Malicious mobile apps dominate in top 20 most downloaded 2017 category

As consumers around Britain get to grips with new smartphones and tablets gifted over the festive season, many risk downloading malicious apps without realising.

  • 6 years ago Posted in
New research from digital threat management leader RiskIQ discovered that there are far more blacklisted apps (5%) than official ones (3.7%) containing the same title as the top 20 most popular apps. The app titles we inspected were taken from a recent ranking of the most downloaded apps of 2017. While many appear to be complementary to the official apps, there is a risk of downloading a malicious imposter in the rush to build out an app portfolio.
 
RiskIQ analysed over 14 million apps across 176 app stores and found that out of the 97,127 apps containing the top 20 app names in the title, only 3,613 (3.7%) were from the official developers. Shockingly 4,908 (5%) of the apps have been flagged by one or more security vendors as containing malware or nuisanceware such as unwanted ad servers.
 
Whether receiving a new mobile device for Christmas or a hand-me-down from someone else getting a new device, people should exercise caution in the apps they are downloading.
 
While sticking to the official app stores is sound advice, malicious apps lurk there as well. Here are 3 simple tips to follow. 
 
1.             Look at the developer name - does it look legitimate? If unsure, research it before proceeding.
2.             Look at the permissions it is requesting. Do these look reasonable for the tasks the app needs to perform?
3.             Look at the number of downloads if available as well as the reviews.
 
Together these should help prevent unwanted surprises.
Research shows ‘game needs to be changed,’ with security innovation years behind that of the...
73% of organizations lack automated patch management, and 62% experienced incidents involving...
Quest Software has signed a definitive agreement with Clearlake Capital Group, L.P. (together with...
Dell EMC PowerProtect Cyber Recovery for AWS provides a fast, easy-to-deploy public cloud vault to...
Aqua’s cloud native application protection platform becomes the only solution that protects cloud...
54% of organisations working on a security transformation project now or in the next 12 months.
Node4 has released its Mid-Market IT Priorities Report 2021. The independent report reveals that...
Zscaler Zero Trust exchange cloud-based architecture enables superior green security capabilities...