Virus calling

Posted by   Virus Bulletin on   Jun 15, 2004

First mobile phone worm discovered.

The first worm to be capable of spreading via mobile phones has been discovered.

The initial announcement of the proof-of-concept worm was made by Kaspersky Labs yesterday (14 June). EPOC/Cabir replicates on the EPOC-based Nokia Series 60 phones, although it is not currently known whether other EPOC-based devices are also affected.

When the file is launched, the telephone screen displays the text 'Caribe'. The worm will then be activated each time the phone is started. Cabir scans for Bluetooth-enabled devices on the system, and sends a copy of itself to the first one it finds.

The worm is not thought to carry any malicious payload.

It has been speculated that the worm was created by member(s) of the 29a virus-writing group - the same group that is believed to have created W64/Rugrat.3344, the first virus to affect 64-bit Windows systems, and other members of the W32/Chiton family, each member of which demonstrates a different "first ever" infection technique.

For detailed analyses of W64/Rugrat and EPOC/Cabir check out the June and July 2004 issues of Virus Bulletin.

Posted on 15 June 2004 by Virus Bulletin

 Tags

twitter.png
fb.png
linkedin.png
hackernews.png
reddit.png

 

Latest posts:

VBSpam tests to be executed under the AMTSO framework

VB is excited to announce that, starting from the Q3 test, all VBSpam tests of email security products will be executed under the AMTSO framework.

In memoriam: Prof. Ross Anderson

We were very sorry to learn of the passing of Professor Ross Anderson a few days ago.

In memoriam: Dr Alan Solomon

We were very sorry to learn of the passing of industry pioneer Dr Alan Solomon earlier this week.

New paper: Nexus Android banking botnet – compromising C&C panels and dissecting mobile AppInjects

In a new paper, researchers Aditya K Sood and Rohit Bansal provide details of a security vulnerability in the Nexus Android botnet C&C panel that was exploited in order to gather threat intelligence, and present a model of mobile AppInjects.

New paper: Collector-stealer: a Russian origin credential and information extractor

In a new paper, F5 researchers Aditya K Sood and Rohit Chaturvedi present a 360 analysis of Collector-stealer, a Russian-origin credential and information extractor.

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.