Home > Security News > New worm attacks Windows smartphones
Security News:
EMAIL THIS

New worm attacks Windows smartphones

By SearchSecurity.com Staff
17 Nov 2008 | SearchSecurity.com

Security Wire Daily News
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google

Researchers at Symantec Corp. have discovered a new worm that attempts to attack smartphones running Windows CE platform on ARM processors.

SearchSecurity.com:
To get security news and tips delivered to your inbox, click here to sign up for our free newsletter.

Symantec said the worm is polymorphic, meaning it mutates based on the type of traffic it encounters to evade intrusion defense systems. Once the worm compromises a smartphone it spreads by making copies of itself and begins reaping havoc, including making unwanted phone calls to premium phone numbers, said Symantec software engineer Andrea Lelli.

"It spreads by generating new polymorphic copies of itself each time, and can cause a severe nuisance on a compromised phone," Lelli said in the Symantec Security Response blog.

Smartphone security:
Smartphone security: The growing threat of mobile malware: The increasingly pervasive use of wireless handhelds in the enterprise is just one reason why malware pros are getting serious about mobile malware.

Apple iPhone mail, Safari prone to spoofing: A security researcher discovered some design flaws in Apple's iPhone that could leave the smartphone vulnerable to phishers and spammers.

Survey exposes lax mobile security: Executives say they worry about smartphone security, but according to a survey from The Economist and Symantec, their approach to the problem is often inadequate.

The new worm is smarter than previous smartphone worms discovered in the wild. It spreads via storage cards rather than via Bluetooth, which quickly drains batteries.

Called WinCE.Pmcryptic.A, the new worm bricks the cell phone by cycling through different screen colors until the screen turns black, Lelli said. The worm also eventually overloads the smartphone capacity.

So far the threat of being infected is low. Victims can eventually delete all the worm executables, but file system menu folders and system colors need to be reset to their default values. Lelli warned Windows CE users to pay attention to the storage cards they plug into the smartphone.

"Unfortunately, WinCE does not provide, by default, tools for doing this, so it is likely that an infected user will need to download and run third-party tools in order to bring order back to the compromised device," Lelli said.



Tags: Handheld and Mobile Device Security Best PracticesEmerging Information Security ThreatsMalware, Viruses, Trojans and SpywareSmartphone and PDA Viruses and ThreatsVIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google



RELATED CONTENT
Handheld and Mobile Device Security Best Practices
Secure your remote users in 2010
Researchers find thousands of flawed embedded devices
Best Mobile Data Security Products
Should Windows Mobile updates come from Microsoft?
MMS messaging spoof hack could have global ramifications
How to prevent mobile phone spying
Unified communications: Securing a converged infrastructure
RIM patches serious BlackBerry Attachment Service flaws
How secure are iPhone App Store mobile applications?
Is there a spy on my mobile device?
Handheld and Mobile Device Security Best Practices Research

Emerging Information Security Threats
Hackers to sharpen malware, malicious software in 2010
Modern malware, stealthy botnets, adapt quickly, expert says
New ransomware Trojan pushes victims to buy software
Bruce Schneier on outsourcing, awareness training
US-CERT warns of BlackBerry snooping software
Marcus Ranum on cyberwarfare, infosec careers
Researchers find thousands of flawed embedded devices
Enterprise botnets contain thousands of malware variants
Nuke and pave to eradicate botnets
Rand study urges caution on cyberwarfare attacks

Malware, Viruses, Trojans and Spyware
Increase in Gumblar backdoors poses FTP credential problems
Hackers to sharpen malware, malicious software in 2010
iPhone worm Rickrolls jailbroken phones
Israeli Mossad add Trojan Horse to Syrian laptop
Schneier-Ranum Face-Off: Is antivirus dead?
Modern malware, stealthy botnets, adapt quickly, expert says
Computer worm infections up, scareware antivirus down, Microsoft says
Web-based attacks skyrocket, pirating sites surge, security firms say
Mini guide: How to remove and prevent Trojans, malware and spyware
Kaspersky system analyzes malicious URLs on Twitter for malware

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
DNS rebinding attack  (SearchSecurity.com)
drive-by pharming  (SearchSecurity.com)
JavaScript hijacking  (SearchSecurity.com)
man in the browser  (SearchSecurity.com)
phlashing  (SearchSecurity.com)
polymorphic malware  (SearchSecurity.com)
pulsing zombie  (SearchSecurity.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



More Tips to Secure Your Network
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy
  TechTarget - The IT Media ROI Experts