Report: 99 Percent of New Mobile Threats Target Android

← Back to Stories (view on slashdot.org)

Report: 99 Percent of New Mobile Threats Target Android

Posted by Soulskill on Wednesday April 30, 2014 @09:34AM from the not-the-market-share-you-want dept.

MojoKid writes: "Google's open source Android platform has the distinction of being the most popular mobile operating system in the world. That's great in terms of dominating the market and reaping the rewards that come with it, but it's also for that very reason that Android finds itself the target of virtually every new mobile malware threat that emerges. According to data published in F-Secure's latest Mobile Threat Report (PDF), over 99 percent of the new mobile threats it discovered in the first quarter of 2014 targeted Android users. To be fair, we're not taking about hundreds of thousands, tens of thousands, or thousands of malware threats — F-Secure detected 277 new threat families, of which 275 honed in on Android."

24 of 269 comments (clear)

Min score:

Reason:

Sort:

Market Share by presspass · 2014-04-30 09:42 · Score: 5, Funny

When Apple gets the market share that Android has, you'll see that Apple gets as many attacks as Android does.
1. Re:Market Share by BasilBrush · 2014-04-30 09:54 · Score: 4, Insightful
  
  Of course Apple used to be the market share leader. But Android also had most malware back then too.
  It has nothing to do with market share. It's about security. The difference is a single curated market for Apple, vs multiple markets and no curation for Android.
2. Re:Market Share by Anubis+IV · 2014-04-30 10:04 · Score: 4, Informative
  
  I keep seeing this line trotted out, but it only serves to distract from the real issue.
  What I've seen time and again from these reports over the last year is that it isn't about Android vs. iOS: it's about app stores. The Google Play store, for instance, has been the source of very few malware incidents (i.e. something like 2-3% of the total). Most of the malware hitting Android is coming from third-party stores that are of questionable trustworthiness. As always, users should be advised to only install software from sources they trust. If iOS allowed users to install from third-party stores without jailbreaking, we'd be seeing the same problems on iOS, regardless of their current marketshare or lack thereof (besides which, marketshare is a measure that shouldn't be used in isolation when assessing the worth of a platform's users to developers, including malware developers).
  So, please, stop painting this as an iOS vs. Android thing. Regardless of platform, the users being affected by this stuff, in general, are those grabbing apps from untrustworthy sources. Focus your attention there.
3. Re:Market Share by John+Bokma · 2014-04-30 10:20 · Score: 3, Interesting
  
  Feel free to provide those. But since it's roughly 50/50 in the USA why aren't the attacks in the USA also not 50/50? Or is the USA of no interest at all to malware writers? (I would say the opposite).
  
  --
  
  Perl Programmer for hire
4. Re:Market Share by tlhIngan · 2014-04-30 10:20 · Score: 3, Interesting
  
  What I've seen time and again from these reports over the last year is that it isn't about Android vs. iOS: it's about app stores. The Google Play store, for instance, has been the source of very few malware incidents (i.e. something like 2-3% of the total). Most of the malware hitting Android is coming from third-party stores that are of questionable trustworthiness. As always, users should be advised to only install software from sources they trust. If iOS allowed users to install from third-party stores without jailbreaking, we'd be seeing the same problems on iOS, regardless of their current marketshare or lack thereof (besides which, marketshare is a measure that shouldn't be used in isolation when assessing the worth of a platform's users to developers, including malware developers).
  So, please, stop painting this as an iOS vs. Android thing. Regardless of platform, the users being affected by this stuff, in general, are those grabbing apps from untrustworthy sources. Focus your attention there.
  The problem is, Google Play isn't available in a lot of places where Android is. Say China, for example.
  China's especially touching because the Chinese app stores are complete rubbish - full of pirated apps and Trojans and other crap.
  But even in North America or Europe, sticking with Google Play is limiting, because there are tons of legit app stores as well. Say, Humble Bundle or Amazon. But the problem is the checkbox is all or nothing - either you only use Google Play, or you allow everything.
  The problem with "let the user decide" is it ignores the ultimate reality of security - Dancing Pigs. Basically a user cannot be trusted with their own security - they will always choose the least secure path if it gets them what they want. So if their friend shows them a new app they have to install manually, well, they'll do it.
  Hell, even on iOS jailbroken users get broken into constantly. Because they install OpenSSH, usually because some HOWTO said to install it. There have been many iOS worms and Trojans that exploit the fact that if you can SSH into an iOS device, it's jailbroken so you can do many more things.
5. Re:Market Share by Anubis+IV · 2014-04-30 10:21 · Score: 2
  
  You're right. The way I should have phrased that is that it isn't about the security of the OSes themselves or their relative market shares, it's about the security of the stores from which the OSes procure their apps.
  That said, I'd be careful in how you refer to them. This isn't an OS issue, per se, so much as this is a platform or ecosystem issue. We're not talking about inherent weaknesses in the OSes themselves; we're talking about weaknesses in other parts of the ecosystem that can affect the OS.
6. Re:Market Share by John+Bokma · 2014-04-30 10:26 · Score: 3, Informative
  
  http://tabtimes.com/resources/... begs to differ. Or so it seems... And http://en.wikipedia.org/wiki/U...
  
