Feeds

Mobile subscribers showered with spam

Nuisance messages speeds up customer churn

Top three mobile application threats

Once upon a time in America

Over in the US, email to mobile attacks are dominant. Text messaging via the internet provides a cost-effective platform for miscreants to reach mobile subscribers. While numerically insignificant targets in the past, emails associated with mobile numbers are now showing up on the radar of spammers and phishers.

One in four messages sent to mobile devices via email in North America are made up of spam, according to figures from Cloudmark's mobile operator clients in the region. Mobile spam can drive up resource utilisation and customer complaints. Adding insults to injury, victims of mobile spam in the US are often charged for receiving junk SMS messages, making them more likely to complain and ask for credits from their carrier.

To date, mobile spam attacks in the US have taken the form of unsolicited advertising. However it's probably only a matter of time before scammers get in on the act, as they've already done in Europe.

Safe European home

In Europe, mobile operators' "walled garden" strategies have limited the amount of third-party content from reaching mobile users. This, combined with the relatively high cost of sending SMS messages, has limited (but not eliminated) attacks.

Low-volume, high-value attacks involving phishing and premium rate phone numbers predominate in Europe. SMS flooding — denial of service (DDos) attacks in which large volumes of SMS spam are sent during short time intervals - are also a problem in the region.

Cloudmark reckons so-called vishing attacks that combine the use of VoIP networks with conventional email phishing scams will become a growing problem for mobile subscribers this year. It warns that mobile network abuse can tarnish an operators' brand and lead to increased support costs and customer churn as some customers react to being deluged by garbage by switching networks.

Worse still, mobile abuse may undermine operator attempts to introduce revenue-producing services.

"The growth in mobile messaging abuse is exposing operators to additional and unnecessary costs at a time when they are turning to messaging and mobile advertising to open up new revenue streams," said Jamie de Guerre, chief technology officer at Cloudmark.

"For mobile operators, the greatest risk is that subscribers' zero tolerance attitude towards intrusive mobile spam will prompt them to change providers or opt out of mobile advertising and marketing opportunities, leaving much needed new revenue streams fatally crippled from the outset."

Cloudmark, a provider in the emerging mobile security space, advises mobile operators to take be proactive in protecting their subscribers rather than taking a wait and see approach to possible security problems. ®

Combat fraud and increase customer satisfaction

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Heartbleed exploit, inoculation, both released
File under 'this is going to hurt you more than it hurts me'
Canadian taxman says hundreds pierced by Heartbleed SSL skewer
900 social insurance numbers nicked, says revenue watchman
German space centre endures cyber attack
Chinese code retrieved but NSA hack not ruled out
Burnt out on patches this month? Oracle's got 104 MORE fixes for you
Mass patch for issues across its software catalog
Reddit users discover iOS malware threat
'Unflod Baby Panda' looks to snatch Apple IDs
Oracle working on at least 13 Heartbleed fixes
Big Red's cloud is safe and Oracle Linux 6 has been patched, but Java has some issues
prev story

Whitepapers

Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.