Help & Support

Welcome to MYSecurityCenter official Blog

Please feel free to comment on our posts and articles.

Posts Tagged ‘qr codes’

February 3rd Newsletter

Monday, February 6th, 2012
 

Read our latest newsletter all about the dangers of QR Codes and what 2011 has meant for MYSecurityCenter. You also have the chance to win a New Samsung Galaxy Tab.

 

 

English Newsletter February 3rd 2012

Tags: , , ,
Posted in fabruary_2012 | No Comments »

New 2011 mobile scam:
Barcodes for smartphones are brilliant
- also for crooks

Friday, January 20th, 2012

You’ve probably seen them around, the black-white image barcodes that you can scan with your mobile phone. In 2011 scammers began to realize how they can use the smart QR codes to spread malware. Co-founder of MYMobileSecurity Janus R. Nielsen, gives tips on what to watch out for to avoid being cheated so you can get a safe start on the new year.

“Scan here and get something extra” is a common text next to the bar code in many magazines and newspapers. When you scan the code, a link opens in your smartphone’s browser and this link could potentially install viruses and other malicious programs on your phone. But why even worry about it, because what is the advantage of these QR codes?

Security expert Janus R. Nielsen from MYMobileSecurity explains: “QR stands for Quick Response, and these codes were originally developed for the automotive industry in Japan, where the bar codes got their big break. A QR code typically contains information such as e-mail address, web address, phone no. and similar information, which you can quickly read onto the phone without having to write a lot. You can also save time by scanning the web pages you visit on your computer when you are looking for new software for your smartphone. ”

QR codes can be an expensive experience
There is a common agreement within the mobile software industry that QR codes will become an equally big hit in Europe as they are in Japan and USA today. It’s a brilliant invention, but unfortunately also an invention that can be exploited by fraudsters. They are beginning to create barcodes that sends the phone on to URLs with malware (APL or JAR files). Last year there was a concrete example of a fake barcode installing malware on the phone by secretly sending text messages to an expensive phone number. The phone was directed to a Trojan virus called Trojan-SMS.AndroidOS.Jifake.f.

Think before you scan
Janus R. Nielsen believes that there is no doubt that the fake QR codes are going to be a problem in 2012 in Europe too. “It is a lucrative market and it may be difficult for the average user to spot a fake tag”. However, he has some tips on what to be at the forefront with. “Look carefully at the link before clicking on it. Does the link match the text in the ad you have scanned? Does the URL in the browser look professional? Be suspicious if it contains many numbers and spaces. Additionally, you should use a password for all the applications that give this option. It is an extra protection against viruses and malware. Last but not least, you should consider installing an antivirus program that protects against unauthorized access to your smartphone via web pages. With a firewall installed, you get warnings every time you are in contact with malicious links and viruses. ”

Tags: ,
Posted in january_2012 | No Comments »

Nieuw type scam in 2011: Barcodes voor smartphones zijn super – ook voor oplichters

Friday, January 20th, 2012

Je hebt ze wellicht al eens gezien, de scanbare zwart-witte barcodes voor je smartphone. In 2011 kwamen internetcriminelen op het idee deze slimme barcodes te misbruiken om malware te verspreiden. Janus R. Nielsen, co-oprichter van de firma MYMobileSecurity, geeft handige tips over hoe je deze oplichters een stap voor kan zijn en hoe het nieuwe jaar veilig te beginnen.

“Scan nu en krijg iets extra” zie je vaak naast de barcode staan in heel wat kranten en tijdschriften. Wanneer je de code scant, opent zich een link in je browser welke mogelijks virussen en andere schadelijke programma’s op je smartphone kan installeren. Maar waarom zou je die barcodes nu gaan gebruiken, want wat is eigenlijk het voordeel van deze QR-codes?

