IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Android and iPhone malware attacks incoming

The smartphone security wars are coming, at least according to one industry expert.

Android

Five per cent of all Android and Apple iPhones will be infected with malware in 2012, a security expert has predicted.

Many security companies have been predicting the imminent spike in mobile attacks, yet cyber criminals have thus far been unable or unwilling to cause serious harm.

Nevertheless, Trusteer chief executive (CEO) Mickey Boodaei said he expects one in every 20 Android mobiles and iPhones will be infected by financial malware and Trojans within the next 12 months.

"Fraudsters have all the tools they need to effectively turn mobile malware into the biggest customer security problem we've ever seen. They are lacking just one thing - customer adoption," he said.

"The number of users who bank online from their mobile devices is still relatively low. Additionally, transactions are not yet enabled for mobile devices on many banks' websites. Since online fraud is mostly a big numbers game, attacking mobile bankers is not yet an effective fraud operation."

Android an ideal target?

Android has had some security scares already, in particular when a host of Trojanised apps appeared on Google's official mobile app marketplace.

Boodaei suggested Google's architecture was not prepared to deal with the incoming slew of smartphone security threats.

"Android's security architecture is not currently up to the challenge Building a powerful fraudulent Android application that steals and abuses your identity and your bank account is almost trivial," he said.

"Distributing these applications on the Android Market is even more trivial. There are no real controls around the submission process that could identify and prevent publishing malicious applications on these stores. Compared to Apple's App Store, Android Market is the Wild West."

At the time of publication, Google had not offered a response to Boodaei's claims.

iOS didn't' escape Boodaei's scorn either, even though he admitted it wasn't as simple to create malicious apps.

The main flaw in the Apple system comes through jailbreaking, as highlighted by other security pros last week with the latest JailBreakMe release.

"Unfortunately many users jailbreak their devices as they want to run all sorts of applications that are not on the App Store," he added.

"But what's more unfortunate is that vulnerabilities in iOS could allow malicious websites to jailbreak a device and infect it with malware without the user's consent or knowledge."

Featured Resources

Four strategies for building a hybrid workplace that works

All indications are that the future of work is hybrid, if it's not here already

Free webinar

The digital marketer’s guide to contextual insights and trends

How to use contextual intelligence to uncover new insights and inform strategies

Free Download

Ransomware and Microsoft 365 for business

What you need to know about reducing ransomware risk

Free Download

Building a modern strategy for analytics and machine learning success

Turning into business value

Free Download

Recommended

Three lessons the iPod can teach us about disruption
Technology

Three lessons the iPod can teach us about disruption

11 May 2022
Best smartphone 2022: The top handsets from Apple, Samsung, Google and more
Mobile

Best smartphone 2022: The top handsets from Apple, Samsung, Google and more

8 Apr 2022
IT Pro News In Review: The Works cyber attack, Lenovo recruitment drive, old macOS vulnerabilities
cyber security

IT Pro News In Review: The Works cyber attack, Lenovo recruitment drive, old macOS vulnerabilities

8 Apr 2022
Apple’s Business Essentials opens up to all US small businesses
SMB

Apple’s Business Essentials opens up to all US small businesses

4 Apr 2022

Most Popular

Windows Server admins say latest Patch Tuesday broke authentication policies
Server & storage

Windows Server admins say latest Patch Tuesday broke authentication policies

12 May 2022
Costa Rica declares state of emergency following Conti ransomware attack
ransomware

Costa Rica declares state of emergency following Conti ransomware attack

10 May 2022
16 ways to speed up your laptop
Laptops

16 ways to speed up your laptop

13 May 2022