Whether you love it or hate it, you know the Norton name. Symantec has been in the business so long it must be tough to come up with a new version each year, right? Well, you wouldn't know it looking at Norton AntiVirus 2011 ($39.99 direct). The product's appearance continues to evolve, and it includes some interesting new features. It scored very well in my tests, though not always at the very top.
Installs in Minutes
Installation is extremely quick and simple. A few minutes after you click "Agree and Install" you're ready to activate and register the product. Yes, it needs a definition update for peak protection, but it normally performs that update during idle time. Naturally I forced a full update before running my tests.
More than half of my malware-infested test systems requested a reboot soon after installation to finish removing active threats. When Norton wouldn't start correctly on one system, the One Click Support screen appeared automatically with a recommendation to fix the problem; it worked.
A full scan of my standard clean system took almost 50 minutes, twice as long as the average. However, by first running an application ratings scan to identify known good programs I cut the scan time down to barely over two minutes—that's fast! Normally this scan for known good programs would happen automatically during idle time.;
New in the 2011 edition, the Norton Insight Network window displays up-to-the-minute statistics on how many files have been identified as good or bad using input from the Norton community. Along the same lines, the new reputation scan examines all files on your disk and reports on three significant stats: trust level, age, and prevalence. Older and more widespread files are naturally considered safer than very new or very uncommon files.
High Scores from the Labs
For years, Norton has consistently received the VB100% award from Virus Bulletin. Both ICSA Labs and West Coast Labs certify Norton technology for virus detection and removal; West Coast adds several additional checkmark certifications. AV-Comparatives rated Norton ADVANCED+ (the top rating) for on-demand malware removal and ADVANCED for proactive detection of new malware. That parallels my own tests, in which Norton outscored the rest for removal but not for blocking.
Both AV-Comparatives and AV-Test ran special real-world tests last year. In the dynamic test by AV-Comparatives only Norton and Kaspersky Internet Security 2010 ($79.95, ) received an ADVANCED+ rating. AV-Test challenged a dozen security products to protect test systems from real-world current threats over a period of two months. Norton detected the most threats, but PC Tools Internet Security 2010 ($49.95, ) edged it into second place for most thorough protection.
Just this August, AV-Test evaluated a collection of security products and rated them on ease of use, success at repairing malware infestations, and overall protection. Kaspersky, Norton and Panda Internet Security 2010 ($49.95, ) shared the top score, with 5 or 5.5 points in each category.
Thorought Malware Cleanup
Norton's full antivirus scan went smoothly on all thirteen of my malware-infested test systems. In most cases, Norton took care of all the threats it found and simply reported on its success at the end—I like that. For low-risk threats or threats whose removal might force closing active programs, Norton asked for permission first. Most of the systems needed a reboot after scan to complete the cleanup process.
At the bottom of the results screen there's a little note: "If you think there are still risks, click here." Doing so takes you to the download page for Norton Power Eraser. This tool performs a more aggressive scan than Norton AntiVirus alone. That means it can remove more threats, but there's also a chance it will flag a valid file as malicious. Symantec points out that any false positives will be uncommon files, since Norton Insight whitelists known good files that are widely used. For testing, though, I just used Norton AntiVirus without piling on Norton Power Eraser.
Norton detected 89 percent of the assorted threats, matching Panda Antivirus Pro 2011 ($50.95, ) and Spyware Doctor with AntiVirus 2010 ($39.95, ). However, Norton was significantly more effective than the other two at removing what it found. It cleaned up almost every trace for nearly half of the threats it found and achieved a malware removal score of 7.9, the highest yet with my current malware collection.
Norton detected 78 percent of the scareware (rogue antivirus) threats. Four other products detected more, but Norton's removal was very effective. With 7.8 points, it came very close to the top scareware removers Ad-Aware Pro Internet Security 8.3 ($29.95, ) and Malwarebytes' Anti-Malware 1.46 (Free, ), both of which got 8.1 points.
In a separate test using commercial keyloggers in place of malware Norton again scored well but not at the top. It detected 86 percent of the threats while Webroot AntiVirus with Spy Sweeper 2011 ($39.95, ) and Spyware Doctor caught 93 percent. Webroot definitely won this test with 7.8 points compared to Norton's 6.9.
