????希望讓產品進入iOS App Store的軟件開發者們經常報怨蘋果（Apple）在他們頭上強加了各種條條框框，不過蘋果這樣做也是有原因的。除了要拿到30%的收入分成之外，還有一個原因，可以從上周五美國聯邦調查局互聯網犯罪舉報中心（FBI’s Internet Crime Complaint Center）發布的警告中看出來。

????警告開篇寫道：“FBI互聯網犯罪舉報中心了解到，近期有大量惡意軟件在攻擊安卓（Android）系統的移動設備。最新為人所知的兩個此類惡意軟件叫做Loozfon和FinFisher。

?????Loozfon是一個盜取信息的惡意軟件。犯罪份子利用這個軟件的各種偽裝來欺騙受害者。其中一個偽裝就是提供一個在家工作的機會，稱用戶只需在家里發發電子郵件，就能賺到不少錢。這種虛假廣告一般都有一個鏈接，會自動轉到一個惡意網站上，將Loozfon軟件推送到用戶的設備上。該惡意應用會從用戶的電話簿里竊取聯系信息，同時也會偷到受感染設備的電話號碼。

?????FinFisher是一個能控制移動設備的間諜軟件。安裝后，無論目標在何處，黑客都可以通過FinFisher對該移動設備進行遠程監控和控制。FinFisher可以藏身在特定的網頁鏈接里，也可以偽裝成一條系統升級短信。只要用戶點開它，它就會輕而易舉地直入到智能手機里。

????FBI給三星（Samsung）、摩托羅拉（Motorola）和HTC等運行谷歌（Google）安卓系統的智能手機機主提出了以下建議：

?????購買智能手機時，要了解這款設備的功能，包括默認設置。盡量關閉不必要的功能，將遭受攻擊的可能性降到最小。

?????根據手機的類型，有些操作系統可以進行加密。手機丟失或被盜時，加密程序可以保護機主的個人信息。

?????移動應用日益增長，用戶們在下載應用前應該看看開發者或開發公司的評測文章。

?????下載應用的時候，先看看需要向這個應用開放哪些權限。

?????密碼可以保護移動設備，它也是保護移動設備中的內容的第一層實體堡壘。除了使用密碼之外，還應開啟自動鎖屏功能，讓手機待機幾分鐘后就自動鎖屏。

?????用惡意軟件防護程序來保護移動設備。不少專門的防護軟件都可以保設備免遭流氓程序和惡意軟件的侵害。

?????當心那些需要共享地理位置的應用，因為它們會追蹤用戶的地理位置。這種應用可能被用作營銷之用，但也有可能用于違法活動，比如跟蹤或盜竊。

????Developers often complain about the hoops Apple (AAPL) makes them jump through to get their wares into the iOS App Store. But the company has its reasons -- besides its 30% cut of the revenue -- and one of them was illustrated by the warningissued Friday by the FBI's Internet Crime Complaint Center (IC3).

????"The IC3 has been made aware of various malware attacking Android operating systems for mobile devices," it begins. "Some of the latest known versions of this type of malware are Loozfon and FinFisher."

?????Loozfon is an information-stealing piece of malware. Criminals use different variants to lure the victims. One version is a work-at-home opportunity that promises a profitable payday just for sending out email. A link within these advertisements leads to a website that is designed to push Loozfon on the user's device. The malicious application steals contact details from the user's address book and the infected device's phone number.

?????FinFisher is a spyware capable of taking over the components of a mobile device. When installed the mobile device can be remotely controlled and monitored no matter where the Target is located. FinFisher can be easily transmitted to a Smartphone when the user visits a specific web link or opens a text message masquerading as a system update.

????For owners of smartphones running on Google (GOOG) Android platform -- including those made by Samsung, Motorola and HTC -- the Bureau offer these safety tips:

?????When purchasing a Smartphone, know the features of the device, including the default settings. Turn off features of the device not needed to minimize the attack surface of the device.

?????Depending on the type of phone, the operating system may have encryption available. This can be used to protect the user's personal data in the case of loss or theft.

?????With the growth of the application market for mobile devices, users should look at the reviews of the developer/company who published the application.

?????Review and understand the permissions you are giving when you download applications.

?????Passcode protect your mobile device. This is the first layer of physical security to protect the contents of the device. In conjunction with the passcode, enable the screen lock feature after a few minutes of inactivity.

?????Obtain malware protection for your mobile device. Look for applications that specialize in antivirus or file integrity that helps protect your device from rogue applications and malware.

?????Be aware of applications that enable Geo-location. The application will track the user's location anywhere. This application can be used for marketing, but can be used by malicious actors raising concerns of assisting a possible stalker and/or burglaries.