Android malware cases to hit 1 million in 2013
- 23 January, 2013 17:01
The number of distinct Android malware specimens detected will reach 1 million this year, predicts Trend Micro in its annual security roundup report, noting that the surge in Android malware has grown at a faster clip in three years than was seen in PC-based malware in its first 14 years.
"Last year we predicted the amount of Android malware to be at 125,000 and it actually ended up at 350,000," says Raimund Genes, CTO at Trend Micro, discussing the "Evolved Threats in a 'Post-PC' World" report that Trend released today. "Now we're predicting an additional 650,000 new pieces this year."
Considering it all in an historic context, Genes notes that the first Microsoft-based PC viruses were mainly "just to make fun of Microsoft," as a prank, joke or protest. The growth in the vicious form of cybercrime exploiting PCs for economic gain came much later. But Android malware from the beginning has been brazenly exploitative, such as sending spammy SMS messages to smartphones that incur costs to victims.
However, so far Android malware is not widely used in targeted attacks that are often intended to steal sensitive data, which are still mostly aimed at PCs, Genes points out, "But that could change."
The Trend Micro report contains information based on threat data aggregated by Trend through analysis aggregated through its Cloud-based sensors and customer network activity, among other sources. With much malware originating from websites these days, Trend says its analysis shows the top regional source of malicious URLs is the US at 23 per cent. But 56 per cent of malicious URLs have to be classified as "unknown" in terms of country. That's because the attackers setting up these malicious URLs are getting better at hiding their traces, Gene sayss.
Trend Micro also kept a running tab in 2012 of the social-engineering keywords used by attackers to reel in victims of their malware one way or another during 2012. In the early part of 2012, the phrases "law enforcement," "tax season," "London 2012 Olympics" and "Tibet," were most used to try and trick someone into downloading malware or opening malware-laden attachments, while in the second half of last year "iPhone 5," "World of Warcraft," "Christmas," and "Thanksgiving" were the top keyword lures.
Ellen Messmer is senior editor at Network World, an IDG publication and website, where she covers news and technology trends related to information security. Twitter: MessmerE. E-mail: firstname.lastname@example.org.
Read more about wide area network in Network World's Wide Area Network section.
Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.
Why change management doesn’t work
Larry Page wants to see your medical records
Dual-Persona Smartphones Not a BYOD Panacea
After two-year hiatus, EFF accepts bitcoin donations again
CIOs struggle to deliver timely mobile business apps: survey
Mobility Apps: What every developer should know
Learn how others have delivered industry-leading, multi-platform management and security solutions. In this whitepaper, we look how app developers can develop, deploy and manage apps that enterprises can rely on today and into the future. Click to download!
Endpoint Protection Overview
With the exponential growth and sophistication of malware today, the security industry can no longer afford to ‘bury its head in the sand’. The bottom line is that traditional endpoint security protection is now ineffective due to the sheer volume, quality, and complexity of malware. This paper looks at this problem and how Webroot, by going back to the drawing board on countering malware threats, is revolutionising endpoint protection and solving the issues that hinder existing endpoint security solutions. Download now.
Advanced Persistent Threats and Real-Time Threat Management
Businesses face a constantly evolving threat landscape. One of the greatest challenges is presented by advanced persistent threats (APTs), which are sophisticated, multi‐faceted attacks targeting a particular organisation. Mitigating the risk of APTs requires advances beyond traditional layered security to include real‐time threat management. This whitepaper describes the nature of APTs, the risks they pose to businesses, and techniques for blocking, detecting, and containing APTs and other emerging threats. Read now.