Cross-Platform Mobile Threats: A Multi-Pronged Attack
Cross-platform threats can be dangerous, both at home and in the office. These can ‘jump’ from one platform to another, or target all of them at the same time – potentially infecting a user’s entire network, or even a company’s network if left unchecked. The risk to critical data and system functionality, not to mention overall network security, can be catastrophic if not mitigated properly.
With the mobile device boom, cybercriminals had begun taking the portable platform into consideration with their all-encompassing attacks. We’ve already detected quite a few. Some examples:
- ANDROIDOS_USBATTACK.A, a malicious app that not only can perform information theft routines on the affected device, but also downloads malware that triggers only when the device itself is connected to a PC via USB. While the end payload is the PC’s microphone being turned into a wiretapping device, it could have easily sported much more damaging routines.
- TROJ_DROIDPAK.A, a Trojan that downloads and installs malicious apps onto any Android device connected to the affected PC. The apps are malicious versions of online banking apps, which could compromise a user’s online banking account.
Both examples feature cross-platform infection in opposite directions – from the mobile device to the PC, and vice versa. In the long run, cybercriminals may look to expanding this chain to everything else that the mobile device can connect with (such as home automation systems and other parts of the Internet of Everything). This could also mean that cybercriminals will also be looking to augment their targeted attacks against organizations to also include mobile device attacks (as evidenced by the mobile RAT found in a LuckyCat C&C server).
In our latest Monthly Mobile Report, The Reality of Cross-Platform Mobile Threats, we tackle cross-platform mobile threats, what makes it possible and what we may expect from this particular avenue of cybercrime in the future. We also explore how users and business owners alike can combat this multi-pronged threat before they can be victimized by it.And with cybercriminals currently using the 2014 World Cup to drive desktop and mobile device threats – which could mean cross-platform attacks in the horizon – there’s no better time for users and business owners to catch up and be informed.
Cross-platform mobile threats may seem intimidating, but with the right tools and the right know-how, it can be protected against. Read our latest Monthly Mobile Report at the link above, or on our Mobile Threat Information Hub.