Threats Against Smart Cell Phones Are Mounting - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

02:52 PM

Threats Against Smart Cell Phones Are Mounting

A security firm lays out this year's attack timeline to demonstrate the quickening pace of exploits.

Mobile phone security is bad now, but it is only going to get worse, a security firm said Wednesday as it laid out this year's attack timeline to demonstrate the quickening pace of exploits.

Finnish anti-virus vendor F-Secure listed 2004's attacks against smartphones, particularly those running the popular Symbian operating system -- Nokia is a one of the phone makers whose devices use the OS -- starting with the spring's Mosquito "trojanized" game and running through this week's similar threat, another Trojan masquerading as a popular cell phone game, Metal Gear Solid.

In between, the Cabir worm spread, which first became public in June, has been detected in China, India, Turkey, the Philippines, and Finland.

Most alarming, said F-Secure, is the ramp-up of worms during the last 30 days. Since November 19, eight new exploits attacking smart phones have been uncovered by F-Secure. Five are of the Cabir family, while three are variants of Skulls, a Trojan horse that replaces icons on phone displays with pics of human skulls.

"In the future, it's likely that we'll also see new kinds of attacks," said F-Secure in a statement. "They'll include Trojan horses in games, screensavers, and other applications [that] result in false billing, unwanted disclosure of stored information, and deleted or stolen user data."

Anti-virus firms have reacted to the increase in mobile device exploits by releasing software suited for cell phones and handhelds. Symantec, for instance, rolled out a PDA-specific anti-virus product in 2003, while this December, Trend Micro made its Mobile Security package available for free downloading. F-Secure also sells something called Mobile Anti-Virus.

F-Secure isn't the only security firm to spot a rise in cell phone threats.

Symantec's Vincent Weafer, the senior director of the Cupertino, Calif.-based security vendor's threat lab, has it on his list of likely security stories for 2005.

"The increasing number of attacks shows that there's an interest building out there among the hacker community," he said of smartphone worms and Trojans. And it'll get worse, a lot worse, he said. "As e-commerce becomes a bigger part of what people do with smart phones, so too will attacks." Currently, e-commerce conducted over smartphones, such as buying goods over the Internet via phone or even paying for small vending charges by phone, is popular in just a few countries, such as Japan.

In the near future, Weafer expects to see smartphone infections that mimic human vectors, not the network-cruising threats that typically cause such a ruckus on Net-connected PCs and servers, like 2003's MSBlast or 2004's Sasser.

"What's unusual now is that most [smartphone] infections are caused by airplanes, just as something like SARS was," he said. Like a real-world human virus, today's phone worms spread because people criss-cross the globe. In this case they bring their infected devices, not infectious diseases, with them. And those infected phones, when used to conduct e-commerce, will be at risk of exploitation for financial gain, just as PC users have been subjected to a massive increase in for-profit scams like phishing and spyware attacks.

"Where there's e-commerce," said Weafer, "there'll be e-crime."

Including on a phone near you it seems.

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
The State of Cloud Computing - Fall 2020
The State of Cloud Computing - Fall 2020
Download this report to compare how cloud usage and spending patterns have changed in 2020, and how respondents think they'll evolve over the next two years.
Top 10 Data and Analytics Trends for 2021
Jessica Davis, Senior Editor, Enterprise Apps,  11/13/2020
Where Cloud Spending Might Grow in 2021 and Post-Pandemic
Joao-Pierre S. Ruth, Senior Writer,  11/19/2020
The Ever-Expanding List of C-Level Technology Positions
Cynthia Harvey, Freelance Journalist, InformationWeek,  11/10/2020
Register for InformationWeek Newsletters
Current Issue
Why Chatbots Are So Popular Right Now
In this IT Trend Report, you will learn more about why chatbots are gaining traction within businesses, particularly while a pandemic is impacting the world.
White Papers
Twitter Feed
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Sponsored Video
Flash Poll