Published: May 26, 2021 on our newsletter Security Fraud News & Alerts Newsletter.
When nearly 100% of all mobile devices used for business suffer a malware attack, it’s time to ring the alarm bell. With help from Check Point’s Mobile Security Report 2021, insight into the explosion in mobile malware attacks on businesses is provided. Spoiler alert: The report findings and security tips can apply to all mobile devices and not just those used for work.
Business Mobile Malware Statistics
97% experienced mobile threats from various attack vectors
93% of attacks came from a device network
46% had at least one employee who downloaded an infected app that threatened the company’s network and data security
A 15% increase in trojan attacks against banking put a users’ mobile banking credentials at risk
Check Point’s Achilles report finds minimum of 40% of mobile devices worldwide have hardware issues making them vulnerable to cyberattacks
Key Findings
1. The coronavirus provides threat actors with numerous ways to exploit public concerns about the pandemic. Malicious apps masquerade as legitimate providers offering help during this health crisis.
2. Ransomware goes mobile with Malware-as-a-Service (MaaS) botnets and droppers on Android devices. Both help install trojans that release malware on a target and can also avoid detection by anti-virus software.
3. Check Point’s Achilles report finds mobile devices are inherently vulnerable to threats. One example found over 400 pieces of vulnerable code were linked to the Qualcomm DSP chip. Qualcomm provides chips to over 40% of mobile phones.
4. Mobile Device Management (MDM) emerged as a powerful new attack vector. In one case, a new variant of Cerberus malware infected 75% of devices belonging to one company that used an MDM they own.
5. Some of the largest and most divisive threat groups are now focusing on mobile device attacks. They perform sophisticated, elaborate attacks that had yet to be seen on mobile devices.
What to Do, What Not to Do
What’s behind this drastic spike in mobile attacks is as important as the missteps that can lead to these incidents. When it comes to device protection, knowing how to bolster your security can be just as meaningful as knowing what not to do.
Consider putting anti-virus software on your mobile device. Malware can be stopped before any damage is done. Doing the same for your other devices is always recommended.
Use a VPN (virtual private network) for all devices. A VPN ensures your data and other communications are safe from prying eyes, including your payment and banking information.
Know the red flags of email phishing. Always make sure the sender is whom they claim to be, and don’t fall for lures like emails with urgent messages. Don’t follow links or open attachments. Links can go to a fake web page that steals your data and the attachments can be chock-full of malware.
Always keep software updated as soon as possible. Keeping your device on the forefront of updates helps keeps your devices and data safer.
Always keep security patches updated as soon as they are available. Patches fix security flaws and other weaknesses cybercriminals love to exploit.
Keep up to date: Sign up for our Fraud alerts and Updates newsletter
Want to schedule a conversation? Please email us at advisor@nadicent.com