First Cell-Phone Java Trojan On The Loose - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
News
News
2/28/2006
04:18 PM
50%
50%

First Cell-Phone Java Trojan On The Loose

The exploit can attack any smart phone, PDA, or cell phone that runs Java 2 Micro Edition, Sun Microsystems' version for consumer electronics devices.

Alerts went out Tuesday from several security companies warning users of an in-the-wild Trojan horse able to infect nearly any cell phone.

The Trojan, named Redbrowser.a by McAfee, F-Secure, and the discovering vendor, Moscow-based Kaspersky Labs, can attack any device -- smart phone, PDA, or cell phone -- that runs Java 2 Micro Edition (J2ME), Sun Microsystem's version for consumer electronics devices.

"The important thing about this Trojan is that it can get to any device that runs J2ME," said Shane Coursen, a Kaspersky senior technical analyst. "A good portion of cell phones use Java for games, and some of their other programs."

Redbrowser.a appears on a device as a text message with an accompanying file attachment. The file claims it's a program that lets users visit WAP sites without a connection. In reality, the Trojan installs code that sends out text messages to premium-rate phone numbers in Russia. The user's charged $5 to $6 for each message.

According to the alert posted by McAfee, the Trojan's text sending function doesn't work in the U.S. "We are currently assuming this is due to the numbers dialed being local to Russia," the alert read.

Coursen wasn't able to identify the perpetrators, nor their motivation for creating the Trojan. One possibility, he said was that they might be connected to the premium numbers. "There's no evidence of that," he cautioned, but acknowledged that similar scams have been run in the past by attackers who planted auto-dialers on unsuspecting users' PCs, then raked in fees when those dialers rang up 900 numbers over a land line.

Most anti-virus vendors, including Kaspersky, have labeled Redbrowser.a as a low-level threat. "There's no global outbreak going on," said Coursen.

But it is, he said, another indicator that malicious code writers are expanding into mobile territory. "We are finding that there are mobile viruses out there," he said, "and I believe we're moving toward a real threat."

Kaspersky, F-Secure, and McAfee all sell products aimed at protecting mobile users from worms, viruses, and Trojans.

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
The State of IT & Cybersecurity Operations 2020
The State of IT & Cybersecurity Operations 2020
Download this report from InformationWeek, in partnership with Dark Reading, to learn more about how today's IT operations teams work with cybersecurity operations, what technologies they are using, and how they communicate and share responsibility--or create risk by failing to do so. Get it now!
News
IT Spending Forecast: Unfortunately, It's Going to Hurt
Jessica Davis, Senior Editor, Enterprise Apps,  5/15/2020
Commentary
Helping Developers and Enterprises Answer the Skills Dilemma
Joao-Pierre S. Ruth, Senior Writer,  5/19/2020
Slideshows
Top 10 Programming Languages in Demand Right Now
Cynthia Harvey, Freelance Journalist, InformationWeek,  4/28/2020
Register for InformationWeek Newsletters
Video
Current Issue
Key to Cloud Success: The Right Management
This IT Trend highlights some of the steps IT teams can take to keep their cloud environments running in a safe, efficient manner.
White Papers
Slideshows
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll