How serious is the mobile malware threat to businesses?

27 April 2022
| No comments
How serious is the mobile malware threat to businesses?
Advertising

Share post

Mobile malware is a growing threat to businesses. The number of attackers who have diversified their tools to attack mobile targets in addition to desktop targets has increased significantly. There are mutliple reasons for this. An analysis of Lookout.

Certain categories of malware, such as ransomware, have proven successful in attacking non-mobile infrastructure. Attackers are now hoping for financial gains by targeting a user base that often does not expect to be targeted by mobile "locker" or ransomware applications. While mobile ransomware does not directly affect corporate infrastructure, it can affect employees' access to corporate resources on their devices.

Advertising

Mobile ransomware

Surveillance malware offers attackers a more reliable way to gather sensitive information about a company or its employees. This information can be used to launch sophisticated spearphishing attacks against corporate infrastructure or resources, even if they are not accessible from a compromised employee's device. In general, more and more employees are using mobile devices to connect to corporate infrastructure when working remotely. This increasing reliance on mobile devices for work—and even for personal errands like banking—offers a wider attack surface for attackers.

Listen and spy on smartphones

If smartphones play a bigger role in accessing accounts (2FA, using authentication apps), will they become a bigger threat to the business? This is to be expected, yes. Greater reliance on mobile devices for work and access to accounts gives attackers a wider attack surface. Many users also use their mobile devices for personal applications and are not necessarily as adept at preventing attacks or keeping up to date with important security updates. As a result, attackers often see mobile devices as a way to move laterally to collect sensitive data from other accounts or applications installed on the victim's device.

Advertising

Subscribe to our newsletter now

Read the best news from B2B CYBER SECURITY once a month



By clicking on "Register" I agree to the processing and use of my data in accordance with the declaration of consent (please open for details). I can find more information in our Privacy Policy. After registering, you will first receive a confirmation email so that no other person can order something you don't want.
Expand for details on your consent
It goes without saying that we handle your personal data responsibly. If we collect personal data from you, we process it in compliance with the applicable data protection regulations. Detailed information can be found in our Privacy Policy. You can unsubscribe from the newsletter at any time. You will find a corresponding link in the newsletter. After you have unsubscribed, your data will be deleted as soon as possible. Recovery is not possible. If you would like to receive the newsletter again, simply order it again. Do the same if you want to use a different email address for your newsletter. If you would like to receive the newsletter offered on the website, we need an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data is not collected or only collected on a voluntary basis. We use newsletter service providers, which are described below, to process the newsletter.

CleverReach

This website uses CleverReach to send newsletters. The provider is CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany (hereinafter “CleverReach”). CleverReach is a service that can be used to organize and analyze the sending of newsletters. The data you enter for the purpose of subscribing to the newsletter (e.g. email address) will be stored on the CleverReach servers in Germany or Ireland. Our newsletters sent with CleverReach enable us to analyze the behavior of the newsletter recipients. This can include It is analyzed how many recipients have opened the newsletter message and how often which link in the newsletter was clicked. With the help of so-called conversion tracking, it can also be analyzed whether a previously defined action (e.g. purchase of a product on this website) took place after clicking on the link in the newsletter. Further information on data analysis by CleverReach newsletter is available at: https://www.cleverreach.com/de/funktionen/reporting-und-tracking/. The data processing takes place on the basis of your consent (Art. 6 Para. 1 lit. a DSGVO). You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the revocation. If you do not want an analysis by CleverReach, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. The data you have stored with us for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and deleted from the newsletter distribution list after you have canceled the newsletter. Data stored by us for other purposes remain unaffected. After you have been removed from the newsletter distribution list, your e-mail address may be stored by us or the newsletter service provider in a blacklist if this is necessary to prevent future mailings. The data from the blacklist is only used for this purpose and is not merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR). Storage in the blacklist is not limited in time. You may object to the storage if your interests outweigh our legitimate interest. For more information, see the privacy policy of CleverReach at: https://www.cleverreach.com/de/datenschutz/.

Data processing

We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.

Annoying and dangerous adware

According to the latest Malwarebytes threat analysis, adware is the largest mobile malware category. Are there ways adware can pose a threat to the business? Adware can encompass a number of different functions beyond faking advertising revenue. For businesses that depend on mobile advertising, it costs a significant amount of money. More sophisticated adware can cripple devices, requiring a full factory reset of the device or preventing users from accessing corporate accounts and applications. Some adware can also sniff out more sensitive data about the user and their device as part of their campaigns. However, an adware family is unlikely to pose a serious threat to an organization in the same way that a surveillance application or ransomware sample would. However, it can disrupt devices or collect more data than necessary about a company's employees.

Future: Will mobile malware threaten businesses?

That is very likely. The pandemic has changed the way many of us work, and we're unlikely to reduce our reliance on mobile devices for that work. While people are increasingly understanding that their mobile devices are just as vulnerable to attacks as their desktop computers, there is still less knowledge about how to protect their devices and avoid compromise.

Mobile devices are basically the perfect espionage tool: they can collect sensitive data about a potential target, record passive audio recordings, photos and details about the victim's social network and are almost always connected to a network. These features we're leveraging are tempting to attackers looking for details on sophisticated spear phishing attacks. They can also prove useful in an attempt to compromise or access corporate infrastructure when accessed from an employee device. As we increasingly rely on mobile devices for work and personal life, threat actors will continue to diversify their malware to exploit this dependency.

More at Lookout.com

 

About Lookout

Lookout co-founders John Hering, Kevin Mahaffey, and James Burgess came together in 2007 with the goal of protecting people from the security and privacy risks posed by an increasingly connected world. Even before smartphones were in everyone's pocket, they realized that mobility would have a profound impact on the way we work and live.

 

Matching articles on the topic

Over 130.000 data breaches in Europe in 2024

In the 15 European nations, there were over 2024 data breaches every day in 365, according to the results of a recent analysis. In Germany ➡ Read more

DDoS attacks: the most important means of cyber warfare

In the second half of 2024, there were at least 8.911.312 DDoS attacks worldwide, according to the results of a recent DDoS Threat Intelligence Report. ➡ Read more

Cybercrime: Russian-speaking underground is leading

A new research report provides a comprehensive insight into the Russian-speaking cyber underground, an ecosystem that has fueled global cybercrime in recent ➡ Read more

Iran, North Korea, Russia: State hackers rely on ClickFix 

State-sponsored hacker groups are increasingly adopting new social engineering techniques originally developed by commercially motivated cybercriminals. ClickFix, for example, is now increasingly ➡ Read more

TA4557: Venom Spider targets HR departments

TA4557, better known as Venom Spider, is increasingly exploiting phishing and trying to deploy its backdoor malware. The focus of the ➡ Read more

Cyber ​​Resilience Act: Companies should act now

The Cyber ​​Resilience Act (CRA) is coming in leaps and bounds. This means that manufacturers will soon no longer be able to ➡ Read more

Use of AI/ML tools increased by 3000 percent

AI/ML tools are popular, according to the findings of a recent threat report. However, their increased use also brings with it security risks. Cybercriminals ➡ Read more

Vishing: Criminals rely on voice phishing attacks

Using AI-generated deepfakes, cybercriminals imitate trusted voices. Vishing exploded in the second half of 2024, according to the results of a ➡ Read more

Stories
, , , , ,