishing page on top of it and then asks the user to input his/her information. The problem is, the overlay is often “nearly identical” to the original app so it can be very challenging for users to recognize. This overlay is very deceptive because the UI screen is only created when the app is launched, emulating the actual app’s appearance in real time. In this way, the malware can persuasively convince users to input confidential information which then gets sent to the C&C servers.

While mobile banking apps and other financial apps used to be targeted for access to credit cards and other monetary information, the malware is now mimicking more common apps like WhatsApp, WeChat, Uber, Facebook, and Viber. Because the malware is accessing more “benign” apps, people are less suspecting these apps will jeopardize their financial information.

Perpetrators have also used a number of URL shortening services that make the malware harder to detect. FireEye claims that the 30 shortened URLs used to direct users to the malware have been clicked more than 160,000 times. However, the use of these shorteners has made it possible for experts to establish how many different Android devices could possess the malware (Hint: It’s a lot).

Although this malware is adeptly bypassing Android’s security features, there are a few precautions you can take to make sure that your device is safe. The first is to simply make sure you’re not clicking on links that are from unknown sources or contain vague messages. Be cautious when opening any new text messages or emails. You can also download a supplementary security system, like PSafe Total, for extra assurance that your device is secure. PSafe Total can detect the newest types of malware and give your Android devices unparalleled protection against whatever cybercriminals have in store.

]]>

app malware – PSafe Blog