Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

Create Account  |  Retrieve Password

'Metal Gear' Symbian OS Trojan Disables Anti-Virus

Posted by timothy on Wed Dec 22, 2004 01:14 PM
from the phone-might-be-short-the-right-video-card-too dept.
Security Worms Communications Entertainment Games
Omniscientist writes "Just when you thought your Series 60 smartphones were safe, a trojan has surfaced with a two-pronged attack that also in turn disables any anti-virus protection available. Infosyncworld has news about a trojan masquerading itself as a port for the Metal Gear game that disables all anti-virus software on the phone and other necessary utilities like file managers. Also, it affects other phones nearby it via Bluetooth. This trojan has been dubbed 'Metal Gear.a,' quite aptly."
+ -
story
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

'Metal Gear' Symbian OS Trojan Disables Anti-Virus 50 Comments More /

 Full
 Abbreviated
 Hidden
More
Loading... please wait.

  • Oh Great.. (Score:5, Funny)

    by Renraku (518261) on Wednesday December 22 2004, @01:16PM (#11160610) Homepage
    So now I need tin foil for my cell phone, too.

    Well, I don't really have a cell phone, but if I did..I'd need tin foil for it.
    • If tinfoil around the phone reduces its Bluetooth sensitivity, then yeah, a tinfoil hat just might help. And here I am with a 3660. Bluetooth and Symbian!

      As I've not used the BT capabilities at all, does anyone know if I have to activate the BT on the phone, or is it in some sort of listen mode by default? And if so, is there a way to disable it until I actually need to use it?

      • Re:Oh Great.. (Score:5, Informative)

        by snorklewacker (836663) on Wednesday December 22 2004, @01:36PM (#11160876)
        Bluetooth is normally off by default. Even if it's on, it's going to prompt you multiple times if an unknown device tries to connect -- once to establish the connection, again to receive anything, then you have to explicitly open the attachment and go through yet another warning about installing software. Spreading via bluetooth is probably more effective via trusted paired devices. my gf and I have 6600's and we have them paired so we can share pictures more or less instantly. So if for some reason one of our phones got this worm, then it would transmit to the other phone pretty much silently -- still wouldn't auto-install though.

        In other words, if you have a brain, you're safe. Watch out for bluesnarf attacks though, which can read all your data off your phone if you have an older bluetooth stack.
        • Ah, much obliged for the info.

          On a related note, I need to get a Bluetooth USB dongle for my computer. Transferring things to my laptop over IR is so slow and always feels needlessly precarious.

  • more! (Score:4, Funny)

    by Prophet of Nixon (842081) on Wednesday December 22 2004, @01:17PM (#11160636)
    I just want an unstoppable cell-phone virus that permanently disables ringing... then I could cope with the things being about.
  • HAHAAHAHAHAHAHAHAHAHA

    This is what you get for making a phone "more than a phone".

    Well that and price gouging. For example, a "quad-band GSM" phone often cells for $300 more than the average dual-band. However, going quad-band is mostly a small change in terms of the radio/hardware as it's just off by 50Mhz [e.g. the SWR won't be that high]. ... so how do they justify the hike? Oh they add in Java, cameras, ring tones, etc... You want a toy? Buy a gameboy. A phone should be phone.

    Hahahahahahaha

    Tom
    • I concur :) My "very hot brick" phone is perfect.

      -Jesse

    • Re:All I have to say (Score:4, Insightful)

      by timmyf2371 (586051) <tim AT timfarrell DOT co DOT uk> on Wednesday December 22 2004, @01:31PM (#11160817)
      You want a calculator? Buy a calculator.
      You want a text editor? Buy a dedicated word processor.
      You want to watch DVDs or other media? Buy a DVD player.
      You want to send an e-mail? Buy a dedicated e-mailer.

      So, based upon your way of thinking I'm assuming your above post was made via a WebTV or similar dedicated Internet-only terminal, right?

        • Its not just my phone! (Score:5, Insightful)

          by bluGill (862) on Wednesday December 22 2004, @02:15PM (#11161280)

          I have to disagree. My cell phone is more than my phone. It is a device that I carry with me for many purposes. Sure I get calls on it, but that isn't the most important thing I use it for.

          My main use for it turns out to be a clock that isn't uncomfortable to wear (I hate things on my wrist).

          It also has some simple games good for keeping me entertained while waiting for the waiter to bring my order. (this is slashdot, of course I don't know any girls to eat with)

          It is a handy kitchen timer that I can hear even when I'm at the other end of the house. The phone is on me, not the stove.

