IDG News Service - Next year's FIFA World Cup soccer tournament in Germany could be fertile ground for mobile phone viruses if the World Athletics Championships in Finland, which ended Sunday, are any indication, security experts warn.
Visitors to the athletic event in Helsinki not only had to brave wind and rain, but also face the threat of catching the Cabir mobile phone worm.
Outbreaks of the malware, which first surfaced in June last year, were reported in Helsinki's Olympic Stadium, according to Mikko Hypponen, chief research officer for antivirus research at F-Secure Corp.
"We are aware of at least a couple of dozen phones being infected with the Cabir A or B worm, but many more people reported having received messages to accept a connection on their smart phones," he said. "We observed an alarmingly high level of malicious activity at the event."
Cabir uses Bluetooth short-range wireless signals to jump between cell phones over distances of up to 30 feet. In a packed stadium, this could spell trouble for unknowing users.
"There was activity [of this type] at the Live 8 concerts earlier this summer," Hypponen said. "The World Cup soccer games in Germany next summer, like all mass gatherings, will almost certainly be a target. We expect a lot of people will be using mobile phones in and around the stadiums."
To get infected with Cabir, mobile phones must be running the Symbian OS operating system with the Series 60 user-interface software, have the Bluetooth wireless communications feature enabled and set to listen for other Bluetooth devices, and be within broadcast range of a phone infected with Cabir.
Even then, the phone's owner must click multiple times to download and install the Symbian Installation File (SIS) to their phone, according to Hypponen.
"You could say, yes, a user has to be a bit stupid to go through all these steps to get a virus, but there is a trick," he said. "If you're within range of an infected phone, you'll constantly be alerted to accept a connection. If you say no, the message keeps reappearing. So some frustrated users just push "yes" to get rid of that message and the other installation and security alerts."
While Cabir carries little in the way of a malicious payload, the virus will wear down batteries quickly -- from days to as little as 30 minutes -- as it constantly tries to broadcast itself onwards. Switching off Bluetooth blocks transmission.
Nokia Corp. and Siemens AG are among the manufacturers of handsets using Symbian OS andSeries 60 software.
Version 9 of the Symbian OS software will include new security features to help combat mobile malware, according to Hypponen. The software is expected within the coming weeks, he said.
Hypponen also urged users to install antivirus software.
Free Insider GuideCopyright © 1994 - 2012 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.
