How does malware work on your device?
Before we start, it is better to learn more about our enemy. Mobile malware attacks an Android device by means of attack vectors, which allow hackers to raise permission levels and gain access to the data on the device so as to produce malicious outcomes. Examples of attack vectors are viruses, email spam, bogus SMS, questionable websites and untrusted apps. After the malware gets onto the device, it can jeopardize the user in various ways such as stealing credentials, tallying phone calls then sending them to cybercriminals, as well as sending expensive text messages behind the user’s back.
Dos and Don’ts
1. Set a PIN, password or a pattern as the screen lock to avoid the wrong people from accessing your phone. Use the built-in encryption to encode your data and settings so that no one can get access to your device via the USB port.
2. Avoid keeping too much personal information on your device. Sensitive personal data such as credit card details and account passwords should be kept in encrypted files.
3. Don’t download random apps. Although the Android OS allows you to download and install apps basically from everywhere, it is unwise to put everything on your device, especially those from unknown sources. Instead, install apps only from the official Play Store. That is not to say that the Store itself is foolproof, but, you know, better the devil you know than the devil you don't know.
4. Read twice before you download an app. There are fake apps created to imitate popular mainstream apps, with their name closely resembling the genuine version. Not all duplicates are evil-minded, but even so, you would want to play it safe and avoid installing them.
5. Disable the ‘Unknown sources’ option in the security settings if possible. This can block installation of non-Market apps on your device.
6. Think twice before you root your device in order to install a custom ROM. While a custom ROM allows more freedom and lets your Android device runs more efficiently, there is always the other side of the coin—malware can manipulate the operating system to obtain root permission and install software on your device without your consent.
7. Avoid using unencrypted Wi-Fi hotspots as someone may snoop through your personal data using packet-sniffing software.
8. Install an anti-malware app on your device to make sure it is well-protected. Here are some effective anti-virus and anti-malware apps: Lookout Security & Antivirus, Kaspersky Mobile Security, and McAfee Antivirus & Security.
9. Always keep your device up to date on the latest firmware. Firmware updates can improve your phone performance as well as provide better protection.
10. If you unfortunately lose your handset, use apps such as Lookout, Track&Protect and Where's my Droid, to help you track your phone. You may also use the apps to remotely lock the device or even wipe the data on it.
Sources:
http://reviews.cnet.co.uk/mobile-apps/how-to-improve-your-android-security-50009497/
http://thenextweb.com/google/2012/10/05/over-60-percent-of-android-malware-comes-from-one-family-hides-in-fake-versions-of-popular-apps/
http://net.cs.uni-bonn.de/fileadmin/user_upload/plohmann/2012-Schulz-Android_Security_Common_Attack_Vectors.pdf
No comments:
Post a Comment