Kaspersky warns Filipino users of five most smartphone-attacking trojans recently

04/13/2021 08:58:11 PM

Kaspersky has urged Filipinos to be on the lookout against the five most prevalent malware targeting their smartphones and their data and money online.

The global cybersecurity vendor has warned the nation of 73.91 million internet users (accounting to 67 percent of the total population) as they identify Trojans as the most common malicious software (malware) detected in mobile devices of Filipinos.

Trojans are known malware that commonly disguises as legitimate software that hackers and cyber thieves use to get into a user’s system to spy on them or steal from them. In order for their scheme to work, an internet user is usually tricked by some form of social engineering to install Trojans into their system. And once activated, attackers, can easily delete, block, modify, and copy sensitive data of the user. Trojans can even disrupt the performance of computers or computer networks or in the case of Filipino users, their mobile devices such as smartphones and tablets.

Kaspersky has distinguished the top five types of malware that they blocked from being installed on the devices of Filipino Internet users as the following:

1. Generic Trojan

2. Trojan-Dropper - sneaks into devices without being detected by antivirus programs. It also masks any installation of viruses by hackers.

3. Trojan-Downloader - similar to platforms that require software and system updates, Trojans are updated by hackers to be one step ahead of antivirus programs. With Trojan-Downloader, cybercriminals are able to install newer versions of existing malware in their target’s device.

4. Trojan-SMS - programs that command a victim’s phone to send text messages to premium rate phone numbers, costing money in the process.

5. Trojan-Proxy - this virus creates proxy servers out of infected devices to enable an attacker to stage anonymous attacks by hiding their true location.

The pandemic forced everyone around the world, including Filipinos, to jump in the online world whether for personal or business reasons to go on with their lives. This behavior has since translated to the surge of social media marketing campaigns, e-commerce platforms, and increased activity around e-payments with a total value of PHP53 billion so far.

And while digital payments are becoming the more preferred method in the “new normal”, based on 2020 PayPal Consumer Insights Survey conducted in the Philippines, security remains the top consideration when consumers pick a digital platform, especially that 99% of the Filipino respondents confirmed their plans to use digital payments even post-COVID-19.

The risk comes in the form of ensuring user security when using platforms that have access to financial assets. Android users are at the highest risk of becoming targeted by malware, especially Trojans that specifically target mobile banking. By disguising as legitimate applications, Trojans can steal money from mobile bank accounts or e-wallets. In fact, 98% of these malicious programs are designed for the Android OS.

“Based on our data, the Philippines may have had only 55,622 mobile malware detections in 2020, which is almost half of the monitored 110,130 attempts back in 2019. But there should be no room for complacency for Filipinos,” said Chris Connell, Managing Director for Asia Pacific at Kaspersky.

“As of January this year, 96.5% or over 71 million Filipino internet users access the internet via their mobile phones. The majority of them (85.7%) have their shopping apps installed on their devices and almost half (42.1%) got their bank’s official apps, too. Now imagine the amount of confidential and financial data stored on our hand-held devices. This is why our smartphones now are lucrative targets for cyber-thieves and we all need to start protecting them,” added Connell.

Although Trojans are unable to self-replicate, these programs will not only disrupt the performance of devices, but actually cost real money to the victims.

Kaspersky advises the following:

• Avoid clicking on links from emails, sent through social network sites and chat rooms, placed on banner ads from suspicious websites, and sent by unfamiliar people.
• Be wary of emails asking for sensitive information, redirecting victims to websites and pop-up windows.
• Check if the URL looks suspicious and make sure to input data only when connection is secure.
• Avoid accessing the Internet through public Wi-Fi networks since cybercriminals can intercept these networks and steal passwords and other sensitive information.
• Read customer reviews of a specific online retailer before accessing it and restrict the credit limit of the users ‘online credit card’.
• Run the latest version of programs and software, and use anti-malware services for an additional level of protection.

Find out more about this report on Kaspersky's Mobile Malware Evolution 2020.

Author: slickmaster | © 2021 The SlickMaster's Files