          There is a useful calender that reminds me when important events come up. (A pain to enter them)

          There is a calculator for times when I need to deal with more digits than I can remember at one time. I wish it has hex and graphics functions, but it works.

          There is a camera attachment. Sure the pictures are poor, but it works, and I'm more likely to have this with me than a fancy camera.

          All this, rolled into one tiny 1.5x4x.75 (inch) device.

          • I'm all for adding extra functionality, but only when it works well and works right. Otherwise, forget it.

            Here's what I use my phone for:
            1) telephone (duh)
            2) clock - always synced to universal time by network
            3) calculator - in case I need to do a simple calculation
            4) calendar/appointment minder

            Everything else the companies are offering seem to suck, including web access, email, SMS, games, and especially cameras. The big problem with all of these is actually not the technology, but the exhorbitant cost.
    • This is what you get for making a phone "more than a phone".

      Reminds me of a story: Two years ago, the Sprint salesmean was trying to sell me the latest Sanyo. This kid (probably still in college), went on and on about the cool features of ringtones and web access. Then, he said, that I "...could even take a picture of someone with the phone and link that picture to that persons phone number". In short, everytime said person called me, their picture would pop up on my phone.

      I asked him "Instead of doin

    • Yes!

      I, for one, am willing to give up features in order to have a cheaper, smaller phone. It's too bad they don't sell the Siemens SL56 anymore, it's pretty much perfect.
          • However, "whois imaluser.com" (which is how you spell it in your profile), does turn up a hit...

            Yes, and, thanks to the AC's complaints about his name, I clicked on his link. Of course, since I am at work right now, that probably wasn't the smartest thing to do.

            I'll just sit at my desk and wait for the network guys to show up, since I am sure that someone will figure out what I just clicked on.

  • I use a v66 dumbphone. It makes phone calls It stores phone numbers. It does voice dialing But I haven't figured that part out yet.

  • Still needs user interaction though... (Score:3, Insightful)

    by Zog The Undeniable (632031) on Wednesday December 22 2004, @01:20PM (#11160673)
    So don't panic too much about the Bluetooth infection method. When something truly independent like Code Red can spread via Bluetooth, that's when people will start leaving their mobiles at home. Hang on, there's an idea...maybe I can sell it to rail passengers and restaurant customers and make $$$$?
  • But this isn't one of them.

    People laughed at me when Bluetooth was first announced. I said I didn't want my cell phone or PDA being frisked by other units as I walked around.

    I still refuse to carry any Bluetooth equipment. Who's laughing now?

    And, more importantly, how long until a crooked cop uses such a vulnerability to plant evidence on your PDA [typepad.com]?
  • There's going to be a day when all cell phones are running servers over wireless for p2p communications. When that day comes, walking past the wrong person will hose your phone.
  • Gah! The thought boggles the mind.

  • Since no one has done it yet... (Score:5, Funny)

    by JossiRossi (840900) on Wednesday December 22 2004, @01:23PM (#11160721) Homepage
    "Oh look a Metal Gear Port.. horray downloading..."
    "Dude you're cell.. it's dying I think..."
    "Snake? SNAKE?! SSSSSNNNNAAAAAKKKKEEEEEE!!!!!!"
  • Does anyone ever think of hitting the off button on there bluetooth?

    • Re:Communicator (Score:4, Insightful)

      by Ironsides (739422) on Wednesday December 22 2004, @01:36PM (#11160877) Homepage Journal
      When Latest windoze worm announced:
      Does anyone ever thing of hitting the off button on there cable/DSL modem?

      If you use it, you leave it on. If you don't use it, you may not even know it is there.
      • "When Latest windoze worm announced: Does anyone ever thing of hitting the off button on there cable/DSL modem?" Yeah. I've learned how to read the blinky light patterns to tell when malware is coming down the pipe. As soon as I see it in the queue, I hit the off button!
  • I fell asleep last night with the comfort of knowing that all Series 60 phone users were safe. In fact, I said a little prayer giving thanks for that. Tonight, I doubt I sleep at all, what with all the worrying I will do for those poor, poor series 60 phone owners.

  • Stop the press! (Score:3, Insightful)

    by sjofi (307114) on Wednesday December 22 2004, @01:25PM (#11160762)
    You can install a program on your computer that does bad things. Also on your Symbian mobile phone if you really really want to and decide to discard multiple warning messages.

