Researchers spot first mobile spyware

By

Researchers with McAfee claim to have found a first spyware application that targets the Symbian operating system for mobile phones.


The spyware application comes bundled with a variant of the MultiDropper mobile phone Trojan. McAfee refers to the new online pest as SymbOS/MultiDropper.CG. It tracks SMS text messages that are sent and copies log file with the phone number of incoming and outbound phone calls.

"Although SymbOS/MultiDropper.CG does not appear likely to be a winner, it does signify a probable switch in malware authors’ goals," Jimmy Shah, a mobile antivirus researcher with McAfee, noted on a company blog.

"Rather than destroying your data and information, they’re stealing it for profit."

It appears that the spyware developer isn't spreading the software himself. Instead he is renting out the application to others and provides them with a personal account on a server that gathers all the data from infected phones.

The spyware application provides further evidence that malware will increasingly target mobile phones. Mobile devices become an attractive target for online criminals as the Symbian software is evolving into the defacto standard for consumer models. Smartphones furthermore are more starting resemble computers more closely with consumers getting used to installing and running software on the devices.

A first spyware proof of concept application surfaced about eight months ago, noted Shah.

"There was much speculation on how much time it would take for malware authors to integrate it into their own malware. We have seen malware authors create custom prototype code to implement new attacks but it is interesting to see them purchase commercial spyware to do their job for them."
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
firstmobileresearcherssecurityspotspyware

Sponsored Whitepapers

Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Saviynt Simplifies GRC and Access Control for SAP and Beyond

Events

Most Read Articles

Ex-student charged over Western Sydney University cyberattacks

Ex-student charged over Western Sydney University cyberattacks
Home Affairs officer accessed data on "friends and associates"

Home Affairs officer accessed data on "friends and associates"
SA Water plans 'once-in-a-generation' core technology uplift

SA Water plans 'once-in-a-generation' core technology uplift
Sportsbet recruits 'security champions' in shift-left strategy

Sportsbet recruits 'security champions' in shift-left strategy
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?