Showing posts with label Security. Show all posts
Showing posts with label Security. Show all posts
Monday, April 4, 2011
Thursday, March 31, 2011
McAfee Total Protection 2010 Review
The good: Two massive steps in the right direction kick off the 2010 version of Total Protection: the new interface and the overhauled performance. This version should go a long way to fixing McAfee's battered reputation.
The bad: It might not be clear enough that running a full scan when installing will significantly speed up later scans. There's not much in the way of easily accessible live support, either, so if something goes wrong, it may take a while to get a human on the phone.
The bottom line: McAfee Total Protection 2010 hits many of the right notes. It's easy to use and it's effective, but years of below-average releases will likely leave many users unwilling to give it a try.
Review:
Editors' note: Additional information has been added to the support section of the review since it was originally published. However, the final score for McAfee Total Protection 2010 remains unchanged.
McAfee debuts its 2010 product line today, introducing an overhauled interface and new features in a bid to remain competitive. The change to its interface is as dramatic a shift as the one that Avast introduced in its 2010 suites, although McAfee's new veritcal look is drastically different from any major security program currently on the market. Most of the features in McAfee ... Expand full review
Editors' note: Additional information has been added to the support section of the review since it was originally published. However, the final score for McAfee Total Protection 2010 remains unchanged.
Read more:
The bad: It might not be clear enough that running a full scan when installing will significantly speed up later scans. There's not much in the way of easily accessible live support, either, so if something goes wrong, it may take a while to get a human on the phone.
The bottom line: McAfee Total Protection 2010 hits many of the right notes. It's easy to use and it's effective, but years of below-average releases will likely leave many users unwilling to give it a try.
Review:
Editors' note: Additional information has been added to the support section of the review since it was originally published. However, the final score for McAfee Total Protection 2010 remains unchanged.
McAfee debuts its 2010 product line today, introducing an overhauled interface and new features in a bid to remain competitive. The change to its interface is as dramatic a shift as the one that Avast introduced in its 2010 suites, although McAfee's new veritcal look is drastically different from any major security program currently on the market. Most of the features in McAfee ... Expand full review
Editors' note: Additional information has been added to the support section of the review since it was originally published. However, the final score for McAfee Total Protection 2010 remains unchanged.
Read more:
AVG Internet Securuty Business Edtition Review
AVG Internet Securuty Business Edtition offer complete protection within a network and able to balance resources through intelligent system scan.
Antivirus name of this one is fairly popular in the homeland. Yes, AVG is one of the pioneering exterminator virus that is widely used computer users in Indonesia. The main reason for a fairly easy interface plus a free version that has been used since. Now, AVG Technologies presents a more complete solution by dividing the two products: Home Security and Business Security. The second segment is one of them comes through Internet Security 2011 version of Business Edition.
AVG Internet Security Business Edition 2011 the most complete variant of the 5 others on the product package Business Security. It offers total protection (against viruses, trojans, worms, spyware, and the like) for an office or SoHo users who have a minimum of 5 computers (which connect via a network or the internet). Firewall protection and protection on the e-mail has also been included. In the Business Edition of this series, also provided settings across computers in a network (remote admin), making it easier for security management.
Like other models of Internet Security, AVG IS 2011 BE secure access to the Web with a technology called LinkScanner. LinkScanner module will perform inspection Web pages and links in them secretly (in the background / background) to ensure these sites do not threaten the security of data. The same process was done on search engines Google, Yahoo, and Bing so that each search result will be assigned a rating (rating) specific. The goal is that users know the site / link where a trusted and who not. Techniques such as this we think is very useful to guide the lay user inadvertently open the Web.
The speed of the new version of AVG now detects every threat is also a matter that deserves thumbs up. Any interference will be recognized immediately as well as AVG instantly eradicated. If the threat is not recognized, AVG can automatically report the threat to the server (online). Scanning system and a new Smart Scan is designed to be able to work flexibly. This flexibility is manifested in the form of acceleration is much faster when the PC did not do the weight and walk slowly when the PC was used for other processes.
