Tech Tip: Your Mobile Strategy vs. TangleBot


Recently, malware targeting desktop PCs, laptops, and servers has received significant media attention. However, mobile malware threats lurk as well.

TangleBot is one such pesky malware set to invade Android operating systems. With increasing reliance on mobile technology in today’s workplace, this type of malware can be particularly dangerous for business operations.

TangleBot gives hackers full control over an infected device gaining them the ability to steal personal information and credentials. When the malware is installed surreptitiously on the device, attackers gain permissions like the ability to spy on communications through applications like the device’s camera, microphone, location services, etc.

This malware can create serious problems for you if it goes undetected, as it can monitor and record most user activity, including websites visited and credentials entered.

Tanglebot spreads via text messages containing infected links. The user might be encouraged to click on the link by referencing a relevant topic, perhaps something having to do with the Covid-19 pandemic, vaccination appointments, or even a local power outage. Upon clicking the link, the user is prompted to provide the attacker with privileges no applications on your phone should ever need.

One of the best ways to keep your phone safe from this malware is always to use scrutiny when handling suspicious or unsolicited messages sent to your phone. Just make sure you’re encouraging your staff to be as careful as possible in this regard. It’s one thing for you to follow safe measures, but another entirely to get your staff on board.

Good security protocols and proper training can go a long way toward keeping your employees and your business secure, particularly while working remotely and especially for devices owned by the company. You can take these best practices one step further by implementing them alongside dedicated mobile security solutions that can whitelist or blacklist applications, as well as disable the installation of applications without company approval. This keeps employees from downloading applications that request unacceptable permissions.

Computerware can help your organization keep itself safe from all types of threats, mobile malware included. To learn more, go to: https://www.cwit.com/blog, or reach out to us at (703) 821-8200.

Alan Edwards, CISM, is chief information officer at Computerware, Inc., in Vienna, Virginia.

tags

Leave a Reply

Your email address will not be published. Required fields are marked *