Antivirus companies are warning of new malicious software that can infect any cell phone capable of running Java applications, not just feature-rich smart phones.
The Trojan horse was first spotted by Moscow-based Kaspersky Lab, which calls it RedBrowser. The malicious code poses as an application that promises people the ability to visit mobile Internet sites using text messages instead of an actual Net connection, Kaspersky said in a statement Tuesday.
Instead, the Trojan sends messages to certain premium rate numbers that charge between $5 and $6 per message, Kaspersky said. That could drive up the text message bill for mobile phone users in Russia on the Beeline, MTS and Megafon networks.
So far, Kaspersky has received only one sample of RedBrowser. It is a proof-of-concept Trojan and has not actually infected any handsets in the wild.
"However, other versions of RedBrowser, or similar programs, may well be circulating on the Internet," Kaspersky said. "RedBrowser is a sign that virus writers are extending their reach and no longer only targeting smart phones."
Other experts agreed, pointing out that previous cell phone pests targeted mostly smart phones.
Security and wireless industries disagree about how to fend off emerging threat.
"The (RedBrowser) threat itself is low risk and very specific to the Russian market, but it is an important proof of concept in the mobile space," a McAfee representative said in a statement. "It is the first threat aimed at feature phones using Java and therefore independent of either the Symbian or Microsoft operating systems for mobile phones."
The Trojan is a Java application, a JAR format archive. The file, called "redbrowser.jar", can be downloaded to the handset from the Internet, via Bluetooth or a PC link, Kaspersky said. The file can easily be removed from a phone using the standard application removal utilities.
Mobile phone users should be careful not to download or launch unknown programs, antivirus companies suggested.
This goes to prove an old adage: You can't scam an honest person.
Gee, I wander what all these thieves thought they would get with a program that promises to let them steal internet service from their phone companies, for FREE.
Anyone that would be infected with this, deserves it.
<<independent of either the Symbian or Microsoft operating systems for mobile phones.>>
Not really. Not really at all. What it means, is that the virus is dependent upon a Java implementation. Symbian ships with Java. Last I heard, Windows Mobile does not.
I read the article and the comments. Software is the problem. No one is talking about finding a way of keeping the software offline or protected by a moat. All we hear is firewall which is busted before it is implemented. Think folks that if you keep hitting your head up against the sall wall, that might be the cause of your headache. That's what I think. Ciao now.
Proof of concept trojan is being used to demonstrate the importance of anti-viruses for mobile users and operators:-) If you read the article carefully it explains that the trojan is supposed to send premium sms. Anyone who knows how content providers work with cellular operators may imagine what operator may do to such a content provider who is using trojans to fake users;-)) The simple disconnect of the SMS numbers used by trojans is the less harmful thing, followed by the action in the court. All this story is a cheap PR of security companies trying to find other markets;-) Please don't treat readers so stupid. And don't blow the hype.
One another thing: I was always respect News.com for good news coverage. I just anticipate that News.com should sorta analyse the news before re-publishing.
Chinese authorities have reportedly taken iPads from a third-party retailer, a move apparently brought on by Apple's continued refusal to honor a trademark for the iPad name owned by a Chinese manufacturer.
NY professor believes that a word-based algorithm can help bring together those who believe, with one glimpse, that they have found and lost the love of their lives.
After a higher-than-expected fourth quarter, the video subscription service unburdens itself of a pending yearlong class action suit and settles for $9 million.
Along with green-lighting Google's buy of Motorola, the Justice Department today OKs an Apple-Microsoft-RIM partnership deal to buy Nortel patents, and Apple's plan to acquire Novell patents.
Chamtech's spray-on antenna uses a nano material to provide a low-power boost to antenna range. The wireless-in-a-can product may some day bring an end to unsightly cell towers.
This week, we pass around Sony's new PlayStation Vita for some hands-on testing, check out HP's newest Beats Audio laptop, and debate the best and worst Valentine's Day gadget gifts.
EnerG2 opens a plant to make an engineered carbon that will improve performance of energy storage devices and make storage for start-stop hybrid cars less expensive.
Gee, I wander what all these thieves thought they would get with a program that promises to let them steal internet service from their phone companies, for FREE.
Anyone that would be infected with this, deserves it.
Not really. Not really at all. What it means, is that the virus is dependent upon a Java implementation. Symbian ships with Java. Last I heard, Windows Mobile does not.
I read the article and the comments. Software is the problem. No one is talking about finding a way of keeping the software offline or protected by a moat. All we hear is firewall which is busted before it is implemented. Think folks that if you keep hitting your head up against the sall wall, that might be the cause of your headache. That's what I think. Ciao now.
importance of anti-viruses for mobile users and operators:-) If
you read the article carefully it explains that the trojan is
supposed to send premium sms. Anyone who knows how
content providers work with cellular operators may imagine what
operator may do to such a content provider who is using trojans
to fake users;-)) The simple disconnect of the SMS numbers
used by trojans is the less harmful thing, followed by the action
in the court. All this story is a cheap PR of security companies
trying to find other markets;-) Please don't treat readers so
stupid. And don't blow the hype.
One another thing: I was always respect News.com for good
news coverage. I just anticipate that News.com should sorta
analyse the news before re-publishing.