iTnews

First smartphone trojan detected

By Dan Raywood on Aug 13, 2010 3:11PM
First smartphone trojan detected

Attack runs on Android.

Warnings have been made of the first malicious program to be classified as a Trojan-SMS for smartphones.

Kaspersky Lab said that the attack runs on Google's Android operating system and has already infected a number of mobile devices. It said that the program appears as a media player application and users are prompted to install a file of just over 13KB.

Once installed on the phone, the trojan uses the system to begin sending SMS messages to premium rate numbers without the owner's knowledge or consent, resulting in money passing from a user's account to that of the cyber criminals.

Denis Maslennikov, mobile research group manager at Kaspersky Lab, said: “The IT market research and analysis organisation IDC has noted that those selling devices running Android are experiencing the highest growth in sales among smartphone manufacturers. As a result, we can expect to see a corresponding rise in the amount of malware targeting that platform.

Simeon Coney, VP of business development and strategy at AdaptiveMobile, said that he had heard that the trojan was masquerading as a media player and was sending out premium rate SMS messages.

He said: “This is interesting, it was a real uptake on J2ME on smartphones and we are seeing premium rate SMS as a good way of gaining illegal revenue. I was looking at the Kaspersky state of malware report and it said we will start to see a lot more malware for mobiles.

“They will do it in a way that they are hard to track down and use a third party who is a reseller of a reseller. We saw one instance where it started in the Arctic and directed to Cyprus, then on to Luxembourg and then on to New Zealand, so law enforcement cannot track them down.”

Asked if this could be the start of more mobile malware, Coney said: “I see the same setup as with PCs and the mobile space we are seeing a number of viruses and more variants and we see more things coming that work.”

Kaspersky Lab recommended users pay close attention to the services that an application requests access to when it is being installed. That includes access to premium rate services that charge to send SMS messages and make calls. When a user agrees to these functions during the installation of an application, the smartphone may then be able to make calls and send SMS messages without further authorisation.

See original article on scmagazineus.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
detected first messages mobile numbers premium rate security sends sms that to trojan

Partner Content

MSI shows first laptops with Wi-Fi 6E, Nvidia RTX 30 graphics
Partner Content MSI shows first laptops with Wi-Fi 6E, Nvidia RTX 30 graphics
MSI launches innovative new laptops
Partner Content MSI launches innovative new laptops
Improving returns from SD-WAN spending
Sponsored Content Improving returns from SD-WAN spending
NCS expands into Australia in partnership with Optus Enterprise
Sponsored Content NCS expands into Australia in partnership with Optus Enterprise

Sponsored Whitepapers

The risky business of open source
The risky business of open source
Mitigating open source risk in your organisation
Mitigating open source risk in your organisation
How to choose a WAF that's right for you
How to choose a WAF that's right for you
The global telco 5G cloud gaming opportunity
The global telco 5G cloud gaming opportunity
Building a ransomware remediation backup strategy
Building a ransomware remediation backup strategy

Events

  • On-Demand Webinar: How Poly and Microsoft are Embracing Future Work Environments
By Dan Raywood
Aug 13 2010
3:11PM
0 Comments

Related Articles

  • Google tries to smash smishing in Messages
  • Telstra to block Services Australia SMS phishing scams
  • Reserve Bank of NZ governor apologises for 'serious' data breach
  • Google unravels state-of-art Android and Windows exploit chains
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Telstra pilots its first neurodiversity recruitment program

Telstra pilots its first neurodiversity recruitment program
Update Chrome or risk remote takeover, US govt warns

Update Chrome or risk remote takeover, US govt warns
Accellion hack behind Reserve Bank of NZ data breach

Accellion hack behind Reserve Bank of NZ data breach
Google unravels state-of-art Android and Windows exploit chains

Google unravels state-of-art Android and Windows exploit chains
You must be a registered member of iTnews to post a comment.
Log In | Register
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.