Tag: kaspersky lab

Mobile security issues are still threatening smartphone banking

Trojans and other threats continue to be a serious concern when it comes to money matters over cell phones.

Kaspersky Lab, the online and mobile security company, has now released its most recent quarterly report on its analysis of the evolution of threats that consumers were facing during the third quarter of 2015.

The analysis involved the detection of more than 300,000 new mobile malware programs.

That considerable figure represented an increase of 10.8 percent over the number of threatening mobile security programs that were detected in the second quarter. The primary technique that was used in order to profit from the mobile threats was the display of intrusive ads to consumers on their smartphones and tablets. Adware has seen a growing trend over the mobile channel and in this most recent report, it represented over half of all threats that were detected for these devices during the third quarter.

The report also described the different types of mobile security attack methods most commonly used.

Mobile Security - Mobile BankingFor instance, some types of mobile cyber attack involve the use of super-user privileges (that is, root access) in order to hide the fact that they are present within the systems folder. This makes them much tougher to spot and overcome. At the same time, the report noted that the number of SMS Trojans have been falling. In fact, during the third quarter, they made up only 6.2 percent of the threats that were detected.

Though mobile banking threats had seen somewhat of a reduction, they remain a serious concern. During the second quarter, there had been 5.9 million notifications, whereas the third quarter saw 5.68 million notifications. The decrease was definitely there, but at the same time, it was not great enough to be able to say that the problem is any less serious.

Kaspersky Lab Solutions reported blocking nearly 636,000 attempts to launch types of mobile security threats such as malware that would be able to steal money by way of the device user’s online banking. That figure was 17.2 percent smaller than it had been the quarter beforehand. Mobile banking Trojans were most likely to occur in Austria.

Mobile security policies in place at only 14 percent of businesses

The majority of companies have not fully implemented a policy for the use of wireless devices.

According to the results of a study that have recently been released, only 14 percent of companies have put a fully developed mobile security policy into place for their computer networks.

At the same time, the number of threats and incidents within that environment are rapidly rising.

Furthermore, the study also discovered that the majority of the companies that do not have mobile security policies in place also have no intention of limiting the use of personal smartphones and tablets for work-related purposes. The research in question was the Global Corporate IT Security Risks 2013 study From B2B International, which was conducted among businesses worldwide, this spring, in collaboration with Kaspersky Lab.

B2B International’s statement about the mobile security study was that many companies had experienced data leaks.

Mobile Security policiesIt revealed that among the respondents of the survey by B2B International, 6 percent of the companies had experienced a mobile security data leakage of confidential information at least once within the previous 12 months. Though this may represent an increase of only 1 percent over the figures from 2012, the attacks on smartphones and tablets led to a larger number of critical data leaks than any of employee fraud (at 4 percent), phishing attacks (at 5 percent) or corporate espionage (at 3 percent).

According to the release regarding the study’s results, “The reason is obvious; more mobile devices – smartphones and tablets – are being used at work on a daily basis. These devices are also often owned by the employees themselves, and so are used for personal as well as business purposes.”

It also pointed out that while the ability to add both corporate and personal data (such as apps and contact lists) on a single device is highly convenient, it also means that there is a considerably higher mobile security risk to the business. Almost 65 percent of the participants in the survey admitted that they allowed their workers to bring their own devices (also known as bring your own device – BYOD – where workers use their own personal smartphones and tablets for work purposes). This is clearly a growing threat to corporate IT infrastructure security when the fact that no protection policies have been put in place.