sb-nz logo
Story image

10 reasons why cybercriminals target smartphones

06 Mar 2017

There is little doubt that smartphones have become a central part of our lives, allowing us to perform all sorts of tasks that make our everyday existence easier and more enjoyable.

But while they aim to heighten convenience, there is a real feeling that smartphones are becoming a bigger target for cybercriminals.

So why are criminals so eager to get into our devices?

A smartphone knows everything about us

The amount of information stored on a smartphone has skyrocketed in recent years.

The connectivity of apps means we supply nearly every piece of information about ourselves, whether it’s our bank account details or our preferred taste in pizza.

For a cybercriminal potentially wanting to commit identity theft, a smartphone is a goldmine.

It’s a way into companies and other organizations

The use of bring your own device (BYOD) has become one of the most prominent trends for companies around the globe.

Research published in 2015 found that 74% of companies had either adopted or planned to roll out BYOD, with the market set to exceed $350 billion by 2022.

Cybercriminals are viewing these devices as an ideal gateway into stealing valuable corporate information.

Security can be lax

The rise of BYOD has also caused plenty of headaches for a number of companies in various industries, mainly due to difficulties in rolling out a unified approach to security.

In a recent Tech Pro Research survey of CIOs, tech executives and IT workers, 45% of respondents said mobile devices posed the greatest risk to a company’s infrastructure, with the fragmented nature of some mobile platforms cited as a primary reason.

Autofill has become our best friend

One of the reasons our phones are carrying more personal information than ever before is primarily down to our desire for convenience.

With our devices now handling a myriad of services and subsequent apps, we find ourselves with a larger number login details than ever before.

As a result, it’s ‘easy to get lazy’. Many of us decide to make use of various autofill systems, which, in turn, sometimes amounts to a security risk.

It’s a route into your wallet

Our phones can be used to transfer money, pay our bills, and are even being used as a method of payment.

Google Wallet, Apple Pay and Samsung Pay are all pushing mobile payments into the mainstream, and some experts expect it to be a trend that will continue over the next few years.

Of course, the only drawback is that they are likely to catch the attention of cybercriminals.

Phones know where you are and where you work

In many circumstances, the reasons behind tracking your device are entirely innocent, such as helping you get the most out of your data and your apps.

For example, if you’re out and about, you can check out restaurant or business recommendations with just a couple of swipes.

However, hacking a device’s GPS capabilities is not seen as a difficult task, with many gamers using it to cheat at the popular augmented reality game Pokemon Go In the hands of criminals, a compromised GPS could be an unnerving prospect.

Bluetooth

For several years now, Bluetooth has been a regular feature on smartphones and other mobile devices. Yet, like GPS, it is still seen as a potential entry point for cybercriminals.

The effects of such an attack can result in Bluesnarfing – where a phone’s private information is compromised, or Bluebugging, which allows a criminal to more or less take complete control of your phone.

But while there is a risk, these methods are becoming increasingly harder for hackers to exploit.

Some scams are specific to mobile

There are several well-known ways in which cybercriminals can use your smartphone to make quick cash.

In countries like China, for example, malware can be used to access devices and force them to call premium numbers that charge large amounts

These scams are not only potentially lucrative, but can also spread across large numbers of devices.

They’re a great way of sending spam

Everyone hates spam. Well, apart from cybercriminals, anyway.

There are a number of reasons why a criminal would want to send spam, but many of them see smartphones as the ideal platform for sending these communications.

This is mainly because it is much harder for service providers to track down and block offenders.

Users are ignorant about the dangers

Many of the most seasoned tech users are now well acquainted with best practice when it comes to using laptops or desktops, but smartphones often slip down the list of priorities.

Which, in some ways is surprising, given that smartphones have increasingly been targeted since as early as 2005.

However, as the threat is more visible than ever, we’re slowly beginning to understand that security matters. Let’s treat them with the importance they deserve.

Article by Welivesecurity/ESET.

Story image
DevSecOps increasingly important, but APAC organisations lagging behind
The rise of DevSecOps comes at a time when IT leaders are faced with an increasingly active cyber threat landscape, coupled with higher consumer expectations of digital offerings and application usage due to a sharp increase in online activities.More
Story image
Voice phishing attacks on the rise, remote workers vulnerable
There is an increase in voice phishing attacks, where hackers use existing employee names in attempt to trick victims into sharing login credentials and data by phone.More
Story image
Why 2021 will be the year of catch-up
The transition to remote work and new online contactless business models is not temporary and is affecting the future strategy on how organisations invest in cybersecurity, writes Radware vice president and managing director for EMEA and LATAM, Rob Hartley.More
Story image
Video: 10 Minute IT Jams - Bitglass director on all things SASE
This is our second IT Jam with both Bitglass and Jonathan Andresen, who is the company's senior director of marketing. In this video, Jonathan discusses all things related to Secure Access Service Edge (SASE): its advantages over traditional security tech, what enterprises should look for, and how SASE relates to cloud-delivered secure web gateways.More
Story image
Digital transformation and cloud security top of mind for enterprise
In the era of the coronavirus pandemic, digital transformation and cloud security are the chart-topping topics enterprises want to know more about.More
Story image
Data leakage concerns dominate cloud security perceptions - Bitglass report
How secure is the public cloud? That’s what many IT and security professionals are asking as data leakage becomes a pressing concern for organisations and their data protection strategies.More