You are fond of online transactions and accessing social networking sites will be greatly assisted by the presence of firewalls and Identify Protection provided by AVG. All important information like passwords, credit card numbers or other secret code will be protected. The way to prevent any application so as not to seize the valuable information. Users of instant messaging ICQ, MSN, and Yahoo also may perform filtering so as not threatened with a false link or by the presence of undesirable persons. (Deny Prasetyo)
Conclusion
For those of you who want a complete AVG with more features than the free version, AVG Internet Security Business Edition 2011 can be ogled. With the ability to protect the five PCs in a network, this application is suitable for home office owners. Security management is also more easily done via the remote admin facility.
Operating Systems
Windows XP, Vista, 2000, 7, Server
Main Components
Views major components of information security that accompanied the status of a unified look easy to understand. Users also can choose Indonesian if desired.
Priority Scan
Scheduling a scan with a method that can be selected. Priority scan can also be determined whether to be slow (but save resources), fast (resource optimization), or automatic (user-sensitive).
Application Status
Viewing the current application, much like accessing the Services in System Configuration Utility in Windows. Here are displayed the status of file / application with color coded green for safe conditions, yellow for caution, and red is likely to threaten.
Plus: The interface is easy; complete protection; rapid detection capability; available updates offline, there is a remote admin facility; there is a rescue CD.
Minus: detection is sometimes wrong (need updating).
Assessment Score
- Performance: 4/5
- Facilities: 4.25/5
- Usage: 4.25/5
- Price: 3.25/5
- Total Score: 3.98/5
THE KASPERSKY!!!
Kaspersky Labs continues to gain popularity in the security software industry, and it’s easy to see why. Kaspersky Anti-Virus 2011 continues the legacy of providing rock-solid security without sacrificing performance, making it one of the best antivirus software solutions available. Kaspersky Anti-Virus earns the TopTenREVIEWS Silver Award for providing excellent security in an antivirus application that is both professional and easy to use.
Kaspersky Anti-Virus is a comprehensive program, protecting users from a number of threats including bots, worms, Trojans, rootkits, spyware, viruses and other malware. More than just traditional virus scanning, the software includes advanced technologies implemented to detect and prevent new threats.
Some of the new features for 2011 include the new Desktop Security Gadget, System Watcher technology, and additional improvements throughout the software.
Scope of Protection:
As far as desktop antivirus software, Kaspersky Anti-Virus is as all-encompassing as they come. The software is designed to protect users from several angles, effectively detecting, preventing and removing all forms of malware. The antivirus software is equipped to protect users from traditional viruses, but also has advanced technology to protect from even new unknown threats. Furthermore, there are a couple of tools and web-specific features that Kaspersky includes that are normally only found in more comprehensive Internet Security Suites.
Effectiveness:
Kaspersky is known for their quick response to new viruses, and they’re often among the first to detect new viruses in the wild. One reason the software is so effective is because it is updated regularly and is proactively looking for new security threats. The malware landscape continues to change, and Kaspersky adjusts to address the threats.
One new feature worth noting is the System Watcher, which monitors and logs application activity and behavior. If something suspicious is detected, the software stops the process and informs the user. But more than just uncovering stealth threats, System Watcher can rollback your system and actually delete any malware that was created or spread in the process.
The software works in real-time, protecting you as you surf the web, download files, send and receive emails, and access files and documents. Third party testers and security organizations collectively approve and recommend the software as well. Kaspersky has received top marks in recent VB100 (Virus Bulletin 100%) tests, and certification from ICSA. AV Comparatives has awarded the software with an A+, and West Coast Labs has verified the software for anti-virus, anti-spyware, anti-Trojan, and anti-malware. Overall, this software is one of the most effective available, and has the experience and accolades to prove it.
Ease of Installation:
The software is available as a box copy, or you can download the software online and install immediately. The product includes three licenses, and the software works on laptops and netbooks as well. Installation is quick and straightforward, and doesn’t require a restart.
But what if your system is already infected to the extent that you can’t install antivirus software, or even start the computer? If you aren’t able to download the software because of malware, you have the option to download a specialized tool used to preemptively scan your PC and remove the threat to accommodate a clean install.
If your computer is dead, you’ll need the Backup and Rescue Disk, which you can either purchase or create yourself (so remember to do it before your computer dies). This bootable recovery disk can rescue your computer by booting prior to the OS to detect and remove malware, and is a great tool for emergencies.
