The massive growth in Android devices and the largely unregulated Android app market has produced a sharp rise in malware targeting that platform, according to Sophos.
Based on SophosLabs’ maiden Mobile Security Threat Report, the team of researchers and analysts saw the number of Android malware increasing six-fold over the past 12 months to surpass 650,000.
According to SophosLabs, Android malware represents just a tiny fraction of the number of pieces of malware for the traditional PC, but it is the fastest-growing threat landscape.
Google’s mobile platform – which according to Strategy Analytics account for 79% of the mobile market -- has become such a greater target for mobile malware writers because it does not employ a walled-garden policy regarding apps.
A hacker can profit from a compromised mobile device in many different ways. The hacker can stalk the user by way of the device’s audio, camera, call logs, location, and SMS messages.
Worse, the hacker can impersonate the device owner or user through redirected SMS messages, email, or social media posts.
Through vulnerable apps, attackers can steal data like account details, contacts, call logs, phone numbers, and the IMEI (international mobile equipment identity) number.
The hacker gets financial gain from the attack by sending premium-rate SMS messages, making expensive calls, stealing transaction authentication numbers, selling fake antivirus, and extortion via ransomware. For example, the Android Defender ransomware charges $99.99.
Similarly, through botnet activities, a hacker can launch DDoS attacks, engage in click fraud, and send premium-rate SMS messages.