Mobile threats

The features of malicious programs for mobile devices continue to expand: the first malicious program for mobile phones has been detected that steals logins and passwords for the Russian-language social networking site VKontakte.

Twitter for iPhone ™ and unexpected malicious results leading to Trojan Banker to steal on-line bank credentials of the victims!

TSince 27 March a new game called 3D Antiterrorist has been cropping up on quite a few international freeware sites offering downloads for Windows Mobile smartphones.

More on Yxe

Worm.SymbOS.Yxe is the first malicious program for Symbian S60 3rd edition with a valid digital signature. Today we detected a new variant, Worm.SymbOS.Yxe.e, which also has a valid digital signature.

2009 was the latest milestone both in the history of malware and in the history of cybercrime, with a marked change in direction in both areas. This year laid the foundation of what we will see in the future.

I blogged a week ago about a Trojan for mobile devices called Sejweek. We’ve just detected a new version – what’s changed in the course of a week?

Occasionally something comes along that stands out a bit: right now, it’s Trojan-SMS.WinCE.Sejweek.a, a new program designed to send SMS messages from an infected device.

Today we added detection for a new variant of the program – not-a-virus.Porn-Dialer.SymbOS.Pornidal.c. Just like its predecessor, this application can be harmful for two reasons.

The evolution of mobile malware all but stopped after the publication of our first two articles on the subject. This is why there has been an interval of nearly three years between articles

Today we detected a new potentially unwanted program for smartphones running Symbian S60 2nd edition – not-a-virus:Porn-Dialer.SymbOS.Pornidal.a

We’ve just detected a new malicious program with a similar payload: Trojan-SMS.J2ME.GameSat.a.

We found 5 new Trojans over the past week which send such money transfer requests to 151 – without the permission or knowledge of the phone’s owner.

We picked up this Trojan a while ago, but the latest variant of Trojan-SMS.J2ME.Konov is now spreading via social networking sites, specifically “Vkontakte” (the Russian version of Facebook).

One of the most notable malicious programs during the first half of 2008 was, undoubtedly, the Storm worm (classified by Kaspersky Lab as Zhelatin). It remains in the vanguard of Malware 2.0.