Cellphone viruses may be at the same threat level PC malware was 10 years ago, but experts point to a growing concern and preparation for the inevitable onslaught.
Finnish anti-virus group F-Secure recently reported several incidents of the Cabir virus on Nokia phones in California. The virus
was transmitted by Bluetooth, a short-range wireless protocol, and its impact appears to be limited to draining battery life.
The virus was first discovered in June of last year and originated in the Philippines. Using Bluetooth as a transmission mode, it has made its way across a dozen countries, including Canada, according to Vincent Weafer, senior director of Symantec’s security response, based in Cupertino, Calif.
Cabir is not the first virus to be designed for cellphones, but the first to be discovered “”in the wild.”” A backdoor Trojan called Skulls is also targeting cellphones and encourages a user to download it by disguising itself as a Macromedia Flash player. It was sent out to security firms last November as a warning of the virus writer’s abilities.
“”Most of these are ‘proof of concepts’ rather than reality,”” said Weafer. “”We’re really looking at a future trend rather than something that’s happening right now.””
But the more sophisticated cellphones become, the larger the target they present to virus writers.
“”Basically, these devices are becoming similar to PCs in terms of the level of complexity and the level of tasks they can perform,”” said Eddie Chan, analyst with Toronto-based IDC Canada Ltd.
The phones that were targeted by Cabir and its variants all use the Series 60 user interface, running on a Symbian operating system. Series 60 is the user interface of choice for Nokia smart phones, but it is also licensed to Samsung, Siemens and other manufacturers.
“”It comes down to this,”” said Dean Carey, security systems engineer at McAfee Canada.
“”Anything that’s IP-connected is susceptible to worms, viruses, hacks, Trojans, you name it.””
McAfee has a security deal in place with NTT DoCoMo, a Japanese cell carrier with about 47 million customers. McAfee submitted its DoCoMo security specs to the Open Mobile Alliance, with a view towards creating some standards.
“”Hopefully, there can be some kind of standardization around it, so whether it’s Nokia or whoever, they can look at a standard API that anti-virus vendors can adhere to so that it’s easier to develop code,”” said Carey.
Symantec has a partnership with Nokia and makes firewall and anti-virus software for smart phones. Those features must be activated by the Nokia users, said Weafer.
“”The reality is, you’re more likely to have your mobile phone lost or stolen than have a virus or other type of security threat hit it,”” he said, adding the Cabir virus can be easily avoided. It can only be transmitted if the Bluetooth feature is in discovery mode. It should only be turned on if the user actually wants to connect to other device.
“”A lot of it goes back to best practices,”” he said. “”Much like we say with PCs, watch out for content coming in to your device.””
