YOUR FEEDBACK
the usr wrote: So... how about your prediction that SCO would prevail? 11/20/2008 565 - FINAL...
Nov. 22, 2008 07:46 AM
Cloud Computing Conference
November 19-21 San Jose, CA
Register Today and SAVE !..
Did you read today's front page stories & breaking news?
SYS-CON.TV: JBoss's Seam: Eliminate Complexity and Build Next-Generation Web 2.0 Applications

SYS-CON.TV
SYS-CON.TV WEBCASTS
JACKBE The Big A(architecture in AJAX)
INSTANTIATIONS Eclipse Rich Internet Platform with Taylor and Milinkovich
YAHOO! Applying AJAX to Speed User's Journey
ENERJY WEBCAST Java Code Quality Management
APP SERVER SHOOT-OUT with Microsoft, IBM, JBoss, Sun, BEA, and Oracle
TOP THREE LINKS YOU MUST CLICK ON


Mobile JAVA
Is Your Mobile Safe?
How to avoid the 'blues'

By: Kanchan Waikar
Dec. 15, 2006 12:30 PM

We don't forget to scan our PC for viruses and worms but we conveniently forget to download a virus checker for our mobile. Most of us are still under the impression that mobiles are completely secure, which isn't true. There are a number of threats that can crash your mobile handset. Since few people have suffered from such harmful programs, mobile attacks haven't gotten much publicity. In personal computers, viruses attack through removable drives and Internet attachments whereas M-viruses and worms attack through SMS, downloadable application files, Bluetooth, etc.

We have very little knowledge about such mobile attacks. There are many mobile viruses that can even crash your mobile handset. Having a Bluetooth facility in a mobile device makes it even more vulnerable. Bluejacking, bluesnarfing, and backdoor attacks are some Bluetooth attacks. The attacker can access your contact data, personal images, and SMS inbox after making a Bluetooth connection with your mobile.

There are two "free" ways of sharing information that are available with most of the mobile handsets. These are infrared and Bluetooth. Bluetooth offers better coverage compared to infrared. Hence there's greater possibility of attack through Bluetooth than infrared. Let's look at some of the popular Bluetooth attacks.

Bluetooth Attacks...
The simplest one is bluejacking. It is the process of sending anonymous messages using Bluetooth technology. In bluejacking we can send a message, a video file, or an audio file. Bluejacking can't harm the destination mobile. When bluejacking is done to advertise or spam the victim's inbox then it's called bluespamming. In bluespamming, the interloper sends spam messages to all mobiles in its Bluetooth range.

So much for the "not so harmful" attacks. Now let's look at real Bluetooth attacks. The most popular Bluetooth threat is a bluesnarfing attack. Bluesnarfing is dangerous because it can steal your address book, your personal data, and do n numbers of such harmful activities. A bluesnarfing attack can take place from any well-equipped Bluetooth-enabled device. Bluesnarfing can update the most sensitive data and doesn't leave any traces behind. Using bluesnarfing, the attacker can update your address book. A bluesnarfing attack can also set call forwarding in train and cost you money. Then there's bluebugging - the attacker makes calls from the victim's mobile handset remotely.

In Bluetooth, the packet-size value is set for different devices. There's an attack that uses this to try to crash the victim's handset. If a Bluetooth device gets a packet of greater size than its allowed limit it crashes, hangs, or sometimes simply reboots. This attack is known as bluesmacking.

Viruses, Worms & Trojans...
Other than Bluetooth attacks, there are other threats like worms, viruses, and Trojan horses.

Let's start with the first mobile Trojan "Mosquit.a." It doesn't hurt your handset but it costs you money. It's basically a mobile game that sends numerous SMS messages to different numbers when you're busy playing the game. Then there's a Commwarrior virus that spreads either through Bluetooth or MMS and attacks 60 series handsets. There's a skulls Trojan that disables all applications and replaces all application icons with the image of a skull. It's basically a SIS application that replaces all application software with wrong versions disabling basic functionality. And there's is a Trojan called "SymbOS.Locknut" that can crash a victim's handset. If you get a call that displays the name "ACE" and if you pick the call up, it can erase your IMEI number and make your phone useless. Then there's a "Drever-C" Trojan that poses as a security update and corrupts the boot loader. So be careful downloading applications from the Internet.

How Can I Protect My Mobile?

  • Don't open untrustworthy applications
  • Don't pair your device with unknown devices
  • When entering a crowded zone, make sure your Bluetooth is switched off
  • Keep your mobile anti-virus updated
In case viruses, Trojans or worms are detected, anti-virus companies have patches and updates. To protect mobile handsets you have to keep your mobile anti-virus updated. If you find that your cell's been attacked by some virus or Trojan don't reboot it. Some Trojans affect the boot loader/boot data and rebooting will make it hard to repair.