Ease of Use:
This antivirus software is designed to be simple to use. The software has traditionally been geared towards expert users, but we’ve seen a definite shift to a consumer-level approach in the last few years. The advanced tools are still there (and still plenty strong), but beginners won’t be intimidated. Whether you’re an advanced user looking for intensive controls, or a laid-back user who simply needs protection without constant supervision, Kaspersky will work for you.
The interface is effectively organized and user-friendly. The interface features a color-coded graphic so you always know your security status (the traffic-light color-coded security status is actually bold enough that “at-a-glance" is an understatement; more like “can’t miss it”).
The dashboard is similar to last years’ interface, with left nav tabs and quick access to the quarantine, reports and settings. Accompanying icons and the graphical user interface add accessibility, and are applicable and appealing.
One of the best parts of this security program is that you can set your preferences and let it protect you without constantly monitoring it. Scans and updates are set by to occur automatically by default, and the software includes real-time security as you surf the web, download and open files, or communicate with email or IM. In the event of an infection or potential threat, the software immediately lets you know and provides quick access to identify and fix the problem so you can move on.
Features:
Of course even though the software is easy to use, it is also very customizable. Users can control just about every component of the software to schedule scans, adjust security levels, toggle specific features and even change the appearance of the software. There are several improved features and a couple new ones, all included with the intent to provide better security and overall performance.
Introduced last year, the Kaspersky URL Advisor continues to protect users while online. The browser plug-in is available for IE and Firefox, and stops you from navigating to infected websites. You’ll also be protected from phishing scams.
The software also still utilizes the proprietary iChecker and iSwift scanning technologies to keep you protected without hogging your resources. iChecker makes it possible for the software to identify files that have been opened or changed since the last scan, and only scan them, effectively speeding up scans. iSwift keeps an eye on resource usage and can throttle the resource demand as needed to optimize performance to run faster if the system is idle (or slower if you need the PC resources for other programs).
Some other continued features are the virtual keyboard and gamer mode. While the efficacy is debatable, the virtual terminal lets you input sensitive information (credit card numbers, passwords or other personal information) by clicking on the digital “keyboard” with your mouse. While it’s no way to type an essay, the virtual keyboard does avoid key loggers and keystroke recognition malware attempts to steal your information. The game mode makes it possible to enjoy full-screen video games (or movies) without interruptions.
One new feature that we’d like to highlight is the desktop security gadget. The sleek gadget docks on your desktop and provides better access and awareness to your system security at all times. The antivirus widget will change color if your security is at risk, and includes quick links to the most important aspects of the software. You can even drag and drop files directly to the gadget for an immediate manual scan. The buttons and even the appearance of the gadget can be changed (and if you don’t like it you can always disable it).
Updates:
Frequent updates are essential for effective antivirus and antispyware protection, so Kaspersky Anti-Virus updates on a regular basis for continual security. Updates run in the background automatically, and are frequent enough that they aren’t very big, so you shouldn’t notice any slowdown.
The software isn’t just equipped to keep itself up to date, but can also help you identify and locate essential updates for your system and other applications. The vulnerability scan checks for outdated drivers and can keep you on top of crucial security updates. The tool also identifies settings (like if your computer is set to autorun external media) that you might want to adjust for optimal security.
Help & Support:
Kaspersky offers some great support for all of their product. Technical support comes in the form of a searchable online knowledgebase, FAQs, product manuals and an active form. You can easily access these resources online or from the program itself.
The software also includes context-sensitive helps. Not only are the included help files complete, but they open to information that corresponds with where you are in the software. For more personalized issues you can connect with a support team member over the phone or via online live chat.
Summary:
Overall, Kaspersky Anti-virus 2011 continued to deliver superb protection and security. As one of the best antivirus software, it is robust and integrates innovative technologies to defend from even the newest threats. It’s a great option for protection and PC peace of mind.
Kaspersky Anti-Virus is a comprehensive program, protecting users from a number of threats including bots, worms, Trojans, rootkits, spyware, viruses and other malware. More than just traditional virus scanning, the software includes advanced technologies implemented to detect and prevent new threats.
