The mobile threat landscape is a dynamic ecosystem in perpetual motion. Cybercriminals are constantly renewing their attack techniques to access valuable data, challenging the capabilities of traditional mobile security solutions. Mobile threat defense technology was conceived to tackle the onslaught of cyberthreats targeting enterprise mobility that standard security solutions have failed to address. Some security experts even note that emerging mobile threats can only be countered with the help of artificial intelligence (AI) and machine learning, both of which are essential to any reliable protection strategy.

Data Exfiltration Is a Serious Threat

Pradeo’s most recent mobile security report found that 59 percent of Android and 42 percent of iOS applications exfiltrate the data they manipulate. Most mobile applications that leak data are not malicious, as they don’t feature any malware. They operate by silently collecting as much data as they can and sending that data over networks, sometimes to unverified servers. The harmful aspect of these apps resides in the fact that they seem perfectly safe to the security checks of marketplaces such as Google Play and App Store, and as a result, these platforms feature many such apps.

Zero-Day Malware Is Growing at a Fast Pace

There are two main categories of malware: the type that has a recognizable viral signature that is included in virus databases, and the zero-day type that features new, uncategorized behaviors. Researchers at Pradeo observed a 92 percent increase in the amount of zero-day malware detected between January and June 2018 on the mobile devices the company secures, compared to a 1 percent increase in known malware. These figures demonstrate how threat actors are constantly renewing their efforts with new techniques to overcome existing security measures.

Enhance Your Mobile Threat Defense With AI

Mobile threats such as leaky apps and zero-day malware are growing both in number and severity. Antivirus and score-based technologies can no longer detect these threats because they rely on viral databases and risk estimations, respectively, without being able to clearly identify behaviors.

To protect their data, organizations need mobile security solutions that automatically replicate the accuracy of manual analysis on a large scale. To precisely determine the legitimacy of certain behaviors, it’s essential to take into consideration the context and to correlate it with security facts. Nowadays, only AI has the capacity to enable a mobile threat defense solution with this level of precision by putting machine learning and deep learning into practice. With these capabilities, undeniable inferences can be drawn to efficiently counter current and upcoming threats targeting enterprise mobility.

Read the 2018 Mobile Security Report from Pradeo

More from Endpoint

The Evolution of Antivirus Software to Face Modern Threats

Over the years, endpoint security has evolved from primitive antivirus software to more sophisticated next-generation platforms employing advanced technology and better endpoint detection and response.  Because of the increased threat that modern cyberattacks pose, experts are exploring more elegant ways of keeping data safe from threats.Signature-Based Antivirus SoftwareSignature-based detection is the use of footprints to identify malware. All programs, applications, software and files have a digital footprint. Buried within their code, these digital footprints or signatures are unique to the respective…

Contain Breaches and Gain Visibility With Microsegmentation

Organizations must grapple with challenges from various market forces. Digital transformation, cloud adoption, hybrid work environments and geopolitical and economic challenges all have a part to play. These forces have especially manifested in more significant security threats to expanding IT attack surfaces. Breach containment is essential, and zero trust security principles can be applied to curtail attacks across IT environments, minimizing business disruption proactively. Microsegmentation has emerged as a viable solution through its continuous visualization of workload and device communications…

Self-Checkout This Discord C2

This post was made possible through the contributions of James Kainth, Joseph Lozowski, and Philip Pedersen. In November 2022, during an incident investigation involving a self-checkout point-of-sale (POS) system in Europe, IBM Security X-Force identified a novel technique employed by an attacker to introduce a command and control (C2) channel built upon Discord channel messages. Discord is a chat, voice, and video service enabling users to join and create communities associated with their interests. While Discord and its related software…

3 Reasons to Make EDR Part of Your Incident Response Plan

As threat actors grow in number, the frequency of attacks witnessed globally will continue to rise exponentially. The numerous cases headlining the news today demonstrate that no organization is immune from the risks of a breach. What is an Incident Response Plan? Incident response (IR) refers to an organization’s approach, processes and technologies to detect and respond to cyber breaches. An IR plan specifies how cyberattacks should be identified, contained and remediated. It enables organizations to act quickly and effectively…