  --
  
  Perl Programmer for hire
7. Re:Market Share by amicusNYCL · 2014-04-30 10:48 · Score: 3, Informative
  
  In the smartphone market, the US still comprises a decently large slice of the pie
  The US numbers show iOS at 42%, and Android at 51%. The worldwide numbers show iOS at 15.5%, and Android at 78.9%. So, there's your difference. Links stolen from above:
  http://www.comscoredatamine.co...
  http://www.engadget.com/2014/0...
  Those worldwide numbers are from 2013 though, so I expect that iOS would have continued to shrink over the past 4 months, there's no reason it would have gone up.
  
  particularly at the high end of the market where the more valuable users tend to reside.
  News flash: there are more high-end smartphones that run Android then there are that run iOS. Welcome to 2012.
  Saying that more malware targets Android than does iOS is the same as saying more targets Windows than MacOS. It's a market share issue, again.
  
  --
  "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
8. Re:Market Share by jo_ham · 2014-04-30 10:53 · Score: 4, Insightful
  
  no curation for Android
  Untrue. By default you have Play, Google's curated app store. You can install other app stores or side load, but the default is just Play.
  With great power comes great responsibility and all that. Besides which Apple's App Store isn't devoid of malware either, it's just a different kind of malware. My girlfriend is Chinese and there are a lot of Chinese apps, presumably not even visible in the western version of the store, that look extremely iffy. They ask you for random personal details, direct you to nasty looking web sites, and have masses of rip-off in-app purchases and pay-to-win scenarios.
  You realise if an Apple user tried to spin that line in a story where 99% of malware was targeted at iOS they would be down modded into the ground, right?
  "Here's tangible, documented proof of 99% of malware being on Android, but hey, some Chinese apps on iOS 'look a bit suspicious' so Apple is bad too!"
  Laughable. Truly laughable.
9. Re:Market Share by Mr+D+from+63 · 2014-04-30 12:07 · Score: 2
  
  I think if you've had an Itunes/store account for a while its no problem, but try creating a new one now so that you can just download free apps and they require a credit card or a gift card. There is a workaround but you'd never figure it out without googling around.. Apple certainly steers customers toward providing that card number.
10. Re:Market Share by Solandri · 2014-04-30 15:46 · Score: 3, Insightful
  
  Of course Apple used to be the market share leader. But Android also had most malware back then too.
  Apple was never the market share leader. The press just fawns over them like they were/are.
11. Re:Market Share by BasilBrush · 2014-05-01 01:39 · Score: 2
  
  The Google Play Store is checked for malware and things like that.
  Auto-running a virus checker on uploaded apps does not a curated app store make. Curation is a human activity.
  And Google Play is not free from malware. I've just been going through old Slashdot stories about mobile malware and most of the reports have been on Google Play (or The Android Market as it was previously known.). This notion that it's only the other stores that are a problem is false.
  
  But you know what? More power to them. At least they can pick other places to shop instead of Apple's one sure way or go to the highway.
  The freedom to have malware. One of the lesser known freedoms.
Re:They are not much different by MatthiasF · 2014-04-30 09:50 · Score: 4, Informative

Not even close.

Try 78% and 15%, in favor of Android.

http://www.engadget.com/2014/0...
Re:secure from what? by Penguinisto · 2014-04-30 10:08 · Score: 4, Interesting

fwiw, the NSA has owned all platforms, so it's not like iOS is invincible.
I strongly suspect that it has less to do with any flaws in either OS, than it does in the fact that iPhones get regular updates/patches/etc, whereas the vast majority of Android phones do not.
This is the one thing that Apple really should get props for - they go out of their way to ensure that, within reason, older iPhones get patched/updated along with the newest ones. Meanwhile, all but a relatively tiny fraction of (global) Android users buy models where neither carrier or manufacturer really give a damn if the phones they sell ever see a patch. I mean, seriously - the cheap/low-end Android phones can still be found coming out brand new with 2.2/2.3 installed on the damned things.
Until that paradigm changes, the massive majority of malware and hacks will target the obviously juicy (and mostly obsolete and/or unpatched) Android market.

--
Quo usque tandem abutere, Nimbus, patientia nostra?
Re:secure from what? by Anonymous Coward · 2014-04-30 10:12 · Score: 5, Funny

This is probably worse for iOS than being insecure.
Their marketshare has fallen so far it's not worth targeting them any more.
Speaking as an iOS user, I'm perfectly fine with you Android users getting all of the malware love. No really... you can keep all of it... I don't want any!
Re:No shit by MonkeyBoy · 2014-04-30 10:24 · Score: 2

This comment reminds me of the people on Apple Support Communities who insisted that FlashBack was not actually a thing, that it was not infecting any systems, anywhere, and it was all just a big myth created by AV companies to sell product.
Meanwhile I was spending a day each week clearing FlashBack off dozens of infected student systems because the kids were too &*(@#$ stupid to not whack the monkey or whatever stupid thing they did in order to get infected (and god help us if we didn't give them administrative privileges, you don't want to hear the caterwauling they make at the slightest hint of restrictions).
See, apparently I'm in the employ of AV companies and didn't know it. My bank account never noticed it either.

