Backdoors, malicious cryptomining, fake apps and banking Trojans all increased substantially in 2018, propelled by cybercriminals' quest for illicit profits, according to the latest Mobile Threat Report from the security firm McAfee. Most notably, the number of fake app detections increased from around 10,000 in June 2018 to nearly 65,000 in December.
According to McAfee Labs' 2019 predictions, cybercriminals are looking for ways to use trusted devices to gain control of Internet of Things (IoT) devices via password cracking and exploiting other vulnerabilities, such as through exploitation via voice assistants.
More than 25 million voice assistants are now in use across the world, often connected to other devices in the home -- controlling lights, thermostats, door locks and more. More devices mean greater connectivity and convenience for their owners, but also more opportunities for malicious deeds.
"Most IoT devices are being compromised by exploiting rudimentary vulnerabilities, such as easily guessable passwords and insecure default settings," said Raj Samani, chief scientist at McAfee. "From building botnets, to stealing banking credentials, perpetrating click fraud or threatening reputation damage unless a ransom is paid, money is the ultimate goal for criminals."
While 2018 was the year of mobile malware, 2019 is shaping up to be the year of everywhere malware. Cybercriminals are looking for ways to maximise their income, and as the value of cryptocurrencies drops, they are shifting away from cryptomining. App stores are getting better at finding and deleting malicious apps, so cybercriminals are now bypassing the stores and going directly to consumers.
As the mobile platform remains a key target for ransomware developers, identity thieves and even nation states with shadowy geopolitical aims, it is imperative to maintain diligence when considering which apps to install or following any link.
The McAfee Mobile Threat Report 2019 highlights the following trends:
Rise of the fakes. Fake apps are and will be one of the most effective methods to trick users into installing suspicious and malicious applications on Android devices. For example, there are now several fake apps pretending to be versions of Fortnite, the game that has taken the world by storm, with more than 200 million players and some 60 million downloads of the legitimate app.
Mobile backdoors. With smartphones connected to and controlling multiple items in people's homes, cybercriminals are looking for new ways to trick users into letting them inside. While not new, in 2018 TimpDoor became the leading mobile backdoor family, with phishing over SMS still an effective way to trick users into installing unknown applications.
Financial threats spiking globally. The global spike in banking Trojans on mobile devices continues, targeting account holders of large multinational and small regional banks alike. Cybercriminals continue to innovate in different distribution vectors, from phishing SMS messages to applications with real functionality that get their malicious payloads to bypass security checks on app markets such as Google Play.
Mobile cryptomining. Cyber criminals are looking to find ways to add value to their digital wallets without the cost of doing their own mining. The popularity of Android-based devices not only makes them a prime target, but the latest cryptomining technique can jump from phone or tablet to smart TV to infect your entire environment.
Spyware attacks on mobile. From Operation RedDawn, targeting North Korean defectors, and FoulGoal, possibly targeting Israeli Fifa World Cup fans, mobile devices remain an attractive target of nation-state actors to gather intelligence and track victims.
Increased risk of IoT attacks at home. The increasing proliferation of IoT devices is bringing conveniences that we could have never imagined, but also increasing the number of possible points of attack in homes.
To read the full report, visit https://bit.ly/2tG3gWo
