Study finds security vulnerabilities at all time highs for mobile devices

By eGov Innovation Editors | May 13, 2011

Thumbnail: 

A Juniper Networks study found that enterprise and consumer mobile devices are exposed to a record number of security threats, including a 400 percent increase in Android malware, as well as highly targeted Wi-Fi attacks.

"The last 18 months have produced a non-stop barrage of newsworthy threat events, and while most had been aimed at traditional desktop computers, hackers are now setting their sights on mobile devices. Operating system consolidation and the massive and growing installed base of powerful mobile devices is tempting profit-motivated hackers to target these devices," Jeff Wilson, principal analyst, Security at Infonetics Research.

"In a recent survey of large businesses, we found that nearly 40 percent considered smartphones the device type posing the largest security threat now. Businesses need security tools that provide comprehensive protection: from the core of the network to the diverse range of endpoints that all IT shops are now forced to manage and secure," he added.

Juniper's report entitled "Malicious Mobile Threats Report 2010/2011” was compiled by its Global Threat Center (GTC) research facility, an organization dedicated to conducting around-the-clock security, vulnerability and malware research tailored specifically to mobile device platforms and technologies.

It outlines new areas of concern and delivers clear recommendations on essential security technologies and practices to help consumers, enterprises/SMBs, and government entities guard against mobile device exploits.
 
One of the key findings of the study is that the single greatest distribution point for mobile malware is application download. However, majority of smartphone users are not employing an antivirus solution on their mobile device to scan for malware.

Mobile devices are also found to be increasingly susceptible to Wi-Fi attacks, including applications that enable an attacker to easily log into victim email and social networking applications.

"Seventeen percent of all reported infections were due to SMS trojans that sent SMS messages to premium rate numbers, often at irretrievable cost to the user or enterprise," the report added. "Moreover, one in 20 Juniper customer devices were lost or stolen, requiring locate, lock or wipe commands to be issued.

To guard against growing mobile malware threats, Juniper recommends installing on-device anti-malware solution to protect against malicious applications, using an on-device personal firewall to protect device interfaces, using robust password protection for device access and using SSL VPN clients to protect data in transit and ensure appropriate network authentication and access rights