Some of the new features for 2011 include the new Desktop Security Gadget, System Watcher technology, and additional improvements throughout the software.
Scope of Protection:
As far as desktop antivirus software, Kaspersky Anti-Virus is as all-encompassing as they come. The software is designed to protect users from several angles, effectively detecting, preventing and removing all forms of malware. The antivirus software is equipped to protect users from traditional viruses, but also has advanced technology to protect from even new unknown threats. Furthermore, there are a couple of tools and web-specific features that Kaspersky includes that are normally only found in more comprehensive Internet Security Suites.
Effectiveness:
Kaspersky is known for their quick response to new viruses, and they’re often among the first to detect new viruses in the wild. One reason the software is so effective is because it is updated regularly and is proactively looking for new security threats. The malware landscape continues to change, and Kaspersky adjusts to address the threats.
One new feature worth noting is the System Watcher, which monitors and logs application activity and behavior. If something suspicious is detected, the software stops the process and informs the user. But more than just uncovering stealth threats, System Watcher can rollback your system and actually delete any malware that was created or spread in the process.
The software works in real-time, protecting you as you surf the web, download files, send and receive emails, and access files and documents. Third party testers and security organizations collectively approve and recommend the software as well. Kaspersky has received top marks in recent VB100 (Virus Bulletin 100%) tests, and certification from ICSA. AV Comparatives has awarded the software with an A+, and West Coast Labs has verified the software for anti-virus, anti-spyware, anti-Trojan, and anti-malware. Overall, this software is one of the most effective available, and has the experience and accolades to prove it.
Ease of Installation:
The software is available as a box copy, or you can download the software online and install immediately. The product includes three licenses, and the software works on laptops and netbooks as well. Installation is quick and straightforward, and doesn’t require a restart.
But what if your system is already infected to the extent that you can’t install antivirus software, or even start the computer? If you aren’t able to download the software because of malware, you have the option to download a specialized tool used to preemptively scan your PC and remove the threat to accommodate a clean install.
If your computer is dead, you’ll need the Backup and Rescue Disk, which you can either purchase or create yourself (so remember to do it before your computer dies). This bootable recovery disk can rescue your computer by booting prior to the OS to detect and remove malware, and is a great tool for emergencies.
Ease of Use:
This antivirus software is designed to be simple to use. The software has traditionally been geared towards expert users, but we’ve seen a definite shift to a consumer-level approach in the last few years. The advanced tools are still there (and still plenty strong), but beginners won’t be intimidated. Whether you’re an advanced user looking for intensive controls, or a laid-back user who simply needs protection without constant supervision, Kaspersky will work for you.
The interface is effectively organized and user-friendly. The interface features a color-coded graphic so you always know your security status (the traffic-light color-coded security status is actually bold enough that “at-a-glance" is an understatement; more like “can’t miss it”).
The dashboard is similar to last years’ interface, with left nav tabs and quick access to the quarantine, reports and settings. Accompanying icons and the graphical user interface add accessibility, and are applicable and appealing.
One of the best parts of this security program is that you can set your preferences and let it protect you without constantly monitoring it. Scans and updates are set by to occur automatically by default, and the software includes real-time security as you surf the web, download and open files, or communicate with email or IM. In the event of an infection or potential threat, the software immediately lets you know and provides quick access to identify and fix the problem so you can move on.
Features:
Of course even though the software is easy to use, it is also very customizable. Users can control just about every component of the software to schedule scans, adjust security levels, toggle specific features and even change the appearance of the software. There are several improved features and a couple new ones, all included with the intent to provide better security and overall performance.
Introduced last year, the Kaspersky URL Advisor continues to protect users while online. The browser plug-in is available for IE and Firefox, and stops you from navigating to infected websites. You’ll also be protected from phishing scams.
The software also still utilizes the proprietary iChecker and iSwift scanning technologies to keep you protected without hogging your resources. iChecker makes it possible for the software to identify files that have been opened or changed since the last scan, and only scan them, effectively speeding up scans. iSwift keeps an eye on resource usage and can throttle the resource demand as needed to optimize performance to run faster if the system is idle (or slower if you need the PC resources for other programs).
