Story image

The dark side of apps: Security threats on the rise

Security threats targeting mobile devices is increasing, with one specialist security firm saying it's not hard to see why. 

In 2019, the number of worldwide mobile phone users is forecast to reach 4.68 billion, of which 2.7 billion are smartphone users. 

If you are looking for a target, it certainly makes sense to go where the numbers are, according to Kaspersky. 

"Think about it, unsecured Wi-Fi connections, network spoofing, phishing attacks, ransomware, spyware and improper session handling – mobile devices make for the perfect easy target. In fact, mobile apps are often the cause of unintentional data leakage," the company says. 

Riaan Badenhorst, general manager for Kaspersky in Africa, says apps pose a real problem for mobile users, who give them sweeping permissions, but don’t always check security.

“These are typically free apps found in official app stores that perform as advertised, but also send personal - and potentially corporate - data to a remote server, where it is mined by advertisers or even cybercriminals," Badenhorst explains. 

"Data leakage can also happen through hostile enterprise-signed mobile apps. Here, mobile malware uses distribution code native to popular mobile operating systems like iOS and Android to spread valuable data across corporate networks without raising red flags," he says.

In fact, according to recent reports, Badenhorst says six Android apps that were downloaded 90 million times from the Google Play Store were found to have been loaded with the PreAMo malware, while another recent threat saw 50 malware-filled apps on the Google Play Store infect over 30 million Android devices. 

Surveillance malware was also loaded onto fake versions of Android apps such as Evernote, Google Play and Skype.

"Considering that as of 2019, Android users were able to choose between 2.46 million apps while Apple users have almost 1.96 million app options to select from, and that the average person has 60-90 apps installed on their phone, using around 30 of them each month and launching nine per day – it’s easy to see how viral apps take several social media channels by storm," Badenhorst says.

Bethwel Opil, enterprise sales manager at Kaspersky Africa, says in this age where users jump onto a bandwagon because it’s fun or trendy, the Fear of Missing Out (FOMO) can overshadow basic security habits – like being vigilant on granting app permissions.

“In fact, accordingly to a previous Kaspersky study, the majority (63%) of consumers do not read license agreements and 43% just tick all privacy permissions when they are installing new apps on their phone," says Opil.

"And this is exactly where the danger lies – as there is certainly ‘no harm’ in joining online challenges or installing new apps.”

However, Badenhorst says it is dangerous when users just grant these apps limitless permissions into their contacts, photos, private messages, and more. 

“Doing so allows the app makers possible, and even legal, access to what should remain confidential data. When this sensitive data is hacked or misused, a viral app can turn a source into a loophole which hackers can exploit to spread malicious viruses or ransomware,” he explains.  

As such, Badenhorst says online users should always have their thinking caps on and be more careful when it comes to the internet and their app habits including:

  • Only download apps from trusted sources. Read the reviews and ratings of the apps as well
  • Select apps you wish to install on your devices wisely
  • Read the license agreement carefully
  • Pay attention to the list of permissions your apps are requesting. Only give apps permissions they absolutely insist on, and forgo any programme that asks for more than necessary
  • Avoid simply clicking “next” during an app installation

For an additional security layer, be sure to have a security solution installed on your device

“While the app market shows no signs of slowing down, it is changing," says Opil. 

"Consumers download the apps they love on their devices, which in turn gives them access to content that is relevant and useful. The future of apps will be in real-world attribution, influenced by local content and this type of tailored in-app experience will lead consumers to share their data more willing in a trusted, premium app environment in exchange for more personalised experiences. 

"But until then, proceed with caution."

Story image
14 Nov
Consumers fail to see value of 5G, Deloitte study finds
Up to 84% of respondents said they were not prepared to pay the $15 premium operators are proposing for 5G, indicating that telcos need to better communicate the value of the upgrade to consumers, Deloitte says.More
Story image
07 Nov
Finally, the esports battleground is safer and fairer for everyone
Finally, the esports industry has something of a universal code of conduct when it comes to fair play and fun.More
Story image
06 Nov
Game review: Hideo Kojima presents Death Stranding
Death Stranding is a fun and unique game if you want to play something new and different. If you want all-out action, you may want to go out and play something else instead. It’s best to research the game as much as you can before you decide to buy it though.More
Story image
14 Nov
Hands-on review: OPPO ENCO Q1 Wireless Noise Cancelling Headphones
The tone and clarity is brilliant. I’m just waiting to see how they cope with Barry Gibb’s falsetto. The melody and lyrics are clear with rich tones. Oh no! I can feel my feet tapping and my arms want to disco! Help! More
Story image
13 Nov
Big Tech firms dominating internet choices
"While people benefit from big tech's products and services, they are clearly concerned about associated security and privacy threats, and they also want more choice."More
Story image
11 Nov
Game review: Mario & Sonic at the Olympic Games Tokyo 2020
Since the release of Mario Party, Nintendo fans have been waiting for a new party game full of mini games they can play alone or with friends. Mario & Sonic at the Olympic Games Tokyo 2020 is exactly that.More