What is Mobile Malware? | SentinelOne

What is Mobile Malware?


From 2011 to 2019 the number of mobile users has increased 81%, and this number is going to continue to rise.

With increased mobile users comes an increasingly more valuable attack vector, one which threat actors will exploit using mobile malware.


What is Mobile Malware?

Mobile malware is a malicious software that targets smartphones, tablets, and other mobile devices with the end goal of gaining access to private data.  Although Mobile Malware is not as prolific as it’s counterpart (malware that attacks traditional workstation) it’s a growing threat for all organizations.

There are various different types of mobile malware (and methods of deployment) that threat actors use to gain access to smartphones. To help keep your organization safe, it’s important to know each of them.


Types of Mobile Malware

Knowing the different types of mobile malware will give you a better idea of how to protect yourself and identify threats. Let’s take a look at the different types of mobile malware below.

Remote Access Trojans (RATs)

Attackers use RATs to gain extensive access to data from your mobile devices and are most often used for the purpose of intelligence collection. The typical data that RATs collect include your call history, sms data, browsing history, and installed applications.What’s dangerous is that attackers may use RATs to enable cameras, send messages, and log GPS data.

Bank Trojans

Your bank account information is the number one target of attackers, so be wary of Bank Trojans. Attackers disguise Trojans as applications that may seem legitimate to trick users into providing confidential information. Bank Trojans access details of your financial accounts like your login details by spoofing a financial institution’s login page.  Once installed on the client’s computer, the hackers have a backdoor into their computer, which allows access to computer files and systems, so that identity theft and unauthorized financial transactions can take place.


Ransomware is malware that attackers use to gain access to your mobile device. They access important data and encrypt it until a ransom is paid..

Only until the ransom is paid can the victim get back access to their encrypted files Most often, ransom demands involves payment in Bitcoin.

Cryptomining Malware

This mobile malware allows attackers to mine cryptocurrency like Monero on a user’s device. It enables attackers to run calculations through the victim’s browser with JavaScript, without having to install software. This is called cryptomining, which allows cybercriminals to hijack a client’s computer so that they can utilize their processing power and electricity to mine cryptocurrencies for free.

Mining these cryptocurrencies takes a lot of processing power, as only the first person to solve the complex mathematical problem will be paid for their efforts in cryptocurrency.  Those affected will generally notice a marked decrease in their battery life, and also that their computer is running very slowly.

Mobile Spyware (Stalkerware)

Mobile Spyware runs in stealth mode and aims to collect your data undetected.It targets data such as your activity and account login information. Cybercriminals hide Spyware behind harmless-looking apps in order to avoid detection.

Mobile Adware

Malicious adware poses a danger to your mobile devices. Threat actors use “malvertising” code to infect the root of your device, forcing the download of malicious adware.

This also allows attackers to steal data stored in your mobile device. This includes log-in information, contacts, and your location.

Drive-By Downloads

While it’s easy to visit websites, mobile malware like drive-by downloads threaten cybersecurity. When you open infected websites, the malware will install itself on your device instantly. These variants can give spyware, adware, and more access to your device.


Methods of Mobile Malware Infection

It’s also helpful to be aware of the different methods that cybercriminals use to spread malware. These methods include:

  • Phishing
  • Spoofing
  • Sending SMS messages
  • Using E-mails
  • Sending Adware
  • Browser Exploitation
  • Using Rooting or Jailbreaking

Criminal methods of attaching malware to mobile devices are becoming sophisticated. This increases the danger of mobile malware.


Mobile Malware Analysis Protects You from Cybercrime

What is Mobile Malware Analysis?

Mobile malware analysis detects and identifies malware, it’s origin, and the potential impact on your mobile device..

Mobile Malware Analysis Tools

Mobile malware analysis tools display strategies that attackers use to deliver mobile malware. They also give updated malware attack statistics and present acknowledged malware detection processes.

Mobile malware analysis results in three main benefits. These benefits include being able to detect malware on your mobile device.

Detection allows room for actions that put an end to the threat. The experience will also give you data that can help with your research about malware.


Precautionary Measures for Cybersecurity 

Aside from mobile malware analysis tools, there are best practices that you can use to protect yourself from mobile malware. Here are a few recommendations.

Update Applications Frequently

Developers are always looking for ways to ensure that their apps are secure from mobile malware. Continue to update your apps, to the latest version that’s available, to ensure that you are getting the best and most secure experience.

Use Secure Wi-Fi

As an IT Professional, we have to think about how the members of your team might approach the offer of free Wi-Fi.  Although it’s tempting for them to connect to free Wi-Fi in malls, cafes, and other public places, employees need to be wary of their security, as public Wi-Fi is a cybercriminal’s playground. Threat actors attack the most vulnerable devices on the network and can pose an undetected threat for months or years. We should advise them to use extra caution while on a free Wi-Fi network, and not to download or click on links that they’re not familiar with.

Other best practice methods to increase mobile security include using a firewall and having two-factor authentication for login credentials. While on a public Wi-Fi network, they should also be cautious about what personal information they’re sharing. For example, banking and healthcare data is something better saved for when they’re on a secure private network, rather than an unsecured network.

Defend Yourself and Your Team From Mobile Malware!

There are many mobile malware threats, for both individuals and for companies to manage. Is your organization secure? The SentinelOne platform delivers the defenses you need to prevent, detect, and rollback—known and unknown—threats. Set up a demo of SentinelOne here.

Schedule A Demo
SentinelOne encompasses AI-powered prevention, detection, response and hunting.