In the first quarter of 2014 spammers started imitating messages from mobile applications. They especially like the popular mobile messengers WhatsApp, Viber and Google Hangouts: notifications purportedly sent from these applications were used to spread both malware and harmless adverts. The rising popularity of mobile devices means that phishing attacks targeting Apple IDs are becoming more frequent.
Many gadget owners are used both to synchronization of their contacts and to the fact that messages from mobile applications can arrive via email, so few would be suspicious of the fact that WhatsApp is not directly linked to an email service. This lack of caution could prove costly, since the attached archive contained the notorious Backdoor.Win32.Androm.bjkd, whose main function is to steal personal data from users.
Altaf Halde, Managing Director, Kaspersky Lab – South Asia said, “The bad guys constantly develop new ways to attack your smart phones and computers in order to steal personal information. Most popular malicious programs are now multifunctional, they can steal data from the victims computer, make the computer part of a botnet or download and install other malicious programs without the user’s knowledge. This is why it is extremely critical to update your operating system, web browser and to keep security software up-to-date. This will reduce the probability of cybercriminals running bad programs onto your computer or mobile device. Kaspersky Lab would also like to remind users that hacked email accounts can allow attackers access to all the information stored in your mailbox including other logins and passwords. We recommend you to use strong passwords and two-factor authentication if possible.”
“Recently we have seen a growth in the number of attacks targeting mobile users. Gadgets have become popular even among those who had little interaction with computers and are less familiar with computer security. This opens up new vectors of attacks for spammers and phishers. To protect themselves, users should remember not to open emails from unknown senders and especially not to click any links in these emails, which inevitably pose a risk to user security. Clicking unsafe links threatens user security regardless of which device is used – they pose a danger to desktop computers and mobile gadgets alike,” said Darya Gudkova, Head of Content Analysis & Research Department at Kaspersky Lab.