The most common mobile malware encountered are remote access tools (RATs), stalkerware, banking trojans, ransomware, cryptojacking, and adware.
This weakens the entire app ecosystem, which is built upon user trust.
Bad actors have found an easy target in children, and app stores’ ability to set parental controls and conduct extensive review for software applications designed for children are essential to their protection.
According to a 2020 whitepaper, Android devices were responsible for 47.15% of the observed malware infections, Windows/ PCs for 35.82%, IoT for 16.17% and iPhones for less than 1%.
A study found that devices that run on Android had 15 times more infections from malicious software than iPhone, with a key reason being that Android apps “can be downloaded from just about anywhere,” while everyday iPhone users can only download apps from one source: the App Store.
Tapcore estimates that together, they [third-party app stores] have revenue approaching Google Play’s, and will hit $36 billion in 2021. That seems like an underestimate: China alone accounted for close to $35 billion last year. App downloads from these third-party stores totaled about 70 billion in 2017, and of those 15-20%, or as many as 14 billion app installs, were pirated.
Additionally, users should avoid (and enterprises should prohibit on their devices) sideloading of apps and the use of unauthorized app stores.
Robert Griffin Jr., U.S. Department of Homeland Security
“Use the official application marketplace only. Users should … not [download applications] from third-party sources, to minimise the risk of installing a malicious application. Users should not sideload applications if they do not originate from a legitimate and authentic source.”
“Use official app stores. To reduce the risk of installing potentially harmful apps, download apps only from official app stores, such as your device’s manufacturer or operating system app store. Also, research the developer before installing an app.”
