Mobile devices Toolkit

Symbian phones targeted by 'Skulls' Trojan

Published: 22 Nov 2004 09:05 GMT

Virus writers are targeting Symbian-based mobile phones with a Trojan horse that kills off system applications and replaces their icons with images of skulls.

The program, dubbed "Skulls" by antivirus companies, is disguised as a theme manager for Nokia phones in the Symbian Installation System format, said Mikko Hyppönen, director of antivirus research for software maker F-Secure.

Only a few people have managed to run across the program on the Web and then downloaded and run the Trojan horse, he said.

"We are not talking about a huge amount of infected people, and it is not a virus, so it is not spreading," Hyppönen said.

The program is the latest threat to affect mobile phones and PDAs. Earlier this month, a program called Delf infected PCs in Russia in order to send spam to mobile phone users . Two other malicious programs -- Mosquito and Cabir -- were also aimed at infecting phones that use the Symbian operating system. The creators of Cabir even created a version that attempts to infect Windows CE devices.

Like the latest threat, none of the mobile phone attacks have yet amounted to much.

When run, the Skulls program breaks all the links to Symbian system applications and replaces the icons with images of skulls. Third-party applications are not affected, Hyppönen said, allowing users that have installed a non-Symbian file manager to actually find and delete the malicious program files, cleaning the phone.

For users that have no third-party file manager, the only current fix appears to be a hard reset, which will leave the phone in its default factory condition. Unfortunately, this fix will also delete any user data.

"In practice, it is difficult to clean the phone," Hyppönen said. "You can't go online, you can't download fixing programs, you can't beam anything to the phone."

While the program can cause some headaches, it is not a significant threat.

Still, it is a signpost indicating the direction that virus writers could be headed, said Vincent Weafer, senior director for security response at Symantec.

"It does no permanent damage," he said. "But it does mean that people are investing time in investigating the possibilities" for infecting and damaging mobile phones, he said.

Did you find this article useful?
69 out of 127 people found this useful

More In Mobile devices

Company/Topic Alerts

Create a new alert from the list below:

Related Jobs

SAP FICO analyst required - Management potential!

However you will be responsible for managing the 3rd party SAP implementation partner and project managing small FICO projects. I am urgently seeking ...

Software Compliance Test Engineer Berkshire 30-35k

Support to GCF declaration activities Liase with third party suppliers. An exciting opportunity has emerged for a Software Compliance Engineer to ...

C++/ VC++ Software Engineer - Mobile Comms

You will be involved in the design and development of 2G/3G functionalities in mobile phones and the development and implementation of a user ...

Featured Talkback

Put simply, what is the compelling reason to pay ~$200 extra for an Eee with Windows XP? A Windows Eee won't come with any useful applications and you'll have to buy anti-virus software to boot. The truth about low cost computing is that nobody really cares whether the machine is running Windows or Linux as long as its cheap, its easy to use and it works.