Android malware explodes







<!– Sign up for our Newsletters | –>
Sign up for our Newsletters |  
Email the Editor  | 
Print 

Malware targeting Google’s Android mobile operating system exploded in the last several months, its volume quintupling since July, Juniper Networks said today.

The rash of infected apps aimed at Android owners shows no sign of abating, said Dan Hoffman, Juniper’s chief mobile security analyst and a member of the company’s global threat centre.

“We’re seeing a mix of the traditional hacking community [working] on malware very similar to organized efforts on the PC side, as well as people who are just a little smart, the ’15-year-old kid crowd,’ who are able to hide some malicious content in an app,” said Hoffman in an interview today.

According to Juniper’s research, the number of Android malware samples — each defining a different piece of attack code, or a variant of one discovered earlier — increased by 472 per cent since July 2011. The bulk of that growth occurred in September and October.

“We’ve seen an exponential growth in Android malware over the last several months,” Juniper said in a blog post that accompanied Juniper’s recently-published mobile threat report.

The prime threat remains purposefully-malicious Android apps that are crafted by criminals, often pirated versions of legitimate applications, then planted in either Google’s official Android Market or in one of the scores of alternate download sites, which are especially popular in Asia — China in particular.

“That is very clearly the threat now,” said Hoffman, who added that the hackers’ strategy would likely continue indefinitely.

That’s because Google doesn’t control what apps can be installed on an Android mobile device, as Apple does with code-signing technologies for iOS apps, and so makes third-party app download centres possible. Nor does Google vet apps submitted to the Android Market.

Other security researchers have noted the same when they have found malicious apps in the Android Market or in unsanctioned e-stores.

At least three different waves of malware — in March, June and finally July — infiltrated the Android Market this year. The malicious apps were removed by Google only after they had been downloaded by an unknown number of users.

Page Navigation 1) Rash of Android infections show now signs of abating. – Page 1
2) More attacks appearing in Chinese app stores distributing Android. – Page 2

Next Page

Back

Article source: http://www.itbusiness.ca/it/client/en/home/News.asp?id=65010

View full post on National Cyber Security » Virus/Malware/Worms