AusCERT 2011: Mobile banking malware on the rise

Mobile OSes not as safe as they seem

Lisa Banks (Computerworld)
17 May, 2011 09:50
Comments

Trusteer chief technology officer, Amit Klein

Chief technology officer of Trusteer, Amit Klein, has spoken about the trends of mobile malware, citing mobile banking as the next big threat to the industry.

In the keynote session of the second day at the AusCERT conference on the Gold Coast, Klein said the financial and mobile malware began to increase during 2006, and has only become more prevalent in recent years.

“The financial malware for desktop started flourishing mid last decade around 2004 to 2005; we started seeing some earnest attempts at malware,” he said.

“We started seeing third generation malware as early as 2006 but market domination occurred around 2008.”

Klein identified a number of tricks used by those committing attacks on mobile devices, with botnets cited as one element behind attacks.

Check out our comprehensive AusCERT 2011 coverage

“Distributed command and control systems enable survivability and increases resistance to takeover attempts and ensuring there are many hosts out there to control the botnet,” he said.

“The botnet market has evolved from a one-stop shop into segments.”

Identifying a variety of myths associated with mobile banking malware, Klein said complacency by consumers is a dangerous trend that will only become worse once mobile banking increases in popularity.

“Sandboxing provides a malware free device, mobile apps are controlled, and there’s no money to steal in mobile apps are all myths will be proven wrong,” he said.

Citing Zeus attacks as one method that could be used to intercept Blackberry, Symbian and Windows Phone 7 devices, Klein said these attacks have been used to infiltrate banks in countries as varied as Spain, Poland and Germany, saying mobile devices will be even easier to infiltrate.

“Pay attention to how sophisticated and complex this attack is on behalf of the fraudster - what happens if or when mobile banking takes off? Then they will only have the mobile device to take care of.”

Klein's comments come as a US consultant said at AusCERT yesterday that a second Stuxnet worm will soon arrive.

Follow Lisa Banks on Twitter: @CapricaStar

Follow Computerworld Australia on Twitter: @ComputerworldAU

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email Computerworld
Follow Computerworld on twitter

More about: CERT, Symbian

References show all

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Coverage

Related Whitepapers

Top Reasons to Implement an SOA Governance Strategy: A List for IT Executives

Service-oriented architecture (SOA) has moved beyond hype to widespread acceptance as an IT strategy for delivering business value. SOA promotes the notion of modularity, providing overwhelming flexibility and superior economics for addressing business demands. However, undertaking the transformation to SOA is not without its challenges. If left unchecked, your inventory of SOA assets will become unmanageable; the reuse of services will diminish in favor of custom development; or even worse, modifications will be made to your existing services that break other business processes. The purpose of SOA governance is to help you ensure that this does not happen. This paper outlines the most compelling reasons for you to establish SOA governance within your organization.

Featured Download

Gadwin Web Snapshot

Gadwin Web Snapshot will effectively capture the entire page including all design elements when capturing web pages. It makes an image of the browser’s content ...

Zones

Most Popular Whitepapers

Process-Driven Master Data Management for Dummies

We wrote this book to introduce you to the subject of processdriven MDM. It’s a big topic, one that far outstrips the ability of a brief book to cover. However, our hope is that by reading this book you will gain a fundamental understanding of processdriven MDM, how it works, and what it takes to make it a success in your organisation.

Popular tags: Business Management, Security, Data Centre, Storage, Master Data Management

Latest Jobs

FTChange Management ProfessionalsNSW
FTTechnical Services Engineer - ShoreTel/MitelVIC
CCSAP PM ConsultantNSW
FTSenior Network Engineer - Cisco / Nexus / UCS / - Routing / Switching / WirelessNSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTIT Account Manager - System Integrator - Career Progression - Start ImmediatelyNSW
FTSenior Citrix EngineerNSW
CCOBIEE ConsultantWA
CCSAP FICO ConsultantNT
CCAvaya Engineer - ERS 8600 4.1NSW
FTQM Trainer and ConsultantNSW
CCSystem Engineer - Lync and Exchange - CONTRACTSWA
FTSAP Basis ConsultantACT
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTSAP Basis ConsultantNSW
FTProduct Manager Strategist - Enterprise ApplicationsNSW
CCSystem Engineer - Exchange - CONTRACTSWA
FTSenior Citrix EngineerNSW
FTiPhone App DeveloperNSW
FTIT Service Desk EngineerNSW
FTIT Service Desk EngineerNSW
FTiPhone App DeveloperNSW
CCPC Relocation Technicians - Multiple Roles availableSA
FTiPhone App DeveloperNSW
FTiPhone Developer DeveloperNSW

Market Place

AusCERT 2011: Mobile banking malware on the rise

Comments

Post new comment

Alternatives to Raspberry Pi you can get right now

Coalition NBN better or worse?

Bredolab botnet author sentenced to 4 years in prison in Armenia

Alternatives to Raspberry Pi you can get right now

NBN ISS could pose capacity constraints

Which tablet should I buy? iPad 2 vs Sony Tablet S

NBN service plans won't cost consumers more: Conroy

Microsoft at a loss over Event Viewer scam

Stallman: If you want freedom don't follow Linus Torvalds

CeBIT 2012: Will NBN speed up freight delivery times?

Coalition NBN better or worse?

Top Reasons to Implement an SOA Governance Strategy: A List for IT Executives

Case Study: Svenska Kraftnät safeguards web and ensures communication security with Clearswift

Workshifting: How IT is Changing the Way Business is Done

The mobile print enterprise - How IT consumerisaton is driving anytime, anywhere printing

Gadwin Web Snapshot

Avaya Air Cover Zone

Application Lifecycle Management

HP Converged Storage Zone

HP Business Efficiency - Money Payback Guarantee Resource Centre

The Australian Cloud

Process-Driven Master Data Management for Dummies

Business Intelligence Best Practices for Dashboard Design

Learning To Compete: IT’s Next Transformation

Seven Steps to Effective Data Governance

Guidance for Calculation of Efficiency (PUE) in Data Centers

Computerworld newsletter

Don't have an account?

AusCERT 2011: Mobile banking malware on the rise

Comments

Post new comment

Computerworld newsletter