May's hot security news from CM Security

Blog > ContentMay 29, 2014

Summary:

eBay & CryptoLocker cause widespread concern

This month saw two big stories hit the headlines. First, the online auction site eBay had to admit being the victim of a serious data breach at the end of February 2014. The account information and personal details of 145+ million users were stolen and then leaked onto the internet.

Additionally, we saw the debut of the CryptoLocker malware on Android devices. A recognized threat on Windows PCs already, the movement of CryptoLocker to mobile devices is evidence of mobile malware's increasing refinement.

Infection rates around the world

For May we discovered that Asia and parts of Western Europe were the regions most heavily impacted by new malware. The rate of infection in Asia as a whole is 2-3 times that of Europe and America, largely due to SMS fraud and viruses which contact premium rate phone numbers. Certain viruses have a greater infection rate in one place compared to others, so read on to find out what’s popular in your region.

Let Cheetah Mobile protect you

Cheetah Mobile was given perfect marks (meaning 100% detection and a user-friendly UI) by the independent security lab AV-TEST. This marks the 4th consecutive time that we’ve received the honor of being amongst the best security companies in the world. With improving technology and security strategies, Cheetah Mobile continue to dedicate themselves to constant self improvement, and have also established long-term strategic partnerships with many well-known security vendors such as Trend Micro, Symantec, Ahnlab, Tencent, Antiy and more. By taking advantage of these partnerships, Cheetah Mobile is able to boast the largest collection of malware samples in the world.

CM_May_Report.jpg

 

eBay and CryptoLocker cause widespread concern

A huge story this month was the revelation that eBay had been the victim of an attack a few months ago that meant that the data of all 145+ million of their users had been stolen. The information compromised included usernames, encrypted passwords, names, addresses, email addresses, and more. Payment information was not taken, as this information was all handled by Paypal. While Paypal is owned by eBay, it is a separate organization and they were not infiltrated.

It’s unclear how strong the encryption on the stored passwords was, so all users have been advised to change their passwords immediately. This should be done not just on eBay, but also on any site in which a user has the same password.

Read More

The CM Security Research Lab was amongst the first to notify our users of this issue and help people take steps to mitigate any potential impact. As soon as the news was known, we updated our blog and pushed a message to all of the users of CM Security that let them know the full extent of the situation. If you would also like to be amongst the first to know about any security breach which could put your personal data at risk, download and install CM Security from Google Play today.

CryptoLocker is a type of malware known as ransomware, as it literally holds your device for ransom. In the original PC version, the files on your device are encrypted, and the hackers will only unencrypt them if you pay a handsome fee. On Windows, this malware has been around for a while already causing all sorts of headaches for users, but the move to Android shows an advancement in mobile vector attacks that shows how important our mobile devices are becoming in our lives - and how valuable they can be to hackers.

Read More

If you've been infected by the Cryptolocker malware, don't panic, you can use our CryptoLocker cleaner to solve the problem. We've developed a special CryptoLocker Cleaner which you can use to remove the malware from your device. Follow this link to get to Google Play, and then make sure that you follow the usage instructions closely.

 cryptolocker.jpg

Infection Rates Around the World

This month has continued the same trend that we’ve seen in the last quarter, where we’re seeing mobile malware (especially on Android) becoming more widespread and more dangerous. In particular, Asia and parts of Eastern Europe continue to have the highest rates of infection around.

  1. World Map.jpg

Users in these areas are far more likely to use all kinds of third party app stores which have a far greater prevalence of malware, as they are not regulated as heavily as the normal Western alternatives.

In contrast, infection rates in the US and most other parts of Europe are much lower. As shown below, the probability of infection in Asia as a whole is 2-3 times that of Europe and the Americas. Mexico is a small exception, with users here falling victim to many SMS fraud infections.

  Chart.jpg

Worldwide, the infection rates for the following viruses are relatively high, with many of them being the top viruses in certain regions. Remember to take care when installing apps.

  3. Malware.jpg

4. Table.jpg

While these apps tend to attack in wildly different ways, they always have a simple goal - to obtain your money or your data. 

Users of our apps can now report directly to us if they find a new malware, and we’ll help them to resolve the issue and protect their safety. 

 5. Report malware.jpg

 

Let Cheetah Mobile protect you

Cheetah Mobile was given perfect marks (meaning 100% detection and a user-friendly UI) by the independent security lab AV-TEST. This marks the 4th consecutive time that Cheetah Mobile has received the honor of being amongst the best security companies in the world. We also have a false-positive rate of 0%, meaning we never mistake a safe app as a virus, and don’t negatively impact the performance of your device. Look below to see the certificates that we display proudly.

 6. AVTEST 1.jpg6. AVTEST 1.jpg7. AVTEST 2.jpg

So what’s the secret of our success? Not only do we constantly refine the strategy and technology used in our detection, but also have one of the most advanced sample collection systems in the world. In May, the CM Security Research Lab collected 3.5x as many new samples compared to the previous month. Currently, we have a database of 2 million virus samples, and 24 million samples in general. In 2014, Cheetah Mobile has established long-term strategic partnerships in many aspects with many well-known security vendors such as Trend Micro, Symantec, Ahnlab, Tencent, Antiy and more.

GPlay.jpg

CMShield24.jpgGet CM Security for FREE on Google Play

Clean MasterOn GooglePlayCM SecurityOn GooglePlayCM BrowserOn GooglePlay