Mobile Malware: Beware Drive-by Downloads on Your Smartphone

Drive-by downloads are coming to your smartphone, and they're harder to detect than traditional PC-based versions. Here's how you can protect yourself, your users and your enterprise from mobile drive-by downloads.

By Meridith Levinson
Thu, March 22, 2012

While Jeff Schmidt, the CEO of JAS Global Advisors, was surfing the Web on his new Android smartphone (his first Android phone) earlier this year, what appeared to be an ad popped up on his screen. The "ad" looked like the prompt that appears when his phone rings. He clicked the button on the ad to pick up the putative call, and the ad began downloading a binary file--malware--onto his Android phone. Schmidt had been hit by a drive-by download, a program that automatically installs malicious software on end-users' computers—and increasingly, smartphones—without them knowing.

"I'm a pretty paranoid and sophisticated user," says Schmidt, whose firm provides information security and risk management services. "I didn't think I'd be vulnerable to this sort of thing, but because I wasn't familiar with the user interface, I clicked on the ad. It really surprised me."

Fortunately, Schmidt halted the download when he realized what was going on and caught it before anything bad happened to his phone. He's not sure what the malware would have installed on his phone, but he suspects it could have been some kind of spyware, such as a keystroke logger, or some other application that would turn his computer into a spam-mailing bot or otherwise compromise his security and privacy.

Schmidt's experience with mobile malware—specifically, with a mobile drive-by download—illustrates the challenges users face detecting and preventing mobile malware from infecting their smartphones. It also demonstrates the sophistication and ever-changing nature of security threats targeting mobile devices.

The Mobile Malware Phenomenon: Why It's Hard to Detect

Mobile malware is proliferating at an astonishing rate. Security threats targeting mobile devices increased more than 600 percent between 2010 and 2011, according to research from Kaspersky Lab. In December 2011 alone, Kaspersky identified more new mobile malware apps than it identified between 2004 and 2010.

"Mobile devices are scary because people generally have no idea what the software they download will do, whether they get it from an app store or it comes with the phone," says Schmidt. "The apps on mobile devices are not at all transparent. A lot of software gets installed on them that users don't understand."

Smartphones have become an effective way for criminals to distribute malware because it's harder to recognize on a smartphone than it is on a PC. "Screen real estate is very limited on these devices," he says. "The visual cues we're used to on PCs [when we download a virus] are not available in a mobile environment. Even to sophisticated users, it's not entirely clear what's happening behind the scenes."

Faster connectivity and more powerful devices further complicate security. Schmidt says both factors make it easier to download malware more quickly, without the user knowing. "That makes a compromised device more valuable to a bad guy," he adds.

It also makes smartphones more susceptible to drive-by downloads.

1 2 next page »

More from CIO

You are here: Technology Topics » Security » Feature

Most Recent Security Stories

White Papers »

Protection for Every Enterprise: How BlackBerry 10 Security Works

Get an IT-level review of BlackBerry® 10 Security, addressing data leakage protection, certified encryption, containerization and much more.

A Comprehensive Strategy to Leverage Mobile

A successful mobile strategy begins with a common platform for integrating and managing mobile devices and the corporate assets that are stored on them.

Navigating the New Mobile World

Over the next five years, companies will evolve to mobile-empowered businesses in three phases, which include extending existing systems, accelerating decisions and responses, and transforming the way you do business.

The App Happy Enterprise

This Computerworld playbook explores key aspects of the enterprise mobile revolution and provides a set of step-by-step directions on how to productively manage this new environment in a way that meets IT and end user needs.

IDC - SAP Enterprise Mobility: Bringing a Cohesive Approach to a Complex Market

This IDC white paper discusses key mobility trends and examines how SAP's mobile enterprise solutions map to meet organization's mobile requirements.

Data loss prevention: Refreshing data security to meet an evolving threat environment

CDW's reference guides provide a high-level, informative take on today's most pressing IT solution areas and related issues.

Webcasts »

Customer Success Video (State of Michigan)

Learn how the State of Michigan is utilizing DeepSight security intelligence to protect critical infrastructure.

PGI Customer Success Video

Learn how PGI is using Symantec Managed Security Services to protect their systems, while allowing them to focus on running, and building, their business.

Simplifying the Complexity of Mobility: A Holistic Approach to Develop a Mobile Enterprise Strategy

Simplifying the Complexity of Mobility

Vblock Specialized System for SAP HANA

Overview video from DJ Long about the new Vblock Specialized System for SAP HANA.

ActiveSync on BlackBerry 10: What Does it Enable?

Find out how ActiveSync works with BlackBerry® 10 to enable basic security and device management features. See what's involved in setup. And learn about BlackBerry® Enterprise Service 10, for full Enterprise Mobility Management.

Software Asset Management - Program Considerations to Help Reduce Risk and Lower Costs

SAM: A must have IT tool to help reduce costs and minimize business and legal risks.