  • The phone have started to move! (Score:5, Funny)

    by GlueyPorchBoy (842759) on Wednesday December 22 2004, @01:26PM (#11160768) Homepage Journal
    Any real fan of the series would be expecting a set-up, anyway.
  • What if someone were to find an exploit in a few cell phone OSes? Then find an exploit in the routing software/hardware of cell towers?

    Infect their own phone, that infects every cell tower it cells to, and that tower infects every cell phone it can see, etc.

    I'd make the payload somthing to either disable the ringer, or play some annoying loud-ass tone for hours.

  • MG (Score:5, Funny)

    by justforaday (560408) on Wednesday December 22 2004, @01:31PM (#11160822)
    I guess I should expect to see people staring at their phones going "Snake? SSSSNNNNAAAAAAKKKKEEEEEE!!!!"
  • go ngage! go ngage!
  • I'm getting around these problems, as I have done all I can to make my mobile phone very secure. You can see a photo of the modifications so far. [clara.net]
  • For those with broadband. [somethingawful.com]
  • Makes me think that a Metal Gear Solid game would be a good idea for a phone, and the best part is that your service provider could bill you for each codec call you initiae to Meryl. And Revolver Ocelot could torture you by making you type an inane text message as quickly as possible using all capital letters and the words LOL and L8R.

    And of course let's not forget being able to sit on a bus and make every other passenger listen to Liquid scream "SNAAAAAKE! PREPARE TO DIE, MY BROTHEEEERRR!!!!"

  • Personally, if I were a virus writer... (Score:3, Interesting)

    by mark-t (151149) <markt@@@lynx...bc...ca> on Wednesday December 22 2004, @02:07PM (#11161198) Journal
    The most perfect crime isn't just one where you're not actually caught, it's one where nobody ever notices that the crime was committed in the first place. If you shut down the antivirus software, you leave a potentially very visible avenue that leads directly to the cause.

    That's why if I were to actually go about writing a virus, it would not actually disable any existing antivirus software at all, but would make suitable patches to the most common ones so that my virus would simply not be detected by it, thereby convincing most people into naively believing that their antivirus software is running as expected during what is actually the virus's dormancy period.

    Why nobody else has tried this is beyond me.

    Does the fact that I would even think of something like this make me a bad person?

  • Ha ha slackers get pwn3d! (Score:3, Funny)

    by gelfling (6534) on Wednesday December 22 2004, @02:13PM (#11161262) Homepage Journal
    So who has more free time on their hands - the people who play online games on their phones or the people who write viruses for people who play online games on their phones.

    I swear it's slackers like you that will lead to more ridiculous regulations.

  • Anti-virus software means it wasn't safe (Score:5, Insightful)

    by kindbud (90044) on Wednesday December 22 2004, @02:21PM (#11161345) Homepage
    Just when you thought your Series 60 smartphones were safe, a trojan has surfaced ... that disables all anti-virus software...

    If the things need anti-virus software, they were never safe to begin with.

    • Symbian OS is nothing to do with Microsoft or Windows.

    • Re:And this is unexpected? (Score:4, Insightful)

      by UWC (664779) on Wednesday December 22 2004, @01:30PM (#11160805)
      Embedded MS crap... I guess this is a troll. Regardless, Series 60 phones don't have any "MS crap" to my knowledge. The OS is Symbian, which has been putting out a good mobile OS for years (I had a Diamond Mako--rebranded Psion Revo Plus--PDA thing that I loved until the nonreplaceable battery crapped out far sooner than it should have). Sun's Java is also installed on Series 60 phones. Unless Bluetooth is somehow MS-related, you're either completely misinformed or trolling. The AC status of the post indicates the latter, I guess.
    • You're right, why carry around a compact device that can take pictures, play games, sync with my calender and e-mails and allow me to make calls, connect to the internet and now stream videos when I can carry around a Gameboy, a phone, a pda and a camera and a laptop!!

    • Re:kiss (Score:3, Insightful)

      by koniosis (657156)
      Funny, I do want those features, just because you don't doesn't mean no phone should have them. You can still buy phones that do pretty much nothing useful other than being a phone, I reccommend you buy one of them; I'll buy one with a calender and games (since that's what I want).
    • That's awesome, but I wish these guys would put their brainpower and idle time towards something more productive, like OSS software development.

      The problem is that much of what needs to be done is boring and/or unchallenging. Some folks program because they like to solve problems, the "journey", not because they have a strong commitment to a project, the "destination". In the OSS world there are lots of people who would like to work on the interesting things and if they cannot they are more likely to n
    • pictures of his GF's tits,

      Well, I'm not a fan of fancy phones. But if they include that picture as one of the features, they just sold me.

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.