The security of mobile devices can be a pressing issue for businesses, and it turns out that their software developers could be part of the problem.
Having a good cybersecurity system means considering a number of different factors. In today’s mobile business environment, mobile cybersecurity is one aspect that companies should not forget.
While a large portion of mobile cybersecurity issues apply to the device users themselves, there is also a compelling link with professionals in app developer roles who can affect how threats like malware penetrate the market.
What are the cybersecurity threats to mobile devices?
Mobile devices can be compromised in a number of ways, including through Trojans, phishing and web attacks. However, one of the most significant threats is malware, which is often inadvertently downloaded along with an app, and then goes on to compromise any information stored on the device or implement ad clicker fraud.
The malware threat in app stores is extensive, with a report by the Pulse Secure Mobile Threat Center revealing that there were almost 1 million different malware-carrying apps – and this number is only increasing.
Lukas Stefanko, security specialist at ESET, said in an interview for We Live Security that malware is also getting better at bypassing security measures like Google’s Bouncer.
“Fake apps are being systematically modified to sneak past even advanced detection methods based on what the Bouncer learnt from the malware’s previously discovered cousins,” he said.
He added that this software can have significant financial repercussions for individuals and businesses.
“Unfortunately, mobile malware is on the rise. Malicious app developers now mainly focus on profit, and they often go directly after the users’ money instead of advertisers’. We often face banking scam malware luring internet banking or credit card information from the user.”
How does this relate to software developers?
Interestingly, while it’s true that a large portion of app malware comes from cyber criminals, some software developers may actually be inadvertently replicating malicious code in their own apps. This is because many professionals don’t write code entirely in their own, so malicious content can sometimes sneak through undetected.
McKinsey & Co. partner and cybersecurity author told the Wall Street Journal that the key to combating this issue is improving processes in the business.
“A far better model would be if you were teaching your developers how to write secure code, were including security architects in the development process from day one of the project, and investing in tools for secure development. Then you have many fewer flaws at the end of the process,” he said.
It’s therefore apparent that businesses and professionals in IT careers need to work together to mitigate the problem of mobile security, and prevent malicious software from being circulated further.