App repackaging, malicious mobile URLs and "smishing" top delivery techniques
Social engineering and mobile-to-PC attacks create new challenges for consumers and industry
DALLAS and BEIJING, April 15, 2013 /PRNewswire/ -- According to a new security report released today by NQ Mobile Inc., a leading global provider of mobile Internet services, mobile malware threats increased 163% to more than 65,000 in 2012. The company warns, however, that the problem is becoming more complex as smarter mobile malware can better target connected devices.
Malware Grows and Becomes SmarterNearly 95 percent of all mobile malware discovered in 2012 targeted the Android OS. The top three methods for delivering malware in 2012 were app repackaging1, malicious URLs2, and smishing3. NQ Mobile estimates that these forms of malware helped infect an estimated 32.8 million Android devices in 2012 -- an increase of over 200 percent from 2011.
In the first quarter of 2013 mobile malware threats continued to grow and have become smarter. In February of this year, a new type of mobile malware was discovered that could jump from an Android device to infect a PC when they were connected via the USB port. Although only a few Android devices were infected, this attack illustrates the growing need to keep private data secure in an increasingly interconnected device ecosystem.
Mobile Hackers Sell Private Information to CybercriminalsNQ Mobile Security Labs, a team of over 250 mobile security professionals around the world who proactively monitor the mobile landscape for new malware threats and mobile hacking methods, have been also been observing increased collaboration between mobile hackers and cybercriminals. These unlawful collaborations can have disastrous effects on consumers. Mobile hackers are using malware to capture consumers' private information and then selling this information to cybercriminals who are in turn using social engineering tactics to gain access to the consumers' finances.
"The security industry's 'discover-first-and-inoculate-second' strategy is no longer enough," said Omar Khan , Co-CEO, NQ Mobile. "We need smarter systems that can discover threats before they infect consumers as well as more education so consumers can better spot and avoid these new mobile scams."
Key Findings
- Over 32.8 million Android devices were infected in 2012 vs. 10.8 million in 2011 – an increase of over 200 percent
- The top five markets for infected mobile devices were China (25.5%), India (19.4%), Russia (17.9%), United States (9.8%) and Saudi Arabia (9.6%)
- 65% of malware discovered in 2012 falls into a broader category of Potentially Unwanted Programs (or PUPs). PUPs include root exploits, spyware, pervasive adware and Trojans (surveillance hacks)
- 28% of mobile malware discovered in 2012 was designed to collect and profit from a user's personal data
- 7% of malware was simply designed to make a user's device stop working (i.e., "bricking" their phones)
- Looking ahead, NQ Mobile estimated that over 10 million devices have already been infected in the first quarter of 2013
Research MethodologyNQ Mobile's 2012 Security Report is based on insights from NQ Mobile's Security Labs, as well as data collected from NQ Mobile's global malware database, scanning engines and its network of hundreds of millions of registered users.
To view a full copy of NQ Mobile's 2012 and 1Q 2013 Mobile Security Reports, including charts and additional information on malware discoveries, please visit NQ Mobile's blog at: http://www.nq.com/2012_NQ_Mobile_Security_Report.pdfhttp://www.nq.com/Q1_2013_NQ_Security_Dashboard.pdf
1 App repackaging: Concealing malicious malware in a seemingly legitimate app
2 Malicious URLs: Fake URLs masquerading as legitimate URLs such as, banking websites
3 Smishing: Phishing by way of SMS messages
2 Malicious URLs: Fake URLs masquerading as legitimate URLs such as, banking websites
3 Smishing: Phishing by way of SMS messages
About NQ MobileNQ Mobile Inc. is a leading global provider of mobile Internet services. NQ Mobile is a mobile security pioneer with proven competency to acquire, engage, and monetize customers globally. NQ Mobile's portfolio includes mobile security and mobile games & advertising for the consumer market and consulting, mobile platforms and mobility services for the enterprise market. As of December 31, 2012, NQ Mobile maintains a large, global user base of 283 million registered user accounts and 98 million monthly active user accounts through its consumer mobile security business, 65 million registered user accounts and 13 million monthly active user accounts through its mobile games & advertising business and over 1,200 enterprise customers. NQ Mobile maintains dual headquarters in Dallas, Texas, USA and Beijing, China. For more information on NQ Mobile, please visit http://www.nq.com.
SOURCE NQ Mobile Inc.
RELATED LINKS
http://www.nq.com