… rapid adoption in the coming years.”
Malicious mobile apps were on the decline in the fourth quarter of 2017, mostly due to a decrease in the inventory of AndroidAPKDescargar, the most prolific dealer of blacklisted or unsafe apps, according to RiskIQ‘s fourth-quarter mobile threat landscape report, which analyzed 120 mobile app stores and more than 2 billion daily scanned resources.
The report documents the return of familiar threats such as brand imitation, phishing and malware — as well as the discovery of a bankbot network preying on cryptocurrency customers.
The Google Play store again led the way with the most blacklisted apps, but the analysis confirmed that feral apps – apps available for download outside of a store on the web – fell in popularity for the first time in several quarters.
“Securing the mobile app ecosystem continues to be a challenge for app stores of all sizes, but efforts to improve version control, monitor for abuse, employ verification techniques, and offer security education can help,” said Mike Wyatt, RiskIQ’s director of product operations. “Tracking the use of brand names and likeness is an equally daunting challenge for corporations. Brands should evaluate and implement solutions that constantly monitor their digital footprint online and in mobile app stores.”
RiskIQ researchers found a mobile app that was trying to pass itself off as a cryptocurrency market price app. This app was found to be part of the bankbot family of mobile trojans and would monitor the device that installed it for a list of target apps. If the app was launched while the trojan was installed, the trojan would put an overlay over the legitimate app and collect sensitive information, such as login credentials from the banking customer.