Mobile Malware : Malware On The Go Part 3
This post is continued from :
Here we are going to discuss about some popular/notable malware for android, symbian and iOS.
Notable mobile malware :
1. Cabir: Infects mobile phones running on Symbian OS. When a phone is infected, the message ‘Caribe’ is displayed on the phone’s display and is displayed every time the phone is turned on. The worm then attempts to spread to other phones in the area using wireless Bluetooth signals.
2. Duts: A parasitic file infector virus and is the first known virus for the PocketPC platform. It attempts to infect all EXE files in the current directory (infects files that are bigger than 4096 bytes).
3. Skulls: A trojan horse piece of code. Once downloaded, the virus, called Skulls, replaces all phone desktop icons with images of a skull. It also will render all phone applications, including SMSes and MMSes useless.
4. Commwarrior: First worm to use MMS messages in order to spread to other devices. Can spread through Bluetooth as well. It infects devices running under OS Symbian Series 60. The executable worm file, once launched, hunts for accessible Bluetooth devices and sends the infected files under a random name to various devices.
5. DroidDream (aka Android.Rootcager): DroidDream infecting at least 60 legitimate applications in the Android Market and attacked hundreds of thousands of users in the first quarter of 2011. It changes the victim into a botnet, penetrates the security system Android and steals the victim’s data.
6. GGTracker: This threat was born in June by displaying the page the mobile web version of Android Market. Then the victims are asked to download a battery-saving applications. Once installed, the rogue application that will send a premium SMS at the rate of U.S. $ 40 per SMS.
7. Net-Worm Iphone: the worm stole user data and let malicious users remotely control infected smartphones. This variant also attacked users of jailbroken iPhones and iPod Touches where the default SSH password was not changed.
How can you protect yourself?
- Try downloading apps from reliable sources like google play. Google also has secretly had a system in place named “Bouncer” to scan apps for malicious code.
- Carefully check permissions of applications before installing them. A flashlight app, for instance, probably shouldn’t need to send SMS Messages or your location. The general rule of thumb: If an app is asking for more than what it needs to do its job, you should skip it.
- Avoid sideloading : Avoid directly installing Android Package files (APKs). They are a common path for virus infections.
- Install an anti virus on your mobile. It is getting increasingly necessary to do so with the growth of mobile malware.
Undoubtedly the past year has been most critical in the rise of mobile malware and we expect the trend to continue.
Also smartphones and tablets are using the same OS but are not interchangeable for one simple reason — tablets do not function as telephones. That means that most people who own tablets will also own a smartphone, driving up the number of potential victims and an increasing the number of threats targeting them.
We have also seen the begining of mobile hacktivism with Trojan-SMS.AndroidOS.Arspam. Hacktivism includes malicious programs that are designed with a clear political motive. This type of malware has emerged in the mobile world as a means of protest to promote political ends by malware authors.
We can safely assume that 2012 will not only have more malware but also more harmful malware. Statistics say that around 4% of android users will encounter malware on there smartphones in 2012.
Thus we can say that malware will continue to grow on mobile platforms but will not completely mitigate from PCs. However we must keep our guard up because we can’t predict what will come next.
Credits : Wikipedia, Securelist
Part of my article in The Hacker News Magazine