Slashdot Mirror

← Back to Stories (view on slashdot.org)

Will 2011 Be the Year of Mobile Malware?

Posted by CmdrTaco on from the predictions-makes-me-yawn dept.

alphadogg writes "Perhaps one of the most common predictions of the last six years has been that mobile malicious software will suddenly proliferate, driven by widespread adoption of smartphones with advanced OSes. None of those prognostications has really come to fruition, but it's likely that the coming year will bring a host of new malicious applications. Users — while generally aware of threats aimed at their desktop computers and laptops — have a good chance of being caught flat-footed with their mobile phones. In the third quarter of this year, up to 80 million smartphones were sold around the world, which accounted for about 20 percent of the total number of mobile phones sold, according to statistics published last month by analyst firm Gartner. Experts say the threats against those devices are going to come in several categories, including rogue applications. In September, researchers from security vendor Fortinet discovered a mobile component for Zeus, a notorious piece of banking malware that steals account credentials. The mobile component, which targeted Symbian Series 60 devices or BlackBerrys, intercepted one-time passcodes used to verify transactions."

3 of 111 comments (clear)

  1. Re:None have come to fruition? by jeffmeden · · Score: 5, Informative

    What we don't have is people focused on finding, removing, and spouting a product yet like Norton/McAffee/AVG/whatever.

    Oh we don't, do we?

  2. DIE by mark72005 · · Score: 4, Funny

    do you know how hard I worked on my Angry Birds scores?

  3. Re:Not really by Abcd1234 · · Score: 4, Interesting

    Mobile phones (OS) don't have any form of autorun

    So?

    You cannot run .exe/.cmd/.com/.lnk attachment from e-mail

    Correct. On the iPhone, you just had to visit a *website*, ffs.

    Seriously, this statement is beyond short-sighted. It's one zero-day vulnerability from being completely false.

    A lot of users still ... don't ever install a single extra app

    Again, who cares? All you need is a hole in one of the stock apps, and voila, users are hosed. Moreover, given how slow mobile phone operators are in updating the OSes on their network (the Android situation being the most obvious), a vulnerability like that could be a) near universal, and b) very slow to close.

    Unless Apple/Google becomes careless it's hard to believe that malware authors can (frequently) penetrate their app stores

    See above. This point is, well, pointless.

    There is still some variety: iPhoneOS/Android/RIM/W7 so malware writers can hardly target all platforms at once - so outbreaks are hardly possible

    Please... you need only target one of those platforms to hit millions and millions of people. That's by far lucrative enough to make it worthwhile.

    Frankly, I think the only reason you haven't seen this yet is because most malware is directed at turning a machine into a zombie, something for which a mobile device isn't that useful. But the minute someone can, for example, break an iOS device or Android device and start snarfing passwords, it'll become a far more interesting target.