According to a new report, Kaspersky Lab researchers have seen the number of attacks using malicious mobile software nearly double in just one year, with 116.5 million attacks observed in 2018, compared to 66.4 million in 2017. Despite more devices being attacked, the number of unique malware files has decreased, leading researchers to conclude that the quality of mobile malware has become more impactful and precise.
The channels through which malware is delivered is a key component of the success of modern threat campaigns. As dependence on mobile devices grows, both for business users and consumers, cybercriminals are paying more attention to mobile as an attack vector. Cybercriminals have steadily been increasing their use of mobile malware, aiming to take advantage of those who do not have security solutions installed on their phones.
The success of mobile distribution strategies is not only evidenced by an increase in attacks, but also by the number of unique users that have encountered this kind of malware. In 2018, the number of unique users facing mobile malware rose to 9,895,774 affected, an increase of 774,000 over the previous year.
Among the threats encountered, the most significant growth was in the use of Trojan-Droppers, whose share almost doubled, rising from 8.6 per cent of malware observed in 2017 to more than 17 per cent in 2018. This type of malware is designed to bypass system protection and from there, deliver all kinds of malicious files, from banking Trojans to ransomware.
“In 2018, mobile device users faced what could have been the fiercest cybercriminal onslaught ever seen,” said Viсtor Chebyshev, security expert at Kaspersky Lab. “Over the course of the year, we observed both new mobile device infection techniques, such as DNS hijacking, along with an increased focus on enhanced distribution schemes, like SMS spam. This trend demonstrates the growing need for mobile security solutions to be installed on smartphones – to protect users from device infection attempts, regardless of the source.”
BA, Marriott Face Massive Fines For Data Loss
If proof was needed that poor data protection is bad for the corporate wallet, two examples have demonstrated that substantial fines face those organisations that have lax data security.read more
Cumbria First Police Force To Utilise NMC Tools
Cumbria Constabulary has become the first police force to use the National Management Centre (NMC) for cybersecurity set up under the National Police Chiefs’ Council (NPCC).read more
Phishing Attacks Bypassing 2-Factor Authentication
Penetration testers and attackers have a new tool in their arsenal that can be used to automate phishing attacks in a way that defeats two-factor authentication (2FA) and is not easy to detect and block, reports CSO Magazine.read more
Third of Breaches Caused By Unpatched Vulnerabilities
IT security professionals have admitted that a third of cybersecurity breaches are the result of vulnerabilities that they should have patched.read more