MWC 2013 Mobile Security: Key Points

mobile world congressSecurity was a big theme at this year’s Mobile World Congress in Barcelona. Every major name was in attendance, touting their latest innovations for smartphones and tablets. But aside from promoting their products there were some very interesting points being made about the current state of mobile security around the world.

 Users don’t understand mobile security

This was one point made over and over by everyone we spoke to: a lack of awareness is allowing mobile viruses to propagate and opening users up to dangerous security breaches.

It took years for computer owners to understand that they needed to have anti-virus and that you shouldn’t just go clicking every attachment found in an email, and unfortunately mobile security right now is in the same state as PCs in the mid-90s.

Too many people are surprised to discover that anti-virus is even a possibility on a mobile phone, and users will blindly trust apps without taking the time to check permissions. Many don’t even have a PIN code or password protecting their phone – Norton Antivirus thinks this could be around 35% of users, but McAfee estimates it might be as high as 50%.

Security companies are trying to educate (of course, they want to sell software) but manufacturers could do a lot more to raise awareness.

 Android is the most popular target for viruses

Android is, unfortunately, the mobile platform most under threat from viruses and hackers.  There are two main reasons for this.Android is, unfortunately, the mobile platform most under threat from viruses and hac

First is popularity. Last year alone 144 million Android-powered devices were sold all over the world (compared to 43 million iPhones). That’s a huge, tempting target for nefarious types who want to create the biggest impact. And with so many of these Android phones being sold in developing countries or to kids and smartphone newcomers, the victims are more likely to fall prey to their tricks.

Secondly, Android is a much easier target. It’s not that it has a significantly higher number of exploits than other platforms, but its focus on openness and freedom means virus writers have other options for getting their malware onto an Android phone. Which leads to our next point…

images

Piracy and unofficial app stores pose a huge threat

These are two of the major avenues for distributing Android viruses.

By default an Android device will not allow you to install software from somewhere other than an official source, however this is simply an option in the settings menu. Disable that and you can ‘sideload’ by copying .APK installations to the device memory.

That’s why Android piracy is such an issue, but it doesn’t just pose a problem for developers having their hard work used for free – virus writers like to attach their code to pirated apps then send them out into the wild where they’ll be available on forums, file sharing networks and even pirate app stores. Users just think they’re getting something for free, not realising that there’s an unpleasant surprise hiding in the background.

App stores are another trouble spot. Google Play is the standard app store but there is nothing stopping third parties setting up their own, which is often what happens in places such as India and China where they do not fulfil the requirements for carrying Google Play.

Unfortunately these sources are often poorly curated so it’s very easy for viruses to slip in and end up on the phones and tablets of unwitting users who think they can trust the outlet.

Now this isn’t to say that viruses never appear on the iPhone, but with nothing other than the Apple App Store (and no way to install software) on unmodified iPhones this is not the issue it is with Android.

Author Bio: Matt Powell is the editor for the broadband, smartphone and tablet information site Broadband Genie. You can follow him on Twitter @broadbandgenie

Malware on Mobile Devices rockets by 163% in 2012.

malware A recent report on malware from mobile service provider NQ Mobile highlights that in 2012 malware threats on mobile platforms grew 163%.  This comprised of more than 65,000 identified distinct forms of app repackaging, malicious URLs and SMS phishing. 95% of all the attacks were geared towards Android devices which is normally seen as the platform of choice for malware.

Malware threats and more elaborate attacks are only likely to increase according to NQ. One of the more concerning malware attacks uses an Android device as a launch platform when connected to a computer via USB, enabling it to infect a far greater number of hosts. In a recent release, NQ Mobile co-CEO Omar Khans said that what’s needed is a system that can detect threats in advance of infection and prevent them, something that so far hasn’t really been widely available.

According to NQ Mobile’s report in excess of 32.8 million Android devices were infected in 2012, this is an increase of over 200% on 2012.  This figure does need to be put in to context in relation to the explosion in mobile devices over the course of the last year.  According to ABI Research there will be in excess of 798 million active Android devices by the end of 2013 compared to 300 million from early 2012.

The iOS platform does suffer from infection but on a much lower scale mainly due to the strict review process that all apps have to pass through before being allowed in to the App Store.  Some still do get through but mainly these are apps that are leaking more personal data than is strictly required for the app to operate.

www.appdevelopersuk.com have put together some handy tips that will help to protect your mobile devices from unwanted malware.

imgres

  • Before downloading apps make sure that they are from a reputable source.
  • Always be wary of downloading an app that has no user rating or poor user ratings.
  • Read the user reviews before downloading.
  • Popular apps are frequently cloned so make sure you are installing the app that originates from the company that developed the app in the first place.  If in doubt Google.
  • Be suspicious of tapping links in emails even if they are from friends.
  • Never click links from that are sent from unknown SMS senders.
  • If running an Android device look in to installing an anti virus app like AVG Mobile or Norton.