06.30.05 Mobile Malware Will Be A Social Disease By Jason L. Miller Dad, I've got a problem. It burns when I text. As the mobile phone generation graduates and begins classes in Smart Phone University, the risks of contracting certain "social" viruses will be on the rise. The next epidemic of malware will ride the streams of Bluetooth to infect everybody within 30 feet. The surgeon general's warning to "always use protection" is suitable guidance for the inevitable attacks scheduled to begin as early as 2007. eBusiness Help Accept All Major Credit Cards Secure and flexible e-commerce payment solutions Reach Thousands of Active Internet Users Your own premium business listing Marketing Tools To Make Sales Build your own Sales-Driving website for only $15.95/mo. Free Software Archive: Enterprise and Home Networking Downloads Virus Warnings / Patches Risk Virus Name Date Discoverd W32.Mytob.GN@mm 2005-06-30 W32.Kelvir.DU 2005-06-30 W32.Mytob.GM@mm 2005-06-30 W32.Spybot.RDW 2005-06-29 >>See All Current Threats... Top Security News Bush Creating National Security Service Within FBI The President has accepted and will implement many of the Robb-Silberman WMD Report recommendations on intelligence reform... This Just In: New Worm Poses As Breaking News The new worm making the rounds poses as a variety of purported breaking news stories online... Tumbleweed Releases New Version of MailGate AntiSpam Appliance Email and file transfer security solutions provider Tumbleweed Communications has announced the release of the latest version of its MailGate AntiSpam Appliance... US Slips National ID Card Into The REAL ID Deck The recently passed REAL ID Act provides for uniform standards in state-issued driver licenses, effectively making them a national ID card... One In Ten Admins Use Default Passwords A European survey conducted by a security software company finds quite a few people have not changed... Internet Security Companies: The New Mark For Hackers The Internet and computer security industry burgeons with growth as constant new challenges by hackers around the world creep up with various ways to screw with your computer... Secunia Discovers Browser Busters Internet security firm Secunia announced their discovery of vulnerabilities in several browsers they say can be exploited by hackers with less than honorable intentions... Microsoft Continues Movement To Crush Unix/Linux Microsoft announced yesterday they completed the acquisition of Sybari... Mobile Phones Put Virus Threat On Hold Several factors have to come into play before the breathless hype of antivirus vendors matches the reality... Preventsys Partners With Rapid7 Preventsys announced a technology partnership with Rapid7, the provider of NeXpose vulnerability assessment and risk management software... HP Notebooks Get Advanced Fingerprint Sensors Advanced fingerprint sensors from AuthenTec, which feature the company's award-winning TruePrint technology, are being embedded into the newest notebook computer by HP ... >>Read other Secuity Stories... In April, Security software firm SimWorks announced that the number of known trojan viruses found doubled. All of the viruses targeted Symbian-based phones, widely licensed by mobile phone giant Nokia. The spate of trojan viruses, which hide themselves inside other applications-especially games, raised some cautionary, but not overwhelming, concern. None of them was found "in the wild." This is likely because cell phone malware is still in a sort of "test phase," as most of it is produced by "proof-of-concept" entities who create the software and send it to security firms for testing. These are preparatory measures, but ne'er-do-wells keep close tabs and work on their own versions. Though 20 million smart phones (phones that have computer operating systems with Internet and wireless capabilities among others) were sold last year, proliferation hasn't saturated the general population enough for this to become widespread. But it is growing and security experts expect it to continue exponentially. Gartner IT Security predicts three conditions that must occur before the nuisance of mobile malware begins to be a real problem. (Read the Search Security article here.) • Penetration of smart phones and PDAs with always-on wireless must exceed 30% of consumers and organizations. Right now Gartner projects that figure to reach 10% by the end of this year. • Mobile platforms' operating systems and application languages must consolidate to no more than three choices splitting 90% of the market, with one platform getting nearly half of market share. • Mobile device users must be accustomed to commonly sending and receiving locally executable software. Accept All Major Credit Cards Secure and flexible e-commerce payment solutions "When all these factors come together, an attack could be more realistic," Gartner Vice President John Pescatore said. "In 2007 we'll begin to see incidents that cause damage." The first known mobile worm was developed by proof-of-concept firm, Cabir, out of Eastern Europe. Since its inception it has mutated several times from the original, from Cabir.A through Cabir.I. All strains of Cabir run on Symbian Series 60 platform, overwhelmingly used on Motorola, Nokia, Panasonic, and Sony Ericsson smart phones. The Cabir worms are transmitted through an infected application, an .SIS (Symbian installation system) application-installation file. It is spread through file sharing, like two friends connecting wirelessly to download games from one another. The craftiness of the application, though, is the scarier part. Cabir can replicate and transmit itself via Bluetooth by automatically trying to connect to other smart phones within a 10m radius. Phones targeted display a message asking the user if he/she wants to accept an outside message via Bluetooth. Once infected, the screen displays variations of the text "Caribe," and begins to bog down the phone by constantly looking for other phones to connect to. It spreads, literally, like an airborne virus, infecting phones with little protection or gullible owners. It has spread to 21 countries so far. "We recently reported [Cabir's] arrival in Australia and in other countries like China, the Philippines, Singapore, and the United Arab Emirates," Aaron Davidson, CEO of SimWorks International. Lasco.A, which is based on Cabir, is the latest mutation. The first to use two methods of replication, Lasco.A can create its own .SIS installer file that it sends to other phones on its own, or it can trojan itself into other .SIS applications to be transmitted through file sharing. The implications of infected phones are sweeping and unnerving. The minimum nuisance would be a spam annoyance that could slow down or stall everything completely. Theoretically though, these digital diseases could worm their way into credit lines, information databases, accounting records, even your car. Finnish security firm F-Secure, however, doesn't believe that cars with Bluetooth wireless capabilities can be infected. The Helsinki-based company ran tests on a Toyota Prius and investigated the theory. Read the Rest of the Article. About the Author: Jason L. Miller is a graduate of the University of Kentucky with a B.A. in Communication. After a recent stint in Japan, he has returned to his home in Lexington, KY. About SecurityProNews SecurityProNews is updated in real time with vital internet security alerts, news and in-depth articles for IT Managers. SecurityProNews understands that IT Management Begins With Security. SecurityProNews is brought to you by: SecurityConfig.com NetworkingFiles.com ITmanagementNews.com NetworkNewz.com DatabaseProNews.com SQLProNews.com ITcertificationNews.com SysAdminNews.com LinuxProNews.com WirelessProNews.com   Advertising Newsletters Corporate Info Site Map Support © 2005 SecurityProNews. An email newsletter. , Inc. 2549 Richmond Rd. Lexington KY, 40509 All Rights Reserved. Terms under which this service is provided to you. Read our privacy policy. Contact us. SecurityProNews is part of the iEntry Inc. Network of sites and newsletters.