The recent Lookout report reveals a concerning trend in the mobile threat landscape, with cybercrime groups increasingly targeting mobile devices in the early stages of their attacks. The report highlights a significant increase in enterprise-focused credential theft and phishing attempts, as well as a rise in malicious app detections.
One key finding of the report is the vulnerability of iOS devices to phishing attacks compared to Android devices. This trend has led to a higher percentage of phishing attacks targeting iOS devices in the third quarter of 2024. The report also points out common device misconfigurations that make devices more susceptible to attacks, such as out-of-date operating systems and lack of encryption.
Researchers have identified new mobile surveillance tools linked to Chinese and Russian advanced persistent threat (APT) groups, including Gamaredon. These tools have been used to develop malicious apps that can range from trojan malware to sophisticated spyware. The prevalence of mobile phishing and malicious web content has led to various cyber attacks, including business email compromise (BEC) scams, MFA bypass attacks, and vulnerability exploitation.
One concerning development is the use of executive impersonation attacks, where attackers leverage the seniority of an executive to manipulate lower-level employees into sharing sensitive information or transferring money. This tactic has proven to be highly effective due to the urgency created by the attackers and the lack of familiarity between the executive and the targeted employee.
Mobile devices are increasingly targeted by attackers to breach enterprise cloud systems, with Android surveillanceware being a common threat. Vulnerabilities in mobile browsers, particularly Chromium-based browsers, are frequently exploited by attackers to gain access to devices. Additionally, vulnerabilities in social media, messaging, and authentication apps pose a risk to users who have not updated to patched versions.
Organizations are urged to prioritize advanced mobile threat defense as part of their security strategy to counter the evolving threat landscape. With the commoditization of advanced malware and the growing capabilities of nation-state mobile malware, organizations must take proactive steps to protect their sensitive data and systems from cyber attacks.
David Richardson, VP of Endpoint at Lookout, emphasizes the importance of advanced Mobile Threat Defense (MTD) solutions to safeguard devices and the sensitive data they connect to. The findings in the Lookout Mobile Threat Landscape Report are based on data collected from over 220 million devices, 360 million apps, and billions of web items through the Lookout Security Cloud’s AI-driven mobile dataset.