Because it is signed the application can potentially gain privileged access, net security firm F-secure warns. The malware is also unusual because it is targeted at S60 3rd Edition phones, instead of the more common target of 2nd edition phones.
The Yxe-A Trojan originates in China and is packaged up with names such as "Sexy View" and "Play Boy", providing an indication that social engineering trickery plays a part in pushing the code. F-Secure describes the malware as a Trojan but other vendors describe it as a worm, in recognition of the discovery of what might be described as auto-spreading capabilities.
Security researchers at Fortinet report that the malware (which it calls the Yxes-A worm) harvests phone numbers from an infected device's file system, and repeatedly attempts to send SMS messages to these mobile numbers. These SMS messages direct surfers to a maliciously constructed website. When users of vulnerable devices "click" on the address in received messages, an attempt to download a copy of the malware will occur.
Fortinet adds that the malware gains information on the infected victim (such as serial number of the infected phone, subscription number etc) and posts this data to a remote server likely controlled by cyber criminals. It's unclear how many users have fallen victim to the attack or its ultimate motives.
Analysis of the malicious code remains ongoing. ®
not only SymbiansOS base, but Android too!
like on detik.com say :
Malware should be wary because it was increasingly spread to various devices, including mobile Android. This is evidenced by the findings of Kaspersky which found malware on the phone with the operating system from Google.
"Malware named 'Trojan-SMS.AndroidOS.FakePlayer.a' emerged as a media player application in general, but can send an SMS to premium numbers without the user's knowledge," said Mobile Research Group Manager Kaspersky Lab Denis Maslennikov. Kaspersky even claimed invention is the first malware that has ever been found in Android phones.
It is therefore no surprise that Kaspersky then insert size is 13 Kbytes malware into their antivirus databases. Kaspersky fact itself has no antivirus solution products for Android-based devices. Quoted from PC World, on Wednesday (11/08/2010), this is then pushed Kaspersky to make specific antiviral Android that reportedly will be released early 2011.
In addition, Maslennikov recommend that users be careful when it meets the requirements demanded of an application before installing. That is, the malware will not spread so easily in a device without permission from users.
refferal :
http://us.detikinet.com/read/2010/08/11/113955/1418040/323/malware-pengirim-sms-terdeteksi-di-ponsel-android
http://www.theregister.co.uk/2009/02/20/symbian_sms_malware/
http://feeds.feedburner.com/rootaddict
Tidak ada komentar:
Posting Komentar