securitybananas.com

F-secure posted a nice blog entry about the ‘sexy view’SMS-worm.

The full blog can be read on:

http://www.f-secure.com/weblog/archives/00001732.html

The Symbian Foundation plans to revise its procedures for testing and signing software after digitally signing a trojan for its Symbian mobile phone operating system by mistake. According to Trend Micro, the SYMBOS_YXES.B (“Sexy Space”) trojan, which hides behind the name “ACSServer.exe”, has botnet functionality and steals user data. It’s even reportedly able to send spam texts to contacts found on the victims mobile phone.

Trend Micro’s analysis of the malware has shown that it and one other variant, possess valid signatures, allowing them complete access to all of the phone’s functions. This is precisely what Symbian’s certification system is intended to prevent by only allowing unsigned applications very limited access.

Read the full story on:

http://www.h-online.com/security/Symbian-Foundation-signs-mobile-phone-trojan-Update–/news/113796

For the first time criminal hackers may have succeeded in creating a network of “zombie” cellphones, infected without the owners’ knowledge with software that can be used to send spam or carry out cyber attacks.

http://abcnews.go.com/Technology/AheadoftheCurve/story?id=8112308