Expert in beveiligingssoftware, Janus R. Nielsen van het bedrijf MYMobileSecurity, legt het ons uit: “QR staat voor Quick Response, de gebruiker start zijn barcode reader software op zijn mobiele telefoon en richt met de camera van zijn telefoon op de QR-code tot die volledig in beeld is. De software registreert automatisch de inhoud van de code. Deze code wordt door de QR code reader automatisch herkent en direct omgezet in bijvoorbeeld een internetadres. Dankzij deze methode hoeven gebruikers niet moeizaam een volledig internetadres op de telefoon in te typen”

QR-codes kunnen wel duur uitvallen
Iedereen is het er binnen de branche van de mobiele telefonie over eens, dat de QR-codes ook in Europa snel aan populariteit zullen winnen. In Japan en de VS zijn ze op dit ogenblik al een grote hit. Het is inderdaad een fantastische uitvinding, maar opent jammer genoeg ook weer een deur voor internetcriminelen. Momenteel bestaan er al barcodes die links met malware (APL- of JAR-bestanden) op de telefoon installeren. Een mooi voorbeeld hiervan is een fake barcode die malware installeert die op zijn beurt automatisch sms’jes stuurt naar een heel duur telefoonnummer. Het ging in dit geval om een trojaan, genaamd Trojan-SMS.AndroidOS.Jifake.f.

Denk goed na vooraleer te scannen
Janus R. Nielsen is ervan overtuigd, dat de valse QR-codes in 2012 ook in Europa een serieus probleem zullen vormen. “Het is een winstgevende markt en het is niet zo eenvoudig voor de gemiddelde gebruiker een valse barcode van een echte te onderscheiden”. Toch zijn er een paar tips waarmee je rekening kan houden. “Bekijk de link nauwkeurig vooraleer hem aan te klikken. Komt de link overeen met de tekst van de publiciteit die je voordien scande? Ziet de link in je browser er verdacht uit? Let op wanneer de link enorm veel cijfers en spaties bevat. Daarnaast gebruik je best een wachtwoord voor elke applicatie die deze optie aanbiedt. Het is namelijk een extra beveiliging tegen virussen en malware. En wat je zeker niet mag verwaarlozen, is het belang van een degelijk anti-virusprogramma dat de ongeauthoriseerde toegang tot je smartphone belet bij het bezoeken van gevaarlijke websites. Dankzij een goede firewall word je gewaarschuwd van zodra je te maken krijgt met een schadelijke link of één of ander op de loer liggend virus”.

Tags: ,
Posted in january_2012 | No Comments »

The biggest mobile security threats in 2012

Friday, January 20th, 2012

Malware on smartphones, especially on Android phones exploded in 2011. But is this a trend that continues this year? Yes, assess security experts Kevin Freij and Janus R. Nielsen, co-founders of the security company www.mymobilesecurity.com. They look back on trends and threats in 2011 and give their take on the challenges the security industry and private smartphone users will face in 2012.

Malware
2011 was the year when malware on Android phones rose with lightning speed. According to a report by the network producer Juniper the increase was on 472 percent alone between July and November. Especially fake apps, mainly pirated versions of well known apps developed by criminals, have been the main sinner. The fake apps are primarily being downloaded from Android Market or from the Asian and especially Chinese app stores. And many of them have been an expensive acquaintance, because they install viruses on the phone and can drain the user’s account by sending SMS messages to expensive toll numbers. “We have seen an explosive increase compared to 2010 in terms of new apps entering the market and with these come more malware. Hackers have figured out how to find very clever ways to smartphone users mobile accounts, both prepaid and postpaid accounts. This trend will continue because it is a very lucrative market for fraudsters” says Kevin Freij, CEO of MYMobileSecurity, that makes security applications for smartphones. As for malware on iPhones, viruses are not the biggest issue for Apple-users. “The problem is rather the unstable iPhone OS. “iPhone has some problems when updating their systems regularly. When the updates are done we have seen serious security holes appear. There have been various examples on that, I remember one from this summer when one of the biggest newspapers in Denmark hacked up the current Danish Deputy Prime Minister Margrethe Vestager´s iPhone getting access to both her voicemail and emails.”

