Beware Android users, malware authors are picking Google’s platform as their first foray into mobile mayhem, security researchers say. Interestingly, there’s no mention of malware using Apple’s iOS.
“As mobile devices grow in popularity, so do the incentives for attackers,” said Kevin Mahaffey, Chief Technical Officer and co-founder of Lookout Mobile Security. The prevalence and sophistication of mobile malware attacks have “evolve[d] significantly in the first six months of 2011,” he said.
Between a half million and one million users were infected by mobile malware during the first half of this year, the researchers say. Additionally, 30 percent of mobile users are likely to click on a link containing malicious and phishing material as the threat of web-based cross-platform attacks rise.
Android users are two-and-a-half times as likely to run into mobile malware today compared to six months ago, claims the San Francisco, Calif. company. In June, GGTracker appeared in the United States. The malware signs users up for premium texting services that can add $10 per service charges to telephone bills. Previously seen only in China, Eastern Europe and Russia, this malware attack also includes Malvertising, according to the report.
Similar to GGTracker, DroidDream uses something called an Update Attack to spread itself far and wide in the Android community. An Update Attack releases innocuous apps to build up a community of victims. Afterwards, an update to the apps is released that contains the actual malware, infecting all of the apps’ users. DroidDream uses this technique, having released more than 80 such apps, according to the researchers. Since mid-June, GGTracker released 15 new infected apps across app stores and download sites, the report said.
The Lookout Mobile Security report is part of the company’s Lookout Mobile Threat Network, with more than 10 million users and scanning 500 million apps daily.
It’s a perfect example of how Android’s supposedly open ecosystem leads to a poorer user experience for many. What’s interesting is that even on jailbroken iPhones, Apple’s devices seem to see less malware.
Ed Sutherland is a veteran technology journalist who first heard of Apple when they grew on trees, Yahoo was run out of a Stanford dorm and Google was an unknown upstart. Since then, Sutherland has covered the whole technology landscape, concentrating on tracking the trends and figuring out the finances of large (and small) technology companies.
41 responses to “iOS Users, Start Your Gloating! Android Is Riddled With Malware, Researchers Say [Security]”
“Interestingly, there’s no mention of malware using Apple’s iOS.”
Given that they apparently looked at phishing, and iOS devices are equally vulnerable in this regard due to things like hiding the URL bar, I would assume they didn’t really look at iOS devices.
I just paid $ 23.87 for an iPod 2-64GB and my girlfriend loves her Pana$onic Lumix GF 1 Camera that we got for $ 38.76 there arriving tomorrow by UPS. I will never pay such expensive retail prices in stores again. Especially when I also sold a 40 inch LED TV to my boss for $ 657 which only cost me $ 62.81 to buy. Here is the website we use to get it all from, http://to.ly/aS0P
Where do you link to the source of the article?
Talk about malware. Here we have it right in the comment stream (again!). I seriously don’t believe that CultofMac can’t do anything about this crap. On some articles there are more spam comments like this than there are real comments. It makes you look like a bunch of amateurs.
tinyurl.com/2df4ccp
I blame the use of Disqus, never had it before they went to it. I flag and flag, but who knows what happens to those flagged comments. How many moderators does Disqus even have? Does a small site like CoM even get moderator attention, or do they focus on their larger customers?
Sounds like some is trying to peddle security software …. and Ed can’t tell the difference.
That is quite an assumption and a rather defensive one at that.
No where did he say that it was outright impossible for an iOS device contract malware. What he is stating is that Android has manylive and proven instances of malware and vulnerabilities for contracting malware due to it’s open and largely unmonitored ecosystem. The author is in fact correct.
This is the main reason that I support Apple’s “walled garden”. The chances of me contracting viruses and malware and possibly passing it on to my other devices, while not impossible, is a lot less likely.
Agreed Prof. This is getting ridiculous.
I remember the idiots who said the reason Macs didn’t have malware and viruses was marketshare. They’ve been rather quiet about iOS.
There are about 7 times as many Macs in use as there are Android phones… So, there SHOULD be 7 times as much malware/viruses according to those idiots… But there aren’t. Marketshare? How about just plain flawed implementation and lack of regard for security.
I’ll stick to Apple’s methods. Security through proper software design and control. With its Unix base, Google should have done better with Android.
Especially when the fookin’ idiots can’t even spell “[they’re] arriving tomorrow by UPS.”. ;o)
That’s always a possibility. I also was looking for a link to the source of the story.
Check out this awesome blog for all the up to date news on everything apple!
Even news on the new iPhone 5!
http://applefanboynews.com/
In other news, the ocean is populated with fish.
you’re comparing apples and oranges. mobile and desktop to make a point in your favor. just saying.
Just get Lookout Security and be smart about your usage. I got Android because I love having Flash on it. LOVE IT!
Don’t forget “Pana$onic”
Are you saying that the concern over viruses/malware is different for desktops than mobiles?
OK. Let me compare desktop to desktop.
Windows has 9 times the market share of Mac. So there should be 9 times the malware/viruses. Mac has…. less than 10. Windows has hundreds of thousands. Not simply 100 times more, but well over 50,000 times more. And the Mac ones are nowhere to be found in the wild. Windows ones are almost impossible NOT to get.
Android is looking like it’s the same.
iPhone – No malware/viruses in the wild.
Android – 50 infected apps already in the Android marketplace… Who knows about other unofficial marketplaces.
Windows and Android both have anti-virus software readily available and are highly recommended. Virus infections common.
Mac has a few. None recommended. iPhone – none. Virus infections non-existent.
Seems like a flaw in the system to me.
Now tell that to the millions of other Android users who need this advice.
this article is about Mobile OS’s.
don’t even bring desktops into the conversation. throw out your last comment and your first one and start over.
PS concerning desktops.. hackers target Windows because of market share. don’t say they don’t, they do.
OK… Well, how are hackers doing with the iPhone? Market share similar to Android’s, and no malware. What are the hackers waiting for?
Hackers attack systems they can exploit. If they cannot be easily exploited, hackers will not focus as much effort on them. Android and Windows are both quite hackable.
Linux? Mac? Where are the hacks? Linux runs 60-75% of all internet servers… Viruses? None. Hacks of documented holes in some software (Apache and MySQL) yes. SQL injection is a favorite. But never a Linux system actually hacked. Don’t you think that would be the best target of all? Google? Yahoo? Facebook? MySpace? All on Linux.
The belief that Windows is only attacked because of market share is part of the FUD that Microsoft has been spreading since 1992. Remember the Melissa virus, the first virus that had major national news coverage? People lined up outside computer shops to buy… anti-virus software.. Scare people, make money. MS could have fixed this problem back then… But they chose to ignore it while paying lip service to security. 20 years of FUD from their marketing machine. Plus all the computer shops “fixing” Windows machines and selling anti-virus software certainly didn’t hurt the FUD campaign.
Back in 1992 there were more Novell server systems in place than MS servers. Not a single virus has ever existed there either. Novell systems were also a hell of a lot more stable, but they weren’t sexy.
The market share belief is false, but no matter how many examples people are given they will never change their opinion.
iOS – no viruses. Android – 50 infected apps already, with a much smaller app marketplace.
Hmm, the article talks about how many times more Android is getting malware but does not talk about how many times (or less) IOS is. It also does not mention if you use only the Android market to install apps if you are just as vulnerable then installing from other sites.
Like a lot of articles that appear on this site, this one is full of fanboy love and lacks details. I want all of the information and honest comparisons. I do think IOS has more security then Android built in but this article does not show this at all.