FUD and Sensationalism from F-Secure on Android Malware Numbers

I came across a fluff piece on TechCrunch today titled “Android Accounted For 79% Of All Mobile Malware In 2012, 96% In Q4 Alone, Says F-Secure“.  Quite the sensationalist title, and a quick read of the actual “report” (PDF) shows that these are pretty dodgy statistics.  The “report” is more marketing material than anything else – it lots of pretty pictures of people using phones, low level language use and even an ad at the end of it for their mobile security suite.  I don’t know if the author didn’t thoroughly read the report and just copied and pasted the nicely coloured charts or if she just wanted to get the most eyeballs she could via sensationalism, but either way it’s some poor journalism.  There are some pretty blatant issues with the “report” that are completely ignored by the author:

  1. The study was conducted by F-Secure, an anti-virus company that is hardly impartial in such matters:  they sell “F-Secure Mobile Security,” one of the most expensive anti-virus Android products available.  So they have a definite vested interest in wanting Android users (a huge and still expanding market) to be afraid of getting malware on their phones.
  2. The actual report itself plays extremely fast and loose with the definition of what is malware.  Two of the more egregious examples:
    1. “Android Network Toolkit, Aniti.A is a penetration testing tool that allows user to perform certain tests via its automation interface… Like most penetration testing programs, this tool is intended for use in a legitimate context. It may however also be misused by malicious parties.
      So an app that can be used for network penetration is Android malware?  It might be used a hacking tool, but it won’t affect your actual Android handset negatively in any way.
    2. “EksyPox.A is a program that offers a workaround for a vulnerability found on the Exynos 4 chip. This vulnerability, if successfully exploited, could allow any application to gain root access on devices running on the Exynos 4 chip. EksyPox.A provides a way to patch the security hole, but not without exploiting the vulnerability first.”
      So a third party app that patches a huge Samsung security issue that hasn’t been addressed for all handsets yet is malware because it uses that same security issue to patch it and lock down an avenue of possible malware infection.  Madness!
  3. The report itself is so obviously a marketing tool rather than a legitimate piece of research that alarm bells should be ringing all around.  Serious reports don’t usually
    1. have full pages with stock photos heading up every section;
    2. pitch their writing to a sixth grade reading comprehension level;
    3. provide a mickey-mouse definition of the word malware for their readers (p.18, “Programs categorized as malware are generally considered to post a significant security risk to the user’s system and/or information.”).
  4. The report again hugely inflates its numbers by including “Top 30 Potentially Unwanted Software” … which is more than double the number of the “Top 30 Malware” counts (p.32)
  5. The report doesn’t differentiate between malware that can be found on Google Play app store vis a vis malware that has to have the security system set to allow third party apps to be installed.  This would make a  significant difference to the numbers, as the average user only installs from the app store.
  6. The report doesn’t break down the relative numbers of malware apps to versions of Android.  If 90% of the black apps in the stats target older verisons of Android that aren’t in common usage anymore, such as Donut  and Eclair, then the level of actual threat representation relative to more current versions of Android is hugely distorted.

I can’t imagine how any journo could possibly take this seriously and report on it as such – either the author doesn’t really understand the topic, or was phoning it in in order to get a headline-grabbing piece out the door.  The source is pretty obviously marketing FUD from a company that wants to sell antivirus products to Android users, not a serious report.


Tags: ,
Copyright Tyler Style 2015. All rights reserved.

Posted 2013-03-07 by Tyler in category "Android", "Mobile Phone", "Technology

About the Author

Totally a geek engineer type – I like to think, tinker and make things go BOOM! I’m also pretty introspective, and enjoy analyzing most things around me and talk about them (often to exasperation). I don’t do much pop culture in general, and don’t own a TV – give me lively debate with another inquiring mind instead any day of the week!

Leave a Reply

Your email address will not be published. Required fields are marked *