Some other continued features are the virtual keyboard and gamer mode. While the efficacy is debatable, the virtual terminal lets you input sensitive information (credit card numbers, passwords or other personal information) by clicking on the digital “keyboard” with your mouse. While it’s no way to type an essay, the virtual keyboard does avoid key loggers and keystroke recognition malware attempts to steal your information. The game mode makes it possible to enjoy full-screen video games (or movies) without interruptions.
One new feature that we’d like to highlight is the desktop security gadget. The sleek gadget docks on your desktop and provides better access and awareness to your system security at all times. The antivirus widget will change color if your security is at risk, and includes quick links to the most important aspects of the software. You can even drag and drop files directly to the gadget for an immediate manual scan. The buttons and even the appearance of the gadget can be changed (and if you don’t like it you can always disable it).
Updates:
Frequent updates are essential for effective antivirus and antispyware protection, so Kaspersky Anti-Virus updates on a regular basis for continual security. Updates run in the background automatically, and are frequent enough that they aren’t very big, so you shouldn’t notice any slowdown.
The software isn’t just equipped to keep itself up to date, but can also help you identify and locate essential updates for your system and other applications. The vulnerability scan checks for outdated drivers and can keep you on top of crucial security updates. The tool also identifies settings (like if your computer is set to autorun external media) that you might want to adjust for optimal security.
Help & Support:
Kaspersky offers some great support for all of their product. Technical support comes in the form of a searchable online knowledgebase, FAQs, product manuals and an active form. You can easily access these resources online or from the program itself.
The software also includes context-sensitive helps. Not only are the included help files complete, but they open to information that corresponds with where you are in the software. For more personalized issues you can connect with a support team member over the phone or via online live chat.
Summary:
Overall, Kaspersky Anti-virus 2011 continued to deliver superb protection and security. As one of the best antivirus software, it is robust and integrates innovative technologies to defend from even the newest threats. It’s a great option for protection and PC peace of mind.
How Save Is Your Smartphone?
Smartphones are getting pretty clever these days but it is unlikely they will outwit the cybercriminals as fraudsters increasingly go mobile.
Last week Android Market, the shop front for applications aimed at Android smartphones, was hit by around 60 malicious apps.
It is thought that they did little real damage other than to Android's reputation, but the incident put the issue of mobile security back in the headlines.
Phones are attractive to criminals because they are essentially mini computers but with some important added extras.
"Phones also have direct access to address books, calendars as well as offering an ability to generate revenue," said Ian Fogg, an analyst with Forrester Research.
The type of personal data typically stored on a phone opens up a rich new vein for the modern fraudster's preferred crime - identity theft.
However, a more immediate income can be made from so-called rogue dialling programs - malicious bits of code capable of placing calls, unbeknown to the owner.
They are, according to Ovum analyst Graham Titterington, the "number one malware threat" to smartphones.
"Rogue dialling connects the phone automatically to a premium number that invariably belongs to a crook based in another country," he explained.
But it is not an insurmountable issue, he thinks.
"I don't understand why the mobile operators can't just cut off payments - then the problem goes away. But this type of international co-operation seems to be lacking at the moment," said Mr Titterington.
The close relationship between smartphones and location poses a risk that malicious apps will be able to track exactly where a person is at any given time.
"It could even be that it would be used to find out when someone is away from home," said Mr Fogg.
While it sounds scary, these nightmare scenarios are very far removed from the real picture, for the moment at least.
"So far there has been no major detrimental impact on consumers," points out Ben Wood, an analyst from CCS Insight."There will be a day when there is a catastrophic security lapse and then people will start taking it more seriously," he added.
Android may have hit the headlines but all smartphone operating systems have been targeted by malware of one kind or another.
To date, most iPhone security lapses have focused on offering users the power to break free from Apple's control with software that 'jailbreaks' the iPhone, a modification which enables users to run non-Apple approved software.
Continue reading the main story
TOP FIVE MOBILE MALWARES
Android - DroidDream - the most recent and most advanced piece of malware hit apps and allowed product ID and userID of phone to be transmitted to remote server
Android - Market Security Tool - the update sent to wipe rogue Android apps has already been hacked and injected with malware. Being distributed via 3rd party app stores in China.
