![\"maslennikov\"](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/103\/2013\/03\/06051254\/maslennikov.jpg\")
<\/a>\u00a0<\/b><\/p>\nAndroid is now the most popular operating system. I wonder, what types of malicious applications affect it, apart from those which like sending SMS messages?<\/b><\/p>\n
Today, SMS Trojans still remain the most widespread malware in Android environments. However, we have seen a dramatic growth in the popularity of backdoors that can communicate with C&C servers, receiving commands from the cybercriminal. Apart from that, spy Trojans are also widespread; this type of malware steals various kinds of information stored on smartphones.<\/p>\n
\u00a0<\/p>\n
Can we believe Microsoft\u2019s specialists when they say that <\/b>iPhone jailbreaking is completely safe?<\/b><\/b><\/p>\n
You are probably talking about the new method of jailbreaking Windows RT that appeared in early January. Microsoft\u2019s official comment contained a statement that this specific method of launching applications that are not signed by Microsoft does not pose a security threat to users. In my opinion, this is not completely true. If any method to bypass security mechanisms that are integrated into the operating system and protect against launching unsigned applications exists, it is a security threat.<\/p>\n
\u00a0<\/p>\n
I hear there are PC viruses that intrude into BIOS firmware and damage your PC, and there is no way for a regular user to detect or repair that damage.\u00a0 Are there similar viruses for mobile devices?<\/b><\/b><\/p>\n
It was CIH, aka Chernobyl, that caused the damage on PCs. According to various estimates, in the late 1990s some half a million of computers all over the world were affected by that malicious program. A more detailed description<\/a> is available. Up to now, nothing of that kind has been detected for mobile devices.<\/p>\n \u00a0<\/b><\/p>\n When installing some Android applications, security products typically detect NoAds-type viruses (these are viruses that are not associated with spam). They get detected even in applications that were previously clean (I downloaded a Skype update from Google Play, then waited until a newer update became available). In which cases I can trust viruses, and in which should I not?<\/b><\/p>\n You should not \u201ctrust\u201d viruses in any cases J. Joking apart, the ads in various legal freeware applications quite often lead to malicious sites that contain a diversity of malware. For example, while playing a free version of Angry Birds, you see a pop-up banner that prompts you to urgently update your Opera mobile browser. It doesn\u2019t matter that Opera may not even be installed on the device. That sort of ad is most likely to lead to a malicious site, from which you could end up downloading malware under the guise of an update.<\/p>\n \u00a0<\/p>\n I have <\/b>lgp350 Android2.2. Will new versions of Kaspersky be supported and stable working on older devices? And secondly, how can I find out about beta launches and participate in product testing for mobile devices, whether on user forums or elsewhere?<\/b><\/p>\n Android 2.2 is the minimum system requirement for using KMS. Anyone can participate in beta testing, provided that he\/she has an Android smartphone. To do so, you will have to register at Kaspersky Lab\u2019s official forum and leave the appropriate request at the sub-forum for testing mobile device security solutions. New testing announcements <\/a>are published in the same place.<\/p>\n \u00a0<\/b><\/p>\n What\u2019s your stance on different modifications of Android? E.g. <\/b>CyanogenMod, MIUI etc.<\/b><\/p>\n From a security standpoint, our general view is negative. Installing third-party firmware often opens up extra opportunities for cybercriminals to infect smartphones and thus gain control over them. When a user is about to install such a modification, it is important that the he\/she makes a conscious decision to do so.<\/p>\n \u00a0<\/p>\n What viruses currently pose the most immediate threat to PCs and mobile devices?<\/b><\/p>\n You can find detailed information about current threats in Kaspersky Lab\u2019s security bulletins:<\/p>\n Security Bulletin 2012:\u00a0The Overall Statistics for 2012<\/a>\u00a0and\u00a0Kasperksy Security Bulletin 2012: Malware Evolution<\/a><\/p>\n As for mobile devices, part six of Mobile Malware Evolution<\/a> was published recently.<\/p>\n \u00a0<\/p>\n Denis, how easy is it for cybercriminals to penetrate a mobile device? For me, adware is the most malicious type of mobile software. What do you think?<\/b><\/p>\n Actually, social engineering is the easiest and the most effective method to infect mobile devices; it has been that way for a number of years. At the moment, cybercriminals usually need to do little more than camouflage their malware program as, say, a popular software update or new levels for a popular game; with this, cybercriminals can successfully infect smartphones. Sadly, users keep falling for such tricks: they install various malicious programs all by themselves, ignoring the list of permissions that the program requires. Undoubtedly, increasingly more sophisticated methods will keep emerging in the near future, such as drive-by infections. By and large, today it is even easier for cybercriminals to infect smartphones than PCs.<\/p>\n \u00a0<\/p>\n Today, there are tons of iOS mobile applications available in AppStore which keep confidential information, such as passwords, credit card details etc. Is it secure to keep information in them? I\u2019m most interested in applications which store data in the cloud and transmit them between the user\u2019s devices (iPhone, iPad, PC). If it is secure, could you please recommend one.<\/b><\/p>\n The security of these applications depends on whether the developers take a responsible approach to their product: ensuring the security of the application itself, the robustness of the encryption algorithms used, proper testing procedures and rapid response to any bugs. If cloud-based services become part of the equation, new factors arise, such as how well protected a specific cloud is, how secure the data channels are, and many others. Basically, your own memory is likely to be the most reliable place to store long and complex passwords that are unique for each individual serviceJ<\/b><\/p>\n \u00a0<\/b><\/p>\n There are applications which can isolate and differentiate between work and personal content on one smartphone \u2013 particularly, for Android. If the smartphone is infected by a virus, what information is at risk \u2013 business, personal or both? <\/b><\/p>\n Up to now we have not encountered malware which targets data located in \u201ccontainers\u201d.