PPCGeeks Forums HTC Arrive HTC HD2 HTC Thunderbolt HTC Touch Pro 2 HTC Evo 4G HTC Evo 3D Samsung Galaxy S II Motorola Droid X Apple iPhone Blackberry
Go Back   PPCGeeks > Android > General Android Discussion
Register Community Search

Notices


Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 03-10-2010, 09:25 AM
spambusterdave's Avatar
PPCGeeks Regular
Offline
Pocket PC: HTC TP2
Carrier: Verizon via NRG
 
Join Date: Jan 2010
Posts: 103
Reputation: 210
spambusterdave is keeping up the good workspambusterdave is keeping up the good workspambusterdave is keeping up the good work
Mentioned: 0 Post(s)
Tagged: 0 Thread(s)
Exclamation From a well known security site: Vodafone Android Phone: Complete with Mariposa Malwa

I don't own a Droid but i thought this might be of interest to those that do..

http://isc.sans.org/diary.html?storyid=8389&rss

Panda Security has a post up on one of their employees buying a brand new Android phone from Vodafone and discovering it was spreading Mariposa. It didn't infect the phone proper, but it did have autoexec.inf and autoexec.bat files designed to infect whatever Windows machine the phone was plugged into via USB cable. Unlike the Engergizer story from yesterday, this one is happening now. Standard USB defenses apply, don't automatically execute autoexec.bat/inf files from USB devices. This Microsoft KB article discusses how to disable the "Autoplay" functionality that leads to this problem.
This leads to the interesting question, why not just infect the phones? The technology is certainly there to write malware that is phone specific. We won't see mass infection of phones (or even better, a cell-phone botnet) likely until commerce is much more common on phones. Malware is driven by the desire of profit and once it becomes profitable, we'll see exploitation. The problem is, that these slimmed down devices make it difficult to configure in security. Only a few cell phone types even have the option of cell phone antivirus software. The clock is ticking on that threat.
Reply With Quote
  #2 (permalink)  
Old 03-10-2010, 10:25 AM
rainfreak's Avatar
Gettin' Freaky With It
Offline
Pocket PC: Samsung Galaxy S5/iPad Air 2
Carrier: Big Red
Location: Toledo, OH
 
Join Date: Jan 2008
Posts: 12,934
Reputation: 9792
rainfreak is a trusted member of the communityrainfreak is a trusted member of the communityrainfreak is a trusted member of the communityrainfreak is a trusted member of the communityrainfreak is a trusted member of the communityrainfreak is a trusted member of the communityrainfreak is a trusted member of the communityrainfreak is a trusted member of the communityrainfreak is a trusted member of the communityrainfreak is a trusted member of the communityrainfreak is a trusted member of the community
Mentioned: 9 Post(s)
Tagged: 0 Thread(s)
Send a message via AIM to rainfreak
Re: From a well known security site: Vodafone Android Phone: Complete with Mariposa M

PPCG posted the same story here yesterday. But I would take it with a grain of salt because the infection was isolated and multiple other devices were checked by VodaPhone and found to be clean.
__________________
"I remember, way back in the day, this site was hoppin' with members, posts, and some great development."
Reply With Quote
This post has been thanked 1 times.
Reply

  PPCGeeks > Android > General Android Discussion


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT -4. The time now is 01:05 AM.


Powered by vBulletin® ©2000 - 2024, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.6.0
©2012 - PPCGeeks.com