More than 99 percent of new mobile threats in the first three months of 2014 targeted the Android ecosystem, a new survey has revealed, with the UK experiencing the most attacks.

Digital security software company Gemalto and French telecom provider SFR have joined forces to provide a Cloud-based authentication solution for businesses.

The OpenSSL Project has boosted its funding by fivefold following a donation by Nokia Solutions and Networks to help stop the recurrence of bugs such as Heartbleed.

Revelations about NSA hacking, the increasingly sophisticated level of threats to smartphones and the growing number of people using their own devices at work has led the mobile device security market to grow by 40 percent to €937 million, according to new research. 

HTC is working on updating its security settings after new research found a number of its smartphones are at risk from the Heartbleed security flaw.

IBM has patented an encrypted cloud security product that allows app developers to securely send and receive notifications from mobile devices.

UK operators EE, O2, Vodafone and Three have deployed the GSMA's Spam Reporting Service to deal with spam messages and threats.

Rohde & Schwarz has completed its takeover of firewall producer Adyton Systems as it looks to boost its presence in the network security market. 

A SIM-based authentication service from Orange and SAP’s beefed-up product to protect mobile messaging were among the big announcements in the security space at last week's Mobile World Congress.

Mobile Connect is Orange's new method of letting consumers log into any digital service, regardless of the device or the connection used, using a personal code or click-validation process. 

Operators are stepping up spending on security gateway solutions designed to combat SMS/MMS spam and threats, according to new research.

For the full year 2013, the global SMS/MMS security gateway market is projected to reach €51 million – a 70 percent increase over 2012 – Infonetics Research revealed.

Deutsche Telekom has been working with Samsung to develop a high-security smartphone based on the Samsung Galaxy S3, featuring the world’s first secure mobile OS kernel that is able to protect confidential documents.

DT’s SiMKo 3, known as the “Merkel phone” after the German Chancellor, incorporates the L4 high-security microkernel and has just passed thorough testing by the German Federal Office for Information Security (BSI).

By Mary-Ann Russon

Researchers have discovered a new vulnerability in the Google Android mobile operating system that could affect every single Android smartphone that has been released since Android 1.6 “Donut” debuted in 2009, i.e. 900 million Android smartphones.

The bug allows a hacker to modify the Android APK code without breaking a mobile application’s cryptographic signature (used by Android to determine whether or not apps have been tampered with), meaning that any application can be turned into a Trojan without being noticed by the app store, user or the phone.

Telefónica Digital has announced a global partnership with AirWatch that promises enterprises an all-in-one Security Mobile Device Management platform to solve their BYOD headaches.

Based on AirWatch’s Mobile Device Management (MDM), Mobile Application Management (MAM), Secure Content Locker (SCL) and Email Container (EC) products, the new web-based, multi-platform solution enables enterprises to control all the devices on VPN and Wi-Fi corporate networks through a single HTML 5-supported console.

Orange Business Services is planning to release a new global cloud security product later this year as the firm targets increased revenues from the sector.

The Flexible Identity offering is aimed at providing smartphone business users with a way to increase identity control amid the multiplication of cloud applications and the development of professional/personal uses.

 "You can't encrypt stupidity"

According to AdaptiveMobile’s Ongoing Threat Analysis (OTA) there has been a sharp increase in the number of battery saver apps designed to fraudulently bill users once downloaded.

Many of these applications are promoted via banner advertising within legitimate apps or use ads designed to look like system updates, making them look genuine, but then direct users to locations outside conventional app stores.

“Most of these applications fail to improve battery life and are designed to be misleading and trick people in to signing up to recurring premium SMS charges,” says Gareth Maclachlan, COO and founder, AdaptiveMobile. “We have recently seen a spike in the number of these rogue apps, which is a violation of trust for users and carries a high risk of churn for operators. With 83% of subscribers admitting that they would change their operator if their privacy was compromised, rogue apps such as these fake battery saving apps represent a clear and present danger for mobile providers.”

“With increasing amounts of rich media content being accessed by users and battery life being evermore precious, battery saving apps are something that most mobile users are considering,” concludes Maclachlan. “Hackers and fraudsters seize every opportunity to steal data and funds from the unwary. Users may only become aware once they see the rogue transactions on their bill or in many cases may not notice at all. These ‘organisations’ rely on a large proportion of people not claiming a refund on the fraudulent fees.  Operators should make sure that they have a way of monitoring for this kind of activity so that they can protect subscribers effectively.”

Top Tips for Users

1. Do not use unknown sites to download apps .

2. Beware of ‘free’ apps, and advertising within free apps, make sure they are from a reputable supplier

3. Make sure that you read reviews dating back more than a month before downloading an app

4. Check your operator’s website or community forum for information on rogue apps periodically

5. Check your bill carefully and report any unscheduled charges immediately

Another operator adds device security as a service

Vodafone UK has added Vodafone Secure Device Manager for medium and large businesses to its portfolio of security solutions. Its software, powered by AirWatch, is designed to allow businesses to connect mobile devices, including employees' own devices to their corporate networks securely.

Operated through a management portal, Vodafone Secure Device Manager enables devices to be tracked and monitored, and any lost or stolen device can be ocked or ‘wiped’ of all corporate data. The software is available for OS including Android, Blackberry, iOS, Symbian, Windows Phone and Windows Mobile.
 
The Secure Device Manager can be deployed through the cloud or as an on-premise solution and includes a ‘Bring Your Own Device’ (BYOD) option meaning employees can use their own devices, representing an increased cost saving for many businesses.
 
Peter Boucher, Enterprise Commercial Marketing Director at Vodafone UK, says “In today’s highly competitive and technology-obsessed marketplace, businesses must adopt new devices that help them work smarter, but in the midst of so many cyber-threats and security breaches some companies are cautious about new innovations. Vodafone supports British businesses by offering simple-to-use services that give organisations the confidence to make best use of business-enhancing technology. Vodafone Secure Device Manager is part of Vodafone’s on-going commitment to help businesses find better ways of working.”

Pricing starts at £1.83* (exc. VAT) per device with set-up fees from just £300.00.
 

Deutsche Telekom (DT) has announced a partnership that will see it deliver Lookout's mobile security app to its European customers. The partnership focuses on distribution and joint innovation, bringing Lookout's mobile security to DT's European customers. Lookout offers mobile device protection against malware, data loss, and device loss. Deutsche Telekom and Lookout teams will collaborate on mobile protection solutions at Telekom’s Innovation Lab in Berlin.
 
“The topic of mobile security and device health is becoming a focus for our customers,” says Heikki Makijarvi, SVP of business development at Deutsche Telekom. “As the penetration of smartphones and mobile internet devices increases, we feel it is important to offer our customers not only the best network, but also deliver industry-leading security and device health applications that protect and optimize the mobile experience.”
 
“As mobile devices become the primary computing device for consumers, Deutsche Telekom is passionate in providing customers with the best security and privacy,” said John Hering, CEO and founder at Lookout. “By offering tools that promote mobile security and health, Deutsche Telekom is empowering people with the confidence to do more on their phone.”

The Lookout Mobile Security app enables people to find a missing device when it is lost or stolen, manage phone security, and backup precious data.

Lookout said that it identified more than 1,000 instances of mobile malware in 2011, a significant increase since 2010. It's partnership with DT is its frst European strategic partnership. Currently over 40% of its users are based in the USA.

Earlier this month, Mobile Europe reported on the opportunity for mobile operators in offering security services and applications to end users.