Mobile malware attacks: Review, taxonomy &amp; future directions

Qamar, Attia; Karim, Ahmad; Chang, Victor

doi:10.1016/j.future.2019.03.007

Cited by 140 publications

(84 citation statements)

References 82 publications

(103 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The dynamic analysis focuses mainly on running time and interactive features of apps, therefore it is more complex and slower than the static analysis. The usability of dynamic analysis, in fact, lies in the ability to detect "obfuscated" and "polymorphic" malware which mostly escapes under static analysis [4]. Finding optimum running time for dynamic analysis is also difficult, as the start of malicious activities can vary from sample to sample [32].…”

Section: Static Features-based Detectionmentioning

confidence: 99%

“…Finding optimum running time for dynamic analysis is also difficult, as the start of malicious activities can vary from sample to sample [32]. The dynamic features are extracted through system calls, network activities, user interaction, Central Processing Unit (CPU) consumption, and other phone activities [4]. Table 3 lists and summarizes some of the popular works related to dynamic analysis using dynamic features and ML-based Android Malware detection (Input/Output (I/O), Read/Write (R/W)).…”

Section: Static Features-based Detectionmentioning

confidence: 99%

“…These techniques also demand high computational resources that burden the end-user device. To address these limitations and bottlenecks, non-signature-based techniques have been extensively used in recent decades [4].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

PACER: Platform for Android Malware Classification, Performance Evaluation and Threat Reporting

Kumar¹,

Agarwal

Shandilya³

et al. 2020

Future Internet

View full text Add to dashboard Cite

Android malware has become the topmost threat for the ubiquitous and useful Android ecosystem. Multiple solutions leveraging big data and machine-learning capabilities to detect Android malware are being constantly developed. Too often, these solutions are either limited to research output or remain isolated and incapable of reaching end users or malware researchers. An earlier work named PACE (Platform for Android Malware Classification and Performance Evaluation), was introduced as a unified solution to offer open and easy implementation access to several machine-learning-based Android malware detection techniques, that makes most of the research reproducible in this domain. The benefits of PACE are offered through three interfaces: Representational State Transfer (REST) Application Programming Interface (API), Web Interface, and Android Debug Bridge (ADB) interface. These multiple interfaces enable users with different expertise such as IT administrators, security practitioners, malware researchers, etc. to use their offered services. In this paper, we propose PACER (Platform for Android Malware Classification, Performance Evaluation, and Threat Reporting), which extends PACE by adding threat intelligence and reporting functionality for the end-user device through the ADB interface. A prototype of the proposed platform is introduced, and our vision is that it will help malware analysts and end users to tackle challenges and reduce the amount of manual work.

show abstract

Section: Static Features-based Detectionmentioning

confidence: 99%

Section: Static Features-based Detectionmentioning

confidence: 99%

See 1 more Smart Citation

PACER: Platform for Android Malware Classification, Performance Evaluation and Threat Reporting

Kumar¹,

Agarwal

Shandilya³

et al. 2020

Future Internet

View full text Add to dashboard Cite

show abstract

“…Zararlı yazılım saldırıları hedefli veya hedefsiz olmak üzere iki çeşit yöntemle tasarlanmaktadır. Hedefsiz otomatik siber saldırılar çoğunlukla web tabanlı olduğundan kullanıcıyla etkileşimine gerek duymaktadırlar [Man-in-the-Browser gibi] (Öztürk, 2018;Qamar, Karim, & Chang, 2019;Vinay, & Kok, 2018;Jain, vd. 2014).…”

Section: Uzaktan Erişim Truva Atlarının Sızma Yöntemleriunclassified

Truva Atı Zararlı Yazılımlarına Yaklaşım ve Çözüm Önerileri

Kara

2019

Bilgi Yönetimi

View full text Add to dashboard Cite

Teknolojik cihazların kullanımı arttıkça kötü niyetli kişiler de bu cihazlara ve kullanıcılarına zarar vermek amacıyla her geçen gün yeni tür zararlı yazılımlar geliştirerek piyasaya sürmektedir. Kişi ve kurumları etkileyen geniş çaplı bu saldırılara karşı tedbirler alınmaya çalışılsa da güvenlik zafiyetleri halen devam etmektedir. Pek çok siber saldırgan, mevcut güvenlik zafiyetlerinden faydalanarak saldırılarını gerçekleştirmek için zararlı yazılımları kullanmaktadır. Kendisini zararsız bir dosya uzantısı altına gizleyerek kurban sisteme sızan Truva Atları son derece tehlikeli bir tür zararlı yazılımdır. Uzak Erişim Truva Atı ise, kurban sisteme sızdıktan sonra saldırgana uzak erişim imkânı sağlamaktadır. Bu sayede saldırgan kurban sistemdeki dosyalara ve kayıtlı şifreleri ulaşabilmekte, kurban sistem üzerine düzenli, koordineli saldırılar yapabilen köle bir sisteme dönüştürebilmektedir. Bu çalışmada, Uzak Erişim Truva Atlarını tanımlayarak, kurban sisteme sızma yöntemleri ve bu tehditte karşı alınabilecek önlemleri açıklayıp kullanıcı farkındalığı yaratması amaçlanmıştır.

show abstract

“…Companies acquire network protection solutions (IDS, firewalls, honeypots etc..) to mitigate spear-phishing intrusion [24,25]. At the employee level, they opt for antiviruses [49,50] or filters based on black and white lists installed on browsers [20][21][22][23]. Training sessions with tools simulating real attacks are planned and educational games [16][17][18][19] set up for this purpose are used in short or long term.…”

Section: Prevention and Mitigation Approachesmentioning

confidence: 99%

A Game Theoretical Model for Anticipating Email Spear-Phishing Strategies

Tchakounté

Nyassi²,

Danga³

et al. 2018

ICST Transactions on Scalable Information Systems

View full text Add to dashboard Cite

A solution to help victims against phishing is anticipating and leveraging impacts related to phisher actions. In this regard, this work reshapes game theoretical logic between Intrusion Detection System (IDS) agents and insiders to email spear-phishing interactions. The email spear-phishing attack is designed as a non-cooperative and repeated game between opponents. Additionally, this work relies on Quantal Response Equilibrium (QRE) to build a game theoretical approach to predict the phisher's future intent based on past actions of both players. This approach is coupled with a recommendation strategy of appropriate allocation of resources to invest to strengthen user protection. Simulations on spear-phishing scenarios demonstrate the ability of the final system to intuitively guess the most likely phisher decisions. This work provides intelligence to spearphishing detectors and humans such that they can anticipate next phisher actions.

show abstract

Mobile malware attacks: Review, taxonomy & future directions

Cited by 140 publications

References 82 publications

PACER: Platform for Android Malware Classification, Performance Evaluation and Threat Reporting

PACER: Platform for Android Malware Classification, Performance Evaluation and Threat Reporting

Truva Atı Zararlı Yazılımlarına Yaklaşım ve Çözüm Önerileri

A Game Theoretical Model for Anticipating Email Spear-Phishing Strategies

Contact Info

Product

Resources

About