Fortinet’s FortiGuard Labs attributed the discrepancy to the way Apple handles iOS application development and distribution.
“Unlike Android, which makes it fairly easy to place applications for people to download, iOS requires developers to undergo some strict screening from Apple before the application can make it to the Apple Store. That’s not to say that Apple is totally immune from being infiltrated by malware – the Eeki banking worm proves that – but it is a testament to why we’re seeing so little activity on the iOS platform”, said Axelle Apvrille, senior mobile anti-virus researcher at Fortinet.
According to FortiGuard Labs data samples, the top five Android malware families are Gemini, Hongtoutou, DroidKungFu, JiFake, and BaseBridge.
Gemini is a botnet that sends a victim’s geographic location and controls his/her phone remotely. For example, it can force the infected phone to call a given phone number.
Hongtoutou is a trojan live wallpaper that steals private information such as the victim's subscriber number and automatically visits websites that the malware directs it to. DroidKungFu is a botnet with capabilities such as remotely installing other malware, remotely starting specific applications, and adding bookmarks.
JiFake is a fake instant messenger application that sends text messages to premium phone numbers, while BaseBridge is a trojan that also sends text messages to premium numbers.
“We believe Android’s higher market share and open development environment comes with a price; an almost six fold increase in malware targeting the operating system,” Apvrille said.