Gadget

The threat in your pocket

At a recent Cyber Security Weekend in Malaysia, Kaspersky released new data on mobile cyberthreat dynamics in countries of the Middle East, Turkey, and Africa (META) region, showing a doubling of the threat in South Africa.

As users increasingly rely on their mobile devices to share personal data and connect to corporate networks, the number of mobile threat detectors in the META region increased by 22% in 2023 compared to 2022. Specifically, for the Middle East the increase in mobile threats amounted to 40%, for Turkey – as much as 120%, and for Africa – 10%. In South Africa specifically, the increase in mobile threats amounted to 104%. All these threats were blocked by Kaspersky mobile solutions.

The statistics come from Kaspersky solutions running on Android devices. This mobile OS holds a dominant market share in the Middle East, Africa and Turkey. Apple devices are not immune to cyberthreats (with the Triangulation attack uncovered by Kaspersky as the most recent example) but are difficult to monitor due to OS specifics.

Malware infection vectors are very diverse. Often, users may encounter malware when they install programs from unofficial sources, but sometimes malicious apps can be found in mobile marketplaces as well. Attackers use various baits to convince the victim to download a malicious app – they disguise it as a useful or well-known application. In the META region, the top 5 ‘baits’ used by cybercriminals were positioning malware as WhatsApp or Chrome app mods, music downloaders, ad blocking software, and system apps. A user can mistake these apps for their genuine copies, and infect their device.

Among the most prevalent mobile threats that were actually detected on mobile devices in the Middle East, Turkey and Africa region were adware, spyware, and mobile banking trojans. While adware can behave in a seemingly harmless way, it can spam a user with ads, drain battery, or even get access to sensitive data. Spyware – specifically, CanesSpy, a Trojan active in the META region – can steal data from an infected smartphone, a list of contacts and user account information on the device, documents, and also record from the device’s microphone upon command.

“One of the types of mobile malware observed in the Middle East, Turkey, Africa region are trojans – apps that are often disguised as legitimate ones. In general, the functionality of trojans differs depending on the type of malware they belong to,” says Dmitry Galov, head of Kaspersky GReAT for Russia and the Commonwealth of Independent States. “Trojans can steal data from victims’ devices, add unwanted subscriptions, and extort money.

“In 2024, we believe that the number of advanced attacks on mobile devices will increase, as attackers are constantly looking for new ways to deliver malware, and the malware itself is becoming more sophisticated. As a result, attackers may seek new ways to monetise their efforts. It is also important to observe and analyse how the mobile cyber threat landscape will change when it becomes possible to install applications from alternative stores on iOS, bypassing the App Store, without jailbreaking.”

To protect yourself from mobile threats, Kaspersky recommends:

Exit mobile version