While it seems like mobile malware threats have decreased as of recently. The potency of the malware has increased dramatically. Ransomware for example has become more robust on the mobile market similar to the way it evolved on desktop computers. One very implicit ransomware strain is when it resets the personal identification number on an Android phone. The ransomware can be foiled by resetting the phone to its factory settings, but in the process, the contents of the mobile will be lost.
“To our horror, those individuals are then connecting their devices to the corporate WiFi or accessing corporate email and documents from that same infected phone,” -Ken Westin, a senior security analyst at Tripwire.
While more malware is being written for the Android platform than for iOS, the most effective attacks on mobile phone users remain agnostic. As far as phishing scams go, it doesn’t matter what platform or OS they are using all attacks will still be just as vigorous. Really anything device with wireless connectivity can also be a major threat. Fitbit’s, health monitors, and smart watches all are just as susceptible these days.
Through a proof of concept many security researches have shown the possibility to hack a fitness band so that it could then infect a personal computer. For example, if a business executive taking a walk in the park he could have his wearable fitness band or heart-rate monitor infected by a fellow runner or someone lurking in the weeds with a laptop. When he returns to his office, the infection can easily move from the wearable device to a device connected to the corporate network.
Main Author: John P Mello Jr.