--
Moof!
Market Share /= Rewards by Grizzley9 · 2014-04-30 10:37 · Score: 2, Informative

That's great in terms of dominating the market and reaping the rewards that come with it,
Hmm, I guess you've not seen the $ that Androids competitors bring in directly and for their developers.
Re:secure from what? by cheesybagel · 2014-04-30 10:43 · Score: 2

the cheap/low-end Android phones can still be found coming out brand new with 2.2/2.3 installed on the damned things
BS
Re:secure from what? by sexconker · 2014-04-30 10:55 · Score: 2

A lot of the malware exists because people can sideload apps. I would rather continue being able to pirate apps than pay for them.
Fixed that for you, and the vast majority of Slashdotters.
Re:secure from what? by gnoshi · 2014-04-30 11:15 · Score: 2

the cheap/low-end Android phones can still be found coming out brand new with 2.2/2.3 installed on the damned things
BS
I was surprised, but you're right: when I looked at the pre-paid devices offered by several mobile providers, I didn't find any that were being sold with a pre-4.x OS version. It is no doubt still possible to buy old Android phones with old Android versions, but even cheap devices by Huawei and ZTE are now coming out with Android 4.x
Unfortunately, because manufacturers often provide very poor ongoing support for devices, a large number of devices already in the market will never be updated. In that way, I agree with the parent's parent: Apple can get props (relative to many Android device manufacturers) for providing relatively long term OS/security updates.
Re:secure from what? by ArmoredDragon · 2014-04-30 12:05 · Score: 2

Malware for Android is no different from malware for Windows or for OS X, the bulk of it is due to being able to run any code you want (where unless you wrote it you probably don't know what it does) and most people will just click through warnings about unsigned code, virtually none will ever vet any code ever.
Absolutely 100% incorrect. I don't think you understand android that well. Android will refuse to run unsigned apps - they MUST have a signature, though there is no certificate authority they have to go through. But, apps with differing signatures can't interfere with one another. This means that malware app A can't steal or inject information into facebook app B. However facebook app C can manipulate facebook app B if that's what the publisher who holds the keys wants it to do. You are free to alter these rules on your own if you'd like, either through rooting or putting your own signature on both APKs. Neither involves a simple warning that you have to click through; it's a rather manual process. This results in Android being inherently very secure by design.

The flip side of that is that on iOS you place all your trust in Apple to make sure that they vet code properly, by and large they do a pretty good job of that but that isn't to say they couldn't have a major slipup (in the style of goto-fail) in the future.
Wrong again; Apple already has made a major slipup. In fact they've made a few of them, the most recent being this one:
http://www.theguardian.com/tec...
And of course, that is only what's known. Apple users assume that everything they do is 100% secure once vetted by Apple, but they couldn't be more wrong. iOS has a "city wall" but no guards to maintain order inside of the gates. Anybody with any security background will tell you why this is a horrible idea, as opposed to a layered security model, which is what Android sticks to.
Generally if you live in a first world country, malware on Android isn't a problem in the slightest. Most first worlders don't sideload apps, except for pirates, power users, and developers. In third world countries, especially China, piracy is often the first choice for obtaining software rather than getting it through app stores. It's in these countries where the malware is common.
US users who buy antivirus software for Android are flat out wasting their money. Malware found on the Play store is removed from your device by play services when it is identified; so just by that alone you already have all of the malware protection you need. The only people who really need that are the ones who pirate their apps (and you can pirate safely, but it's inherently less safe to do so because you can't validate the original publisher's signature) however chances are if you already pirate your apps, you probably aren't terribly interested in paying for an antivirus app to begin with.
Nonetheless, what I said above won't stop companies like F-Secure from giving sensationalist figures like "99% of malware is aimed at android," because their product can't sell unless they're somehow able to scare their users into buying it. The same is true of ID theft services such as lifelock that don't actually do anything as well as ripoff home security services like ADT and Brinks.
Zero malware by john_uy · 2014-04-30 14:03 · Score: 2, Funny

I use Windows Phone and get 0% malware. The 1% goes to IOS.
Windows is indeed getting better. ;)

--
Live your life each day as if it was your last.
Re:secure from what? by tepples · 2014-04-30 16:18 · Score: 3, Insightful

Obviously if you restrict yourself to the Google Play store it is very much the same thing as using an iOS device which is restricted to the Apple App Store. But that negates the biggest advantage of Android.
Say you restrict yourself to Google Play Store, Amazon Appstore, Humble Bundle, F-Droid, and applications you compiled yourself. Is the advantage still negated? In my opinion, the advantage of Android's "Unknown sources" and "adb install" model is 1. compiling apps yourself without having to replace your desktop computer and pay a recurrring fee, and 2. ability of third-party app stores to build a reputation for quality control.
You are safe in the walled garden by jones_supa · 2014-04-30 18:56 · Score: 2

This "99%" statistic for Android comes up every now and then, and what makes up for most of it, is the hazy third-party app repositories. If you stay in the selection of Google Play, you will mostly have your ass covered.