Conclusion
After reading about the different kinds of attack that can take place, you might be worried about your cell's security. But we can still keep our mobiles safe by having the appropriate anti-virus loaded on them and keeping our Bluetooth on only when needed. An option in our cell phones lets us maintain a "Hidden/Invisible" connection that refuses new Bluetooth connections, but some devices still remain vulnerable. So keeping Bluetooth on only when required is the only option that remains. We can also refuse to accept connection requests from unknown devices.

Well-known PC anti-virus companies like Symantec and McAfee provide anti-virus protection for mobiles.

References

  • http://news.zdnet.co.uk/communications/wireless/0,39020348,39145881,00.htm
  • An Ethical guide to hacking mobile phone by Ankit Fadia, Macmillan publications
  • www.antivirusprogram.se/virusinfo/SymbOS.Locknut_3172.html
  • www.viruslist.com/en/analysis?pubid=200119916
  • http://hoaxbusters.ciac.org/HBMalCode.shtml

    Dedications
    I would like to dedicate this article to my best friends and my mom and thank my friend Ms. Sneha Abraham for her valuable suggestions.

    • Published Dec. 15, 2006— Reads 10,709
    Copyright © 2008 SYS-CON Media. All Rights Reserved.
    About Kanchan Waikar
    Kanchan Waikar is a software professional working with an IT company. She is very much inclined toward mobile programming. Her hobbies include reading novels, painting, playing table tennis, and programming.

    WEBSPHERE LATEST STORIES . . .
    By Maureen O'Gara
    IBM is going to buy Transitive, the British cross-platform virtualization firm that salvaged legacy Macintosh programs and made Apple's move from IBM to Intel chips as graceful as a prima ballerina’s pirouette. Transitive is clever at running applications written for one kind of micr...
    By Virtualization News Desk
    Emulex has announced that its LightPulse LP21000 family of Fibre Channel over Ethernet (FCoE) Converged Network Adapters (CNAs) have been tested and found to be compatible for use with IBM Systems x3650(7979), x3655(7943) and x3755(7163) series servers. Emulex CNAs enable the consolida...
    By Maureen O'Gara
    Mark Papermaster, the ex-VP of blade development at IBM and the guy that IBM stopped from going to Apple to run its iPod and IPhone development on the strength of the non-compete he signed, has sued his former master looking for a declaratory judgment in his favor.
    By Cloud Computing News Desk
    A round-up of the many themes and topics of interest to infrastructure architects, developers and IT managers featuring at SYS-CON's Cloud Computing Expo being held November 19-21, 2008 at The Fairmont Hotel in San Jose, California. The conference is expecting a record turnout of senio...
    By James Hamilton
    Okay, here's the deal. When you observe the big software guys and see how quickly they adopt emerging technologies, which will change IT the way we know it today, here is what we see. Larry Ellison invested millions in old SaaS / cloud companies, which gave him zippo in return, and he ...
    By Cloud Computing News Desk
    "More than a half dozen conferences and events targeting Virtualization and Cloud Computing canceled in the past two months," said Fuat Kircaali, CEO of SYS-CON Media. "We predicted that this would be the outcome for many competing shows due to the current economic conditions," he adds...
    SUBSCRIBE TO THE WORLD'S MOST POWERFUL NEWSLETTERS
    SUBSCRIBE TO OUR RSS FEEDS & GET YOUR SYS-CON NEWS LIVE!
    Click to Add our RSS Feeds to the Service of Your Choice:
    Google Reader or Homepage Add to My Yahoo! Subscribe with Bloglines Subscribe in NewsGator Online
    myFeedster Add to My AOL Subscribe in Rojo Add 'Hugg' to Newsburst from CNET News.com Kinja Digest View Additional SYS-CON Feeds
    Publish Your Article! Please send it to editorial(at)sys-con.com!

    Advertise on this site! Contact advertising(at)sys-con.com! 201 802-3021
    SYS-CON FEATURED WHITEPAPERS

    ADS BY GOOGLE
    MOST READ THIS WEEK
    By David Young
    By Maureen O'Gara
    By Cloud Computing News Desk
    By Cloud Computing News Desk
    By Maureen O'Gara
    By Maureen O'Gara
    By Maureen O'Gara
    BREAKING WEBSPHERE NEWS
    A new report, announced today, found that IBM (NYSE: IBM) supercomputers already deemed the most pow...
    Nov. 21, 2008 10:35 AM