Mobile Gaming Applications Hit Hardest, With Close to 2 Million Unauthorised Releases Expected in 2015
Arxan Technologies, the leading provider of application protection solutions, today announced the publication of its 4th annual ‘State Of Application Security Report,’ with new research on the ecosystem for pirated software and digital assets. Conducted by Arxan and iThreat Cyber Group (ICG), the report reveals that illegal reproduction and distribution of copyrighted material on the Web is booming as a result of security breaches in both mobile and desktop software applications.
Arxan and ICG analysed data collected over the past three years that examined the distribution of unauthorised digital assets on the Dark Web[1] and indexed sites that are focused on distributing pirated releases. Thousands of sites were analysed, including over 50 in the sole business of distributing pirate releases. The report focuses on the areas of software, gaming and digital media.
The analysis revealed:
- 1.6M releases were pirated in 2014.
- The extent of digital media piracy is far more extensive than commonly perceived.
- In 2013 and 2014, on average nearly 1 million pirated releases were found.
- In 2015, Videos (TV, Movies, etc., excluding Adult Content) accounted for about 50 percent, and Adult content accounted for roughly 25 percent of releases found.
- The cost or un-monetised value of copyright infringing releases in 2014 is estimated to be more than $800 billion.
- Piracy of software and digital assets is on the rise.
- 1.96M pirated assets are expected by the end of 2015 – an increase of 22 percent over the last three years.
- If distribution of pirated games continues at the current rate, over 31,000 unauthorised releases will be active in 2015 – double the number of pirated releases just three years ago.
- Malware linked to pirated software is an enormous cost to both businesses and consumers. Enterprises will spend $491 billion, due to malware associated with pirated software.
“The findings in Arxan’s State of Application Security prove that piracy is one of the greatest threats to intellectual property and creative content, highlighting the enabling role pirated releases play in spreading extremely harmful malware across a range of industries – where the challenges of defending against it – are complex, but not insurmountable,” said Patrick Kehoe, Chief Marketing Officer of Arxan.
The report found that piracy is on the rise due to poorly protected applications and a rapidly evolving distribution system for pirated releases. Few applications, for example, are deployed with protected binary code. An adversary can directly access unprotected application binary code, analyse and reverse-engineer it back to source-code. With the revealed source-code, pirates are able to copy and/or maliciously modify and then redistribute software quite easily. MetaIntelli’s June 2015 analysis of 96,000 Android apps from the Google Play store found that less than 10% of them had protected binary code.
Hackers are gaining access to digital media using a number of techniques outlined in the report. Most are stealing cryptographic keys that govern access to digital media and using these keys to decrypt encrypted digital media files, and illegally distribute them.
Hundreds of millions of Internet users worldwide are accessing pirate distribution sites. Many of these sites survive based on Ad revenue (i.e., advertisers are paying to promote their products and services on these sites), while others charge users a fee or request donations from their users. The largest content theft sites generated more than $200 million in advertising-driven revenues in 2014.
“The threat posed by piracy cannot be limited to its effects on one company, one industry or one country. The sheer number of cases in the US and abroad, dictates software, digital media and mobile gaming industries become savvier with regards to techniques for combatting pirated releases across national boundaries,” said Jeff Bedser, CEO of iThreat Cyber Group. “The best thing content owners can do is continually monitor the marketplace and equip themselves with intelligence tools and leverage data and application protection techniques to fight piracy head on.”
About Arxan Technologies
Arxan provides the world’s strongest application protection solutions. Our unique patented guarding technology 1) Defends applications against attacks, 2) Detects at run-time when an attack is being attempted, and 3) Responds to detected attacks to stop them, alert, or repair. Arxan offers solutions for software running on mobile devices, desktops, servers, and embedded platforms – including those connected as part of the Internet of Things (IoT) – and is currently protecting applications running on more than 300 million devices across a range of industries, including: financial services, high tech/independent software vendors (ISVs), manufacturing, healthcare, digital media, gaming, and others. The company’s headquarters and engineering operations are based in the United States with global offices in EMEA and APAC.
About iThreat Cyber Group
Since 1997, when it was founded as the Internet Crimes Group, iThreat® Cyber Group (ICG) has offered companies and individuals a powerful suite of intelligence tools and strategies. The result: ICG can help companies combat the constant threats of counterfeiting, piracy and Internet fraud. Coupled with in-depth, expert human analysis, ICG can provide critical information to proactively and reactively protect people, operations, and intellectual and physical property. ICG is the leader in providing timely risk information, investigation, and analysis to help clients mitigate threats to key assets.
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.