In the not-too-distant past, mobile security was not considered a security threat, nor was it even an excessive concern over data loss for many organisations. However, the prevalence of mobile security threats has changed the conversation, bringing mobile security into much-needed focus. With the introduction of GDPR, organisations need strict governance to ensure all data remains secure.
The power, convenience and user productivity that mobile devices provide have resulted in mobile web usage surpassing that of PCs since October 2016. However, this has now been accompanied by a big increase in malware infections. In the third quarter of 2017, Kaspersky Lab detected 1,598,196 malicious installation packages (1.2 times more than the previous quarter).
Let us look at mobile malware statistics in 2017 and share with you the increases we’ve seen—and why mobile security is now a primary concern for every business.
It is not unheard of for users to fall victim to untrustworthy devices that have been maliciously configured at one stage or another in the supply chain. This means that individuals or organisations can fall prey to pre-installed malware that was already on the phone prior to it being unboxed. An example of such a case was the 36 Android devices belonging to a telecommunications company that Check Point mobile researchers detected with a severe infection.
Panda Labs reported that in Q3 of 2016 alone, an astounding 18 million new malware samples were captured—an average of 200,000 per day!
These malicious apps have continued to plague mobile users, promising to perform one function but ultimately doing something sinister, or simply harvesting user and device data. While app stores have installed measures to curb malware, developers of this malware continuously find new and advanced ways to evade built-in app store anti-malware protections.
The Nokia threat intelligence report shows that the monthly smartphone infection rate averaged 0.90% in the second half of 201, up 83% from the year’s first half. The report also highlights the most prolific threats facing mobile devices. Mobile apps can harm the integrity and security of your devices and data by leaking sensitive information. These apps are usually free and can carry out their proposed functions, but they also extract important information from your device. This sensitive information is then sent to a remote server, where cybercriminals can exploit it.
Kaspersky Lab mobile security products detected 19,748 mobile banking Trojan installation packages in Q3 of 2017.
This particular type of malware steals the credentials of mobile banking customers. Different variants can also read and send texts and redirect calls. Alarmingly, these banking trojans are regularly updated to stay current and effective at targeting victims.
According to a June 2016 FBI report, 4,000 ransomware attacks occurred daily on average in 2016. According to Kaspersky, organisations have not been spared from this onslaught, with ransomware attacks reportedly increasing from one every 2 minutes to one every 40 seconds.
Specifically, in Q3 of 2017, Kaspersky Lab mobile detected 108,073 mobile Trojan-Ransomware installation packages.
According to IBM’s 2016 Mobile Security & Business Transformation Study, almost 60% of security leaders describe their organisations as either partially or fully mobile, deriving enhanced productivity and other business-related benefits. However, 63% also acknowledge that with improved mobility comes an inherent increase in the number of security risks and concerns. 59% of security leaders also say that more IT resources are required to support the increased number of devices and applications.
Echoing the same concerns, a survey by Dimensional Research showed that 20% of companies claimed their mobile devices were breached, and 25% had no way of knowing whether they had experienced an attack. As the number of mobile attacks continues to rise, 94% of companies expect the frequency of mobile attacks to increase, with 79% admitting that they’re finding it more and more difficult to secure their mobile devices.
According to the National Crime Agency of the United Kingdom’s 2016 crime assessment, cybercrime accounts for over 50% of crimes committed in the UK. To illustrate the growth on a global scale, Cybersecurity Ventures predicted that cybercrime will cost the world $6 trillion annually by 202—up from $3 trillion in 2015.
This is a testament to the magnitude of cybercriminals’ threat to companies today. The current outlook is one that only serves to heighten concern, with the following forecasts being made by CSO online:
Proper management of your mobile devices is equally a survival measure as it is a means of securing competitive advantage and profits. Failing to put in place a robust system of mobile device management will put your organisation at risk of the following:
Deploying an Enterprise Mobile Device Management (MDM) platform is the first and most important step towards taking control of your mobile device security.