Lookout’s analysis of the mobile threat landscape suggests businesses should specialise in curbing risky online behavior.

As more companies allow employees to bring their very own devices to work, they’re opening the door for cybercrime.

Based on its review of 2013 data from greater than 50 million users of its Android mobile security software, Lookout expects cybercriminals this year to attack mobile devices because the weak link in heavily monitored enterprise networks.

“The borders that traditionally protected companies at the moment are more porous because individuals are bringing their phones from homes to work day after day,” said Jeremy Linden, security product manager at Lookout, in a phone interview. “This enables attackers to get behind your firewall. We do think this type of thing turns into more prevalent in 2014.”

Apple’s iOS presents less of a priority than Google’s Android on this regard, through malicious links and phishing are issues whatever the mobile platform involved. Linden says that the iOS threat landscape differs significantly from what Android users face. “Apple’s App Store is significantly more policed and there is significantly more review,” he said. “And in contrast to Android, iOS users can’t install apps from outside the App Store.” (It is, unless they’ve jailbroken their iPhone.)

Lookout’s findings indicate that the kinds of risks faced by mobile users vary around the globe. The most typical threat, the corporate said, is adware, that is essentially advertising that violates mobile platform policies (e.g. harvesting personal information) and expected behavior (e.g. obtaining consent through deception or failing to hunt consent).

Lookout says that adware is five times more common than malware on mobile devices. The corporate puts the common chance of encountering adware on a mobile device within the US at 25%, in keeping with its 2013 data. Encounter rates elsewhere are similar: China 30%, France 31%, Germany 27%; Mexico 34%; Spain 30%; Russia 33%; and UK 23%. Japan and South Korea had significantly lower rates of adware: 9% and 15% respectively.

[Do you own an Android phone. Read WebView Exploit Affects Most Android Phones.]

A second threat category, chargeware, is seen infrequently inside the US. These apps, which engage in deceptive billing and regularly involve pornography, are just seen by about 5% folks mobile users. In Europe, where SMS-based payments are more prevalent, chargeware is more common. Lookout puts encounter rates at 13% for France, 23% for Spain, and 20% for the united kingdom.

The encounter rate for mobile malware is lower still. Within the US, it’s 4%. In China and Russia, the figures are much higher: 28% and 63% respectively. However the potential damage from malware — theft of passwords and other important information — could be considerable.

Lookout’s report says that mobile risks will be mitigated through the use of common-sense, like installing apps only from trusted marketplaces, not rooting your device, and using a mobile security app. Coming from an organization that sells security apps, this perhaps isn’t a stunning recommendation.

The company also noted that user behavior is the perfect indicator of risk, having found that people with mobile malware of their phones are seven times much more likely download another malicious app. “The kinds of people that download shady material are inclined to do it again,” said Linden.

To strengthen your company’s firewall, lay an effective foundation within the human resources department.

Engage with Oracle president Mark Hurd, NFL CIO Michelle McKenna-Doyle, General Motors CIO Randy Mott, Box founder Aaron Levie, UPMC CIO Dan Drawbaugh, GE Power CIO Jim Fowler, and other leaders of the Digital Business movement on the InformationWeek Conference and Elite 100 Awards Ceremony, to be held along side Interop in Las Vegas, March 31 to April 1, 2014. See the entire agenda here.

Thomas Claburn was writing about business and technology since 1996, for publications corresponding to New Architect, PC Computing, InformationWeek, Salon, Wired, and Ziff Davis Smart Business. Before that, he worked in film and tv, having earned a not particularly useful … View Full Bio

More Insights