Zeus-in-the-mobile - a trojan working with the Windows virus Zeus, affecting Symbian and Blackberry handsets and aiming to steal online banking details.
Android - Geinimi - similar to the market app attack, it took official apps, added malware and released them via Asian app markets. Could send SMSs, harvest phone data and make phone calls.
Android - ADRD - another trojan that pirated official Android apps.
Source: BullGuard
"These hacks are often reported as a good thing but from a security point of view it is a nightmare," said Mr Fogg.
Several bugs have taken advantage of jail-broken phones.
A relatively harmless iPhone worm which changed the handset's wallpaper to a picture of Rick Astley was followed a few months later with a more serious bug that targeted people using their iPhones for internet banking with Dutch online bank ING.
Blackberry handsets and Symbian phones have been targeted by a mobile version of the Zeus trojan. Victims were directed to a fake website where they are invited to download an app which then steals their banking details.
Such phishing attacks are likely to become a huge problem for smartphones, thinks Alex Vaystikh a researcher from security firm RSA.
"You can't always see the whole screen and you might be more likely to click on things you wouldn't click on a computer screen," he said.
And when mobile banking reaches a critical mass, there will be a good reason for criminals to phish from mobiles.
"There needs to be a financial incentive and that incentive isn't there right now, but consumers definitely want more service on their mobiles, like electronic wallets and banking, so the potential is huge," said Mr Vaystikh.
There are various ways to attack a mobile phone but by far the most popular is through downloadable applications.
Some experts think that Android's Marketplace is especially vulnerable because it is more open than Apple and Microsoft's systems.
Continue reading the main story
“
Start Quote
We are going to have to see a re-engineering of the infrastructure of how apps are delivered”
Graham Titterington
Ovum analyst
"All have restrictions and guidelines and stipulate no pornography, no viruses and no spyware," explained Phillip Dall, from mobile security firm BullGuard.
"But with the iPhone and Ovi store, apps are sent for some pretty serious testing. At Android the process is different, there are far more self-signed applications," he said.
Others think that there are other aspects to Android which make it just as secure, such as its policy of letting users know what data and resources an app will have access to, giving more savvy users the chance to spot obvious malware.
Google has said that it has no current plans to start pre-screening apps on Android Market.
It said that the recent spate of malicious applications could only access device-specific data.
The company did take the step of remotely "killing" them on all affected phones, proving, if nothing else, that it does ultimately have control over its apps.
There is also a question about how long Apple and Microsoft can continue pre-screening their applications, according to Mr Fogg.
"It is becoming an app internet as they become the primary way people go online, but the sheer volume of them makes human moderation impossible," he said.
Apple does not discuss how it tests apps but it is believed to use both human moderation and automated systems.
Mr Titterington thinks that there needs to be an industry-wide sea-change in mobile security.
"There is a need for Apple and Google to put in place a quality framework - a series of standard tests that issue apps with a health certificate," he said.
And it needs to be made less easy for users to install rogue apps.
"We are going to have to see a re-engineering of the infrastructure of how apps are delivered," he added.
"We need a more proactive approach to installing apps. It isn't going to happen in current generation of phones but maybe in the next two to three years."
Last week Android Market, the shop front for applications aimed at Android smartphones, was hit by around 60 malicious apps.
It is thought that they did little real damage other than to Android's reputation, but the incident put the issue of mobile security back in the headlines.
Phones are attractive to criminals because they are essentially mini computers but with some important added extras.
"Phones also have direct access to address books, calendars as well as offering an ability to generate revenue," said Ian Fogg, an analyst with Forrester Research.
The type of personal data typically stored on a phone opens up a rich new vein for the modern fraudster's preferred crime - identity theft.
However, a more immediate income can be made from so-called rogue dialling programs - malicious bits of code capable of placing calls, unbeknown to the owner.
They are, according to Ovum analyst Graham Titterington, the "number one malware threat" to smartphones.
"Rogue dialling connects the phone automatically to a premium number that invariably belongs to a crook based in another country," he explained.
But it is not an insurmountable issue, he thinks.
"I don't understand why the mobile operators can't just cut off payments - then the problem goes away. But this type of international co-operation seems to be lacking at the moment," said Mr Titterington.
The close relationship between smartphones and location poses a risk that malicious apps will be able to track exactly where a person is at any given time.