Fake emails (phishing)
According to a study by the security company Trusteer in January last year, smartphone users are three times more likely to fall for the fake phishing emails than computer users. The fraudsters behind phishing emails try to “fish” passwords and financial data out of the users by pretending to be credible and well-known companies or individuals. People can be more easily fooled on their smartphone because they are constantly “on” and because they answer their emails as soon as they come in. Also the small screen size of the phone makes it difficult to spot a bad link or logo. “The increase in phishing emails and also in fake SMS (smishing) will continue in 2012”, co-founder of MYMobileSecurity Janus R. Nielsen believes. He points out the fact that mobile banking is becoming more and more common. “It is getting still more important, especially for Android users, to have security software installed that can warn against the approximately 500 million links classified as hazardous. “This way you can at least avoid visiting the already known infected sites. The challenge for the mobile security industry will be to develop a technology similar to what exists on computers and which can recognize patterns and thus warn against suspicious but not yet registered hazardous sites. This technology is not yet available for smartphones, but it will be all though this will probably rather happen in 2013 than 2012 “, he says.

Stolen or lost phones
An employee forgetting his phone in a restaurant or somehow letting it fall into the wrong hands, will actually be amongst the biggest security risks for companies next year. Corporate data leakage can potentially end up being a very costly affair. “The attack risk is much bigger on mobile devices than on laptops and there are fewer security controls”, Kevin Freij says. “Apart from the same things you can do on a laptop, you also have other features on a smartphone like location information, camera, voice dialing and SMS channels that are potential ways into the phone. It is still a challenge for the mobile industry to find ways to deal with these new risks and threats”.

Spyware such as CarrierIQ
After the recent discovery of the existence of the program Carrier IQ on most smartphones, the discussion about whether surveillance is acceptable or not has been intense. “There is no doubt that the mobile security industry is still not defined. None of the mobile anti-virus firms in the market discovered CarrierIQ. Security firms simply do not look after those type of activities – yet, “says Kevin Freij. “We know that a combined approach of different functions working together is the best way to achieve the highest level of security on a mobile today. If you add antivirus, theft protection, backup, network monitoring, safe surfing, app security management and more, you will reach a higher security level than just having an antivirus. However, that does not solve the CarrierIQ issue right now, but the security industry works continuously towards developing new technologies, and hopefully we will be able to track that kind of programs in the future”, he says.

QR bar codes and viruses
In 2011 we saw the first mobile QR barcode – the codes that is scanned by the camera on the phone – spreading viruses. It was a Trojan virus that sent text messages to an expensive toll number. Janus R. Nielsen believes that 2012 we bring more examples of fake QR codes, but the threat will not be overwhelming. “There are certainly more of these examples to come – the more users of QR codes, the more hackers. But as long as you have a security program installed that warns against unsafe links and URL´s, this should be a manageable problem.”

Mobile banking and transactions
Bank apps had a breakthrough among the private smartphone users in 2011. “We see a huge demand for mobile banking applications that provide full access to the user’s bank accounts. Most of the apps are very safe, but if you use mobile banking, it is wise also to have some kind of security software installed.” Kevin Freij says. He estimates that the biggest risk with mobile banking can be found in cases where banks send a code via SMS to the mobile phone so that the user can enter the code to confirm that it is the right person logged in. “The code can be easily intercepted if a spyware program is installed on the mobile. And if that is the case, the user is usually unaware of it unless the security software has spotted it. Another good tip is to check your account statements regularly so you are sure that no unpleasant surprises appear”, he says.

For more information contact:

Stine Mynster, PR Manager
stine@mymobilesecurity.com
Mobile: 0034 699403895

Tags: , , , , , ,
Posted in Newsletter January 2012 | No Comments »