\u00a0 In theory, the possibility of any information theft depends on how well these containers are protected and how reliably the data access policies are set.<\/p>\n This software is appearing because in 2012 a so-called BYOD policy, or bring your own device, gained wide popularity. That is when a personal device is used for work purposes. This can offer obvious advantages to organizations, but when any company allows personal devices to access working data it is vital to consider the protection of those devices and data.<\/p>\n \u00a0 What is your opinion on NFC technology (payment via smartphone)? Are you a supporter or opponent of such \u201cshort\u00a0cuts\u201d? How do you see it from security point of view?<\/b><\/p>\n NFC is a technology which might, of course, help to make different payments easier. But for cybercriminals it\u2019s a new opportunity to steal money from users. And when this technology is widespread and popular among users, hackers will definitely try to attack it and steal money.<\/p>\n Some vulnerabilities have already been discovered. Fortunately, there have been no massive attacks, but I fearit\u2019s only a question of time and popularity.<\/p>\n \u00a0<\/b><\/p>\n What is the most common mobile malware? How can I avoid them, and how can I get rid of them?<\/b><\/p>\n The latest trends are described here<\/a> As for avoiding mobile malware: 1. Don\u2019t click on suspicious links in SMS\/Email\/Social media\/IM messages 2. Avoid jailbreaking\/rooting 3. Use encryption for critical information stored on a device 4. Do not use untrusted Wi-Fi networks 5. Update your OS and third-party software regularly 6. Use a complex security solution with a remote wipe\/block feature 7. Don\u2019t think that your mobile device is safer than your PC.<\/p>\n \u00a0<\/p>\n What is the simplest solution to avoid having my Android cell phone hacked?<\/b><\/p>\n Remove the battery and SIM card from the smartphone, break your device in half, put everything to a metal box, pour cement over it and bury it J OK, just kidding. See the previous answer.<\/p>\n \u00a0<\/p>\n What are the risks of installing pirate software?<\/b><\/b><\/p>\n If you install pirated software from untrusted sources, there\u2019s always a risk that it will not only be pirated but also \u2018trojanized\u2019. And when installing hacked versions of paid games or apps you will also infect your device with malware.<\/p>\n \u00a0<\/b><\/p>\n Are free apps more dangerous than paid ones? <\/b><\/p>\n If we are talking about official apps from an official app store then it is possible that the apps will show ads to user. And unfortunately sometimes clicking on these ads leads to malicious sites which spread different types of malware.<\/p>\n Do users accept too many uncontrolled permissions on apps? Many apps require unlimited control of your mobile device (i.e., contact list). How can we limit those app privileges?<\/b><\/p>\n I agree that sometimes various applications require a lot of permissions. And unfortunately users don\u2019t read them carefully or fully understand what they are installing and what they are actually allowing. There is only one way to stop it: don\u2019t install the app. But you have to accept all the permissions if you want to use this or that application.<\/p>\n Sometimes reading all the permissions carefully might help you to avoid an infection. Just think, for example, why does a 23 KB \u2018media player\u2019 app need to send text messages or access the contact list? Of course, there\u2019s no need for this app to do any of that.<\/p>\n \u00a0<\/p>\n What software do you use?<\/b><\/p>\n Windows 7, Far file manager, Microsoft Office, various browsers, archivers, disassembling software and a lot of internal tools.<\/p>\n \u00a0<\/p>\n Monitoring and analyzing must be a constant and endless job. How do you refresh yourself?<\/b><\/p>\n There are many ways ;) Watching movies, reading, listening to my favorite music, drumming, gaming or just simply walking. If I have a week or two for a holiday, I go to the mountains.<\/p>\n \u00a0<\/p>\n My Android smartphone is now a part of my life, just like my PC. Do you think Android devices need a firewall to prevent network threats?<\/b><\/p>\n I think that every mobile device needs a complex security solution which can help to avoid various security risks.<\/p>\n \u00a0<\/p>\n What should I keep in mind for safe use of tethering?<\/b><\/p>\n If you share your Internet connection, then make sure that you\u2019re sharing it with trusted devices. If you\u2019re using someone\u2019s shared connection, then make sure that it is a trusted device and the owner of the device won\u2019t try to sniff your traffic.<\/p>\n \u00a0<\/b><\/p>\n So, do we need an antivirus for <\/b>\u041c\u0430\u0441<\/b> OS X 10.8.2? The guys from Apple are insisting we can safely forget about viruses and antiviruses \u2013 they are either absent or the system is highly resistant to viruses. I have a Pro and an iMac and I worry about them\u2026\u00a0 <\/b><\/p>\n Mac viruses exist.\u00a0 Generally they use vulnerabilities in software like Flash or Java. The latest serious accident was the detection of Flashfake <\/a>(a.k.a. Flashback) \u2013 a malicious program which, by the end of April 2012, had infected over 748,000 Mac OS X computers.<\/p>\n Don\u2019t forget that there are also threats which are not unique to any operating system: phishing and infected web pages can threaten any device that has an Internet connection.<\/p>\n \u00a0<\/p>\n Please explain the functions of mobile Trojans\/worms compared to normal computer malware.<\/b><\/p>\n Behaviors in mobile malware don\u2019t differ from computer malware. There are spying Trojans, downloaders, backdoors, exploits, adware, various destructive Trojans, etc. But there\u2019s one exception. In mobile malware we also deal with SMS Trojans. These are malicious applications which send expensive text messages to premium rate numbers without the user\u2019s consent.<\/p>\n<\/a><\/b><\/p>\n
\n<\/a><\/p>\n<\/a><\/p>\n