"It could even be that it would be used to find out when someone is away from home," said Mr Fogg.
While it sounds scary, these nightmare scenarios are very far removed from the real picture, for the moment at least.
"So far there has been no major detrimental impact on consumers," points out Ben Wood, an analyst from CCS Insight."There will be a day when there is a catastrophic security lapse and then people will start taking it more seriously," he added.
Android may have hit the headlines but all smartphone operating systems have been targeted by malware of one kind or another.
To date, most iPhone security lapses have focused on offering users the power to break free from Apple's control with software that 'jailbreaks' the iPhone, a modification which enables users to run non-Apple approved software.
Continue reading the main story
TOP FIVE MOBILE MALWARES
Android - DroidDream - the most recent and most advanced piece of malware hit apps and allowed product ID and userID of phone to be transmitted to remote server
Android - Market Security Tool - the update sent to wipe rogue Android apps has already been hacked and injected with malware. Being distributed via 3rd party app stores in China.
Zeus-in-the-mobile - a trojan working with the Windows virus Zeus, affecting Symbian and Blackberry handsets and aiming to steal online banking details.
Android - Geinimi - similar to the market app attack, it took official apps, added malware and released them via Asian app markets. Could send SMSs, harvest phone data and make phone calls.
Android - ADRD - another trojan that pirated official Android apps.
Source: BullGuard
"These hacks are often reported as a good thing but from a security point of view it is a nightmare," said Mr Fogg.
Several bugs have taken advantage of jail-broken phones.
A relatively harmless iPhone worm which changed the handset's wallpaper to a picture of Rick Astley was followed a few months later with a more serious bug that targeted people using their iPhones for internet banking with Dutch online bank ING.
Blackberry handsets and Symbian phones have been targeted by a mobile version of the Zeus trojan. Victims were directed to a fake website where they are invited to download an app which then steals their banking details.
Such phishing attacks are likely to become a huge problem for smartphones, thinks Alex Vaystikh a researcher from security firm RSA.
"You can't always see the whole screen and you might be more likely to click on things you wouldn't click on a computer screen," he said.
And when mobile banking reaches a critical mass, there will be a good reason for criminals to phish from mobiles.
"There needs to be a financial incentive and that incentive isn't there right now, but consumers definitely want more service on their mobiles, like electronic wallets and banking, so the potential is huge," said Mr Vaystikh.
There are various ways to attack a mobile phone but by far the most popular is through downloadable applications.
Some experts think that Android's Marketplace is especially vulnerable because it is more open than Apple and Microsoft's systems.
Continue reading the main story
“
Start Quote
We are going to have to see a re-engineering of the infrastructure of how apps are delivered”
Graham Titterington
Ovum analyst
"All have restrictions and guidelines and stipulate no pornography, no viruses and no spyware," explained Phillip Dall, from mobile security firm BullGuard.
"But with the iPhone and Ovi store, apps are sent for some pretty serious testing. At Android the process is different, there are far more self-signed applications," he said.
Others think that there are other aspects to Android which make it just as secure, such as its policy of letting users know what data and resources an app will have access to, giving more savvy users the chance to spot obvious malware.
Google has said that it has no current plans to start pre-screening apps on Android Market.
It said that the recent spate of malicious applications could only access device-specific data.
The company did take the step of remotely "killing" them on all affected phones, proving, if nothing else, that it does ultimately have control over its apps.
There is also a question about how long Apple and Microsoft can continue pre-screening their applications, according to Mr Fogg.
"It is becoming an app internet as they become the primary way people go online, but the sheer volume of them makes human moderation impossible," he said.
Apple does not discuss how it tests apps but it is believed to use both human moderation and automated systems.
Mr Titterington thinks that there needs to be an industry-wide sea-change in mobile security.
"There is a need for Apple and Google to put in place a quality framework - a series of standard tests that issue apps with a health certificate," he said.
And it needs to be made less easy for users to install rogue apps.
"We are going to have to see a re-engineering of the infrastructure of how apps are delivered," he added.
"We need a more proactive approach to installing apps. It isn't going to happen in current generation of phones but maybe in the next two to three years."
Subscribe to:
Posts (Atom)