Report: Mobile Use of Social Networking Becoming Preferred Way to Infect Mobile Devices

  • May 02, 2012

AVG Technologies recently released its Q1 2012 Community Powered Threat Report. The report highlights the growing use of mobile devices to connect with social networks and how this is fast becoming a preferred method for cyber criminals to spread malware, particularly on those devices running Android.

Yuval Ben-Itzhak, Chief Technology Officer at AVG, said: “We detected a big increase in the use of social networks such as Facebook and Twitter to target Android users. Cyber criminals are finding it very convenient to distribute their malware straight to a mobile device via these networks. The growth of the Android platform has been phenomenal, which has not gone unnoticed with cyber criminals who have discovered it to be a lucrative target for their malware. In 2011, Google had to remove over 100 malicious apps from the official Android market, Google Play.”

Social networks have become a key source of information and communication. Twitter now has more than 140 million active users; and Facebook has more than 845 million users, with some analysts expecting that figure to reach 1 billion this year. The result: targeting those who use Facebook is like targeting around 14 percent of world’s population or approximately 43 percent of global internet users.

Consider also that there are more than 300 million Android phones already activated, with more than 850,000 Android phones and tablets added to that number each day, and it is clear these two trends combined result in a new threat: infecting Android devices using social networks.

Most mobile devices are tied into operator billing systems making monetization of malware a lot more effective than on traditional computer systems. All the attackers need to do is trick users to install a malicious app on their device through which they can then gather cash using the phone companies’ billing systems by utilizing premium SMS services. In many cases, this is done by charging low amounts on an infrequent basis so users don’t even notice.

The Q1 2012 Community Powered Threat Report includes examples of this:

On Facebook, all it takes for a cyber criminal to attack is to set up a fake profile which downloads malware to a device and randomly invite Facebook users.

On Twitter, a cyber criminal creates a spam profile and then posts tweets containing shortened hyperlinks to malware using trending hashtags. The way in which Twitter works makes sure the tweet appears on the top of many people’s Twitter feed.

Featured

  • Live From ISC West: Day 2 Recap

    If it’s even possible, Day 2 of ISC West in Las Vegas, Nevada, was even busier than the first. Remember to keep tabs on our Live From ISC West page for news and updates from the show floor at the Venetian, because there’s more news coming out than anyone could be expected to keep track of. Our Live From sponsors—NAPCO Security, Alibi Security, Vistacom, RGB Spectrum, and DoorKing—kept the momentum from Day 1 going with packed booths, happy hours, giveaways, product demonstrations, and more. Read Now

    • Industry Events
    • ISC West

  • Visiting Sin City

    I’m a recovering alcoholic, ten years sober this June. I almost wrote “recovered alcoholic,” because it’s a problem I’ve long since put to bed in every practical sense. But anyone who’s dealt with addiction knows that that part of your brain never goes away. You just learn to tell the difference between that insidious voice in your head and your actual internal monologue, and you get better at telling the other guy to shut up. Read Now

  • On My Way Out the Door

    To answer that one question I always get, at every booth visit, I have seen amazing product technology, solutions and above all else, the people that make it all work. Read Now

    • Industry Events
    • ISC West

  • Return to Form

    My first security trade show was in 2021. At the time, I was awed by the sheer magnitude of the event and the spectacle of products on display. But this was the first major trade show coming out of the pandemic, and the only commentary I heard was how low the attendance was. Two representatives from one booth even spent the last morning playing catch in the aisle with their giveaway stress balls. Read Now

    • Industry Events
    • ISC West
Most   Popular

Featured Cybersecurity

New Products

  • PDK IO Access Control Software

    PDK.IO Access Control Software

    ProdataKey now allows for "custom fields" within the interface of its pdk.io software. Custom fields increase PDK's solutions' overall functionality by allowing administrators to include a wide range of pertinent data associated with each user. 3

  • Tyco Kantech EntraPass security management software

    Tyco Kantech EntraPass security management software

    Johnson Controls, the global leader in smart, healthy and sustainable buildings, and architect of the Open Blue digital connected platforms, has released the newest version of the Tyco Kantech EntraPass security management software. 3

  • Unique Oversized ID Card Printer

    Unique Oversized ID Card Printer

    Idesco Corp. is announcing its card printer – the XCR100 2.0 printer- that allows customers to personalize oversized ID cards on demand. The printer is ideal for assisting healthcare organizations find the right badging solution. As healthcare facilities continue to combat the spread of COVID-19, issuing oversized ID cards has helped identify staff clearly while adding an extra layer of security. The XCR100 2.0 printer is the only dye-sublimation printer on the market that can personalize CR100 cards (3.88" x 2.63"). The cards that are 42% larger than the standard credit card size. The printer can produce up to 180 full cards per hour in color, and up to 1,400 cards per hour in monochrome. An optional flipper is available to print dual-sided badges in one pass. Contactless encoding comes as an option to help healthcare facilities produce secure access badges on demand and the card printer features a 2-year warranty. 3