Cabir worm wriggles into U.S. mobile phones
A variant of the Cabir worm was found in two Nokia handsets on display in a California shop.
IDG News Service - Several months after its first sighting in the Philippines, the Cabir worm that infects mobile phones running Symbian OS with the Series 60 user interface has surfaced in the U.S.
A variant of the Cabir worm -- there are several of them -- was found in two Nokia Corp. handsets on display in the shop window of a store in Santa Monica, Calif., said Mikko Hyppönen, director of antivirus research at F-Secure Corp., in a telephone interview today.
The worm was spotted by an engineer from rival software security vendor Symantec Corp., according to Hyppönen. "It was purely coincidental," he said. "When the Symantec guy noticed the infected handset in the shop window, he went inside and told the owner, whose mobile phone, it turned out, was also infected."
Hyppönen declined to name the store. Symantec did not immediately respond to a request for comment.
The U.S. sighting brings the total number of countries in which some variant of the Cabir worm has been detected to 12, he said.
In addition to countries in Asia and Latin America, the worm has surfaced in phones in four European nations: Italy, Finland, the U.K. and Russia, according to Hyppönen.
The Cabir worms spread between smart phones using a specially formatted Symbian Installation System (SIS) file disguised as a security management utility. Infected phones scan for vulnerable handsets using the short-range Bluetooth wireless connection and then send a file containing the worm to those phones.
To be infected by Cabir, mobile phones must be running Symbian OS with the Series 60 software and have the Bluetooth wireless feature in "discoverable" mode, making them open to new connections, according to Hyppönen. In addition, the owner of the phone would have to press a key to dismiss a security warning about installing software of unknown origin, and then another to agree to install the file being transmitted, F-Secure said.
Users know when their phones are infected because phone batteries are rapidly consumed, Hyppönen said.
At the end of last year, total shipments of Symbian-based smart phones reached 25 million, with eight handset manufacturers, including Nokia, Siemens AG and Sony Ericsson Mobile Communication AB, supplying 41 phones.
Nokia, the world's largest handset manufacturer, owns slightly under 50% of Symbian.
At last week's 3GSM World Congress in Cannes, France, Symbian officials said security was a high priority of the company's latest software, Symbian OS Version 9.
- Silicon Valley's 19 Coolest Places to Work
- Is Windows 8 Development Worth the Trouble?
- 8 Books Every IT Leader Should Read This Year
- 10 Hot Hadoop Startups to Watch
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- 2013 Cyber Risk Report The "Cyber risk report 2013 Executive summary" presents the major findings of HP Security Research's comprehensive dive into today's cyber vulnerability and threat...
- Why You Need a Next-Generation Firewall This white paper explores the reasons for implementing next-generation (NG) firewalls and lays out a path to success for overburdened IT organizations.
- Logicalis eBook: SAP HANA: The Need for Speed Without timely business insights, organizations today can suffer logistical, manufacturing, and even financial disaster in a matter of minutes
- Neustar 2014 DDoS Attacks and Impact Report For the third consecutive year, Neustar surveyed hundreds of companies on distributed denial of service (DDoS) attacks. The survey reveals evidence that the...
- Top 4 Digital Signage Fails Join RMG Networks for a look at four of the most common reasons digital signage fails in corporate businesses. Learn about strategies to...
- Building Tomorrow's Infrastructure Listen to this podcast to discover how Crider Foods worked with PC Connection to update their IT infrastructure, while maintaining compliance and control. All Malware and Vulnerabilities White Papers | Webcasts