1. Mobile malware is on the rise

    July 31, 2012 by cocoon
    “InfoStealers” for the mobile platform will emerge

    Malware is no longer a threat that is exclusive to desktop operating systems. The RSA 2012 CYBERCRIME TRENDS REPORT white paper stated that 2011 marked the year of new advanced threats on a global basis. In 2012, cybercriminals are finding new and innovative ways to monetize non-financial data, while hacktivism is on the rise. They predict that “InfoStealers” for the mobile platform will emerge with Trojans that are designed to “keylog touch-screen input and monitor data traffic through the mobile device.”

    Zeus is responsible for 80% of all attacks against financial institutions

    The RSA Anti-Fraud Command Center (AFCC) reports that Zeus is responsible for 80% of all attacks against financial institutions and estimates the financial loss at over $1 billion in global losses since 2007.

    Mobile malware is rising fast, infecting nearly 13 million phones in the world during this year’s first half, up 177 percent from the same period a year ago, according to Beijing-based security vendor NetQin.

    NetQin also detected almost 3.9 million phones in China being infected with money-stealing malware that sends out text messages to trigger fee-based mobile services. The high number of infections would likely translate into the malware’s creators netting 3.9 million yuan (US$616,533) each day (+ 225 million US dollars in one year).  Michael Kan, IDG News

    The Cocoon iOS full-service mobile security and privacy app is now available at the App Store 

    The Cocoon iOS full-service mobile security and privacy app is now available at the App Store and will shield your personal information and online transactions from potential network sniffers, hacks, or other digital exposures – even in WiFi hotspots. You also have the option of blocking web tracking from online advertising, including Google and Facebook.

    Cocoon for iOS

    Some key features to notice on the GetCocoon iOS app include:

    1-Eliminates Tracking: Cocoon encrypted browsing keeps your personal information, location, and IP
    address private. Websites can only see Cocoon, not your computer.
    2-History portability from device to device: Cocoon provides instant access to browsing history from
    the desktop, laptop, iPad, iPhone, or any other device connected to Cocoon’s free service.
    3-Mailslots: Cocoon’s disposable mailboxes help protect email from SPAM and phishing by letting
    users manage, read, or create mailslots (unique, automated email addresses) on-the-fly with any
    device.
    4-Protection from viruses: Cocoon serves as a barricade, protecting user devices from malicious
    software, pre-scanning wanted downloads, and blocking unwanted downloads.
    5-SSL protection on every network connection: Securely connect to the web, protecting passwords
    and purchases even on public WiFi and cellular connections.

    The Cocoon Team!

    Category: Mobile  Tags: , , , , , , | Comments (0)

  2. Android Malware Infects 100,000 Chinese Smartphones

    July 9, 2012 by cocoon

     

    China MobileOn July 4 TrustGo discovered new malware dubbed Trojan!MMarketPay.A@Android on China Mobile’s Mobile Market. This new malware was able to automatically place orders on behalf of users and jack up their phone bills as part of the payload. The virus spread to 9 China markets (nDuoa, GFan, AppChina, LIQU, ANFONE, Soft.3g.cn, TalkPhone, 159.com and AZ4SD); infecting more than 100,000 devices.

    It works by silently downloading paid apps and multimedia content from Mobile Market, an Android app store hosted by China Mobile.

    Emil Protalinski of ZDNet states in a blog post that “It works by silently downloading paid apps and multimedia content from Mobile Market, an Android app store hosted by China Mobile, one of the largest wireless providers in the world.”

    Normally China Mobile customers receive a verification code via SMS after purchasing an app from Mobile Market. Then the customer would go to Mobile Market to input their SMS code to begin the download (the order is then charged to their phone bill).

    MMarketPay.A automates this process and downloads as much as it can so that victims rack up huge phone bills.

    MMarketPay.A automates this process and downloads as much as it can so that victims rack up huge phone bills. It finds paid content, simulates a click action in the background, intercepts the received SMS messages, and collects the verification code sent by Mobile Market. If a CAPTCHA image is invoked, the malware posts the image to a remote server for analysis.

    In short, MMarketPay.A is a complex little bugger. If you’re using an Android device on China Mobile, you may want to check your phone bill and make sure there’s nothing suspicious on it. —-Emil Protalinski for Zero Day | ZDNet

    To avoid malicious apps like MMarketPay.A, you should avoid downloading non-Market applications from “unknown sources” and purchase apps from the official Google Play Store.

    To avoid malicious apps like MMarketPay.A, you should avoid downloading non-Market applications from “unknown sources” and purchase apps from the official Google Play Store. You can tweak the application options on your Android via Settings > Applications and uncheck “Unknown Sources.”

    Android

     Source: TrustGo, ZDNet.

    Category: Mobile  Tags: , , , , , , , , , , , , , , | Comments (0)
Button_getcocoon
Follow GetCocoon on Twitter