The true face of the Android threat
The latest data collated from Trend Micro’s TrendLabs threat response team shows the true scale of the Android menace
Marlow, UK – July 2, 2012 - For those who think we’ve already seen the worst of the Android threat, think again. The past quarter has seen the number of malicious apps double from 10,000 to 20,000 in just one month, while hundreds of thousands of devices were infected after malware found its way onto the official Google Play marketplace, according to Trend Micro.
The latest data collated from Trend Micro’s TrendLabs threat response team shows the true scale of the Android menace.
In the first three months of the year the team identified 5,000 malicious applications designed to infect Android phones, a number which spiked more than four-fold over subsequent months.
More worryingly for users, even Google’s official application marketplace, Google Play, was breached, with 17 malicious apps downloaded over 700,000 times before they were spotted and removed from the site.
As ever, criminals want to make money out of their victims by tricking them into using premium rate services or viewing mobile ads; stealing sensitive data; or even turning their phones into part of a botnet.
"The growth in Android malware demonstrates sustained and focussed criminal interest in the mobile platform and particularly in the Android operating system”, said Rik Ferguson, director of security research and communications at Trend Micro. “Criminals have always followed user behaviour and they continue to do so. As we move steadily to the mobile web, mobile devices offer new avenues for criminal revenue generation alongside the continuation of the old. Consumers need to use care when downloading and installing apps and should be considering installing antimalware on their mobile devices"
The most common type of malicious app – accounting for 30 per cent of all those Trend Micro encountered – is a type, which is disguised as a highly popular legitimate app.
Other malicious apps, which users should avoid allow hackers to spy on the device by monitoring its GPS signal and reading any text and address book info. Two of these types of threats – Spy Tool and Spy Phone PRO+ - were recently spotted by Trend Micro as downloadable apps in Google Play.
Trend Micro advises users to be aware that Android is an open ecosystem where the level of vetting of applications before they are allowed on Google Play is minimal, therefore the site carries more risk than the more tightly controlled Apple App Store.
Third party stores are likely to pose even greater security risks, so users should remain cautious on such sites about what they download – if a paid-for app is being offered for free, for example, avoid it.
About Trend Micro
Trend Micro Incorporated (TYO: 4704), a global leader in security software, strives to make the world safe for exchanging digital information. Our solutions for consumers, businesses and governments provide layered content security to protect information on mobile devices, endpoints, gateways, servers and the cloud. Trend Micro enables the smart protection of information, with innovative security technology that is simple to deploy and manage, and fits an evolving ecosystem. Leveraging these solutions, organizations can protect their end users, their evolving data center and cloud resources, and their information threatened by sophisticated targeted attacks.
All of solutions are powered by cloud-based global threat intelligence, the Trend Micro™ Smart Protection Network™, and are supported by over 1,200 threat experts around the globe.