Hackers target smartphones – mobile malware is becoming more and more dangerous

Check Point has published a Mobile Security report which clearly shows that up to 97% of organizations in the world have experienced a multi-vector cyber attack on mobile devices. It turns out that in nearly every second company, at least one employee has downloaded a malicious mobile application, and at least 40% of mobile devices in the world are not protected against cyber attacks.

Check Point experts have published the latest edition of the Mobile Security report, analyzing the latest threats against mobile devices of companies and organizations. The report provides a comprehensive overview of major mobile malware trends, device vulnerabilities and national cyber attacks. It also shows how organizations can protect themselves from complex mobile threats today and tomorrow, and how those threats are likely to evolve.

According to cybersecurity specialists, the shift to massive remote work during the COVID-19 pandemic resulted in a sharp increase in the number of mobile attacks, as a result of which 97% of organizations faced mobile threats from several attack vectors. 60% of employees are projected to work remotely by 2024, so mobile security should be a priority for all organizations.

The most important remarks of experts:

– All enterprises vulnerable to mobile attacks: Almost every organization experienced at least one mobile malware attack in 2020. Ninety-three percent of them induced users to install malicious payload via compromised websites or URLs or intended to steal user credentials

– Almost half of organizations affected by malicious mobile applications: In 2020, 46% of organizations in 2020 at least one employee downloaded a malicious mobile application that threatened networks and the organization concerned.

– Four out of ten mobile phones worldwide are vulnerable: Check Point’s Achilles study found that at least 40% of the world’s mobile devices are inherently vulnerable to cyber attacks due to chipset flaws and require urgent updating.

– Growth of mobile malware: In 2020, Check Point saw a 15% increase in banking Trojans, mainly stealing the credentials of mobile banking users. Moreover, cybercriminals often spread their malware, including mobile remote access (MRAT) Trojans, banking Trojans, and premium dialers, by hiding them in applications that include claim to offer COVID-19 related information.

– APT groups attack mobile devices: The mobile phones of significant or influential people are very attractive targets for various APT groups such as Iran’s Rampant Kitten, which launched complex and sophisticated targeted attacks to spy on users and steal sensitive data.

In 2020, Check Point also discovered that cybercriminals are able to use companies’ mobile device management (MDM) systems in their activities. One of the large multinational corporations used MDM to distribute malware to over 75% of used devices, thus controlling employees’ devices.

–