Security firms warn of increase in mobile malware and its increasingly regional nature

Feb 21, 2014 by Bob Yirka weblog
Credit: Lookout

(Phys.org) —Two separate security firms are reporting on two different trends regarding malware on mobile devices. One notes that there are more malware infected apps in the Google Play store than ever, and the other claims that malware makers are getting more sophisticated—they're tailoring their code by region.

RiskIQ is reporting that the number of apps in the Google Play store infected with has risen from 11,000 apps in 2011 to 42,000 last year. They also report that apps created to allow users to customize their devices are the ones most likely to be infected. The company has even pointed out three apps with malware that stood out from the others: Wallpaper Dragon Ball, Subway Surfers Free Tips and Finger Hockey. RiskIQ also reports that their analysis of the Google Play store was done using custom software that is able to coax malware into revealing itself. They claim also that the percentage of malware infected aps found and removed by Google is declining—from 60 percent of infected apps in 2011, to less than 25 percent last year.

While the trend noted by RiskIQ might be alarming, it's worth noting that the overall number of apps in the Google Play store has also increased—by roughly the same percentage as infected apps—from 250,000 apps to close to a million, over the same time period. Thus, the percentage of apps infected has remained nearly fixed.

In other news, security company Lookout has posted a warning on its site claiming that malware makers are getting more sophisticated—they've begun tailoring malware to specific regions, unleashing infected apps in the places where they offer the biggest return. The regional differences, they note, occur because of different levels of security efforts aimed at stopping them. In Russia, for example, they say, 63 percent of downloaded apps are infected with malware, whereas in the U.S. it's just 4 percent. Because of that, Lookout says, malware makers are targeting different areas or countries differently. They say that malware in Europe, for example, is mostly of the chargware variety (where users are tricked into paying for an app or service). Malware in the U.S. on the other hand is increasingly focused on stealing user data, such as login ids. Lookout is basing its claims on an analysis it made using user feedback from 50 million of its own users

Explore further: Wisdom of app stores: Early identification of malicious Android apps from Google Play

More information: Lookout report: blog.lookout.com/blog/2014/02/… are-made-to-measure/
RiskIQ report: www.riskiq.com/company/press-r… ve-spiked-nearly-400

add to favorites email to friend print save as pdf

Related Stories

Android users get malware with their apps

Mar 02, 2011

(PhysOrg.com) -- As new platforms make their way into the market there will always someone who is looking to exploit them for illegal or unethical ends. More proof of that fact has come today when Google was ...

Surge in mobile network infections in 2013, says report

Jan 29, 2014

Alcatel-Lucent today released new data showing that security threats to mobile devices continues its rapid rise, infecting at any time more than 11.6 million devices and putting their owners at increased risk for stolen personal ...

Phone charger can place user on malware alert

Oct 06, 2013

(Phys.org) —More smartphones, more smartphone apps, and more busy smartphone users downloading apps have become attractive magnets for malware agents. A new category has grown up, not just general malware ...

Malware on Yahoo ads turned user PCs into bitcoin miners

Jan 10, 2014

(Phys.org) —Yahoo, has acknowledged that its service sites were used by hackers to enslave massive numbers of ordinary PCs who did so to generate bitcoins, and by extension, real earnings. Ads were placed ...

Recommended for you

CloudFlare tackles lost SSL key risk with Keyless SSL

Sep 19, 2014

Organizations looking for and concerned about optimal security protection are the targets of a new service announced by San Francisco-based CloudFlare. The offering is called Keyless SSL. CloudFlare explained ...

When does Google hand over your data to governments?

Sep 19, 2014

Governments around the world want to know a lot about who we are and what we're doing online and they want communications companies to help them find it. We don't know a lot about when companies hand over ...

User comments : 0