Feeds

back to article 'Sexy View' SMS malware targets Symbian devices

Bad sorts have created a malware targeted at Symbian mobile phones that comes signed with an apparently valid Symbian Certificate. Because it is signed the application can potentially gain privileged access, net security firm F-secure warns. The malware is also unusual because it is targeted at S60 3rd Edition phones, instead of …

COMMENTS

This topic is closed for new posts.

Brilliant

Nice to know us Symbia people are being targeted. Now phuck offf and play with windows.

0
0
Silver badge
Flame

But it begs the question.

"Who signed the worm?" Normally mass-distribution apps are signed by Nokia themselves after going through quality assurance. Either something slipped through the cracks or the worm makers enlisted inside help.

0
0
Thumb Down

yawn

So, once again, let's get this straight. First of all, somebody is stupid enough to install it. Then, each time it tries to phone home or propagate, they press "yes" again? They continue to keep pressing "yes" every few minutes as the worm tries to propagate? Frankly, anybody that stupid is too dumb to own a smartphone anyway.

0
0
Silver badge

@Neil

Apparently, *because* it is signed, once it's installed and running, it can access the protected parts of the system. These include the SMS subsystem and the address book. From what I've read, it's able to pull these off without further human intervention. That's why it's classified in some places as a worm rather than a trojan.

0
0
Bronze badge

@Charles

It's also possible that the worm creator was able to break the security on the signature. I say that without knowing any details of how it works, but it's not inconceivable. Only as strong as its weakest link, and all that.

0
0

Self-signed?

There are apps for S60 phones that will allow self-signing (Freesigner) and sites that will sign apps for you (Symbian Signed) - so maybe it wasn't Nokia that signed this at all?

That said - it's still a case of people OK'ing stuff they don't know properly

0
0
This topic is closed for new posts.