Researchers measure smartphone malware infection rates

Apr 08, 2014

Researchers show that infection rates in Android devices at around 0.25 percent are significantly higher than the previous independent estimate. They also developed a technique to identify devices infected with previously unknown malware.

There is a steady stream of news stories and announcements about how many more new strains of Android appear in every passing year. Data showing infection rates in the real world has been hard to come by. There is a lot of data about the number of different malware samples discovered but not so much about the extent they are actually found in the wild. If smartphones are infected to the same extent as personal computers used to be, the resulting damage would be much more severe.

The few estimates that were out there vary greatly: ranging from more than 4 per cent of Android devices, according to an estimate by an anti-virus company, to less than 0.0009 per cent of smartphones in the US, according to a different estimate by group of academic from the US.

What is the reason for this disparity?

University of Helsinki researchers working at the Intel Collaborative Research Institute for Secure Computing (ICRI-SC) will present a paper at this year's World Wide Web conference which provides an answer to this question based on their work in the "Malware Insights" project.

The project team, consisting of Hien Truong, Eemil Lagerspetz, Sourav Bhattacharya, and Petteri Nurmi working under the guidance of Professor N. Asokan and Professor Sasu Tarkoma have been investigating the true extent of malware infection in Android devices. Working with Adam J. Oliner from the UC Berkeley AMP Lab, they discovered that in Android devices at around 0.25 per cent are significantly higher than the previous independent estimate. The project collected anonymized data from over 50 000 devices during a seven-month period.

An arXiv research report based on the work being done at the "Malware Insights" project at the department of Computer Science, has been featured in MIT Technology Review's "Emerging Technology From the arXiv" section.

The researchers also speculated that smartphones infected with malicious apps may have other, benign, apps in common, possibly because the users purchase them all from the same app market. Based on this conjecture, the researchers investigated if it is possible to develop a technique to identify devices infected with previously unknown malware. In their dataset, this approach is up to five times more likely to identify infected devices than by choosing devices at random.

The Malware Insights project is part of the research being done at the Intel Collaborative Research Institute for Secure Computing (ICRI-SC).

Explore further: Security firms warn of increase in mobile malware and its increasingly regional nature

More information: arxiv.org/abs/1312.3245

add to favorites email to friend print save as pdf

Related Stories

Surge in mobile network infections in 2013, says report

Jan 29, 2014

Alcatel-Lucent today released new data showing that security threats to mobile devices continues its rapid rise, infecting at any time more than 11.6 million devices and putting their owners at increased risk for stolen personal ...

Fighting the rise of the app attackers

Feb 26, 2014

Researchers have been given a share of £3 million by the Engineering and Physical Sciences Research Council (EPSRC) to counter cyber-criminals who are using malicious apps which can collude with each other to infect the ...

UN atomic agency suffers 'malware' attack

Oct 22, 2013

The UN atomic agency said Tuesday that some of its computers were infected by malicious software, in its second embarrassing IT slip-up over the past year.

Recommended for you

Designing exascale computers

Jul 23, 2014

"Imagine a heart surgeon operating to repair a blocked coronary artery. Someday soon, the surgeon might run a detailed computer simulation of blood flowing through the patient's arteries, showing how millions ...

User comments : 0