On TechRepublic: The 5 worst tech products of 2009
BNET Business Network:
BNET
TechRepublic
ZDNet

February 26th, 2008

McAfee: Trojan targets Windows Mobile

Posted by Larry Dignan @ 2:20 pm

Categories: Microsoft, Vulnerability research

Tags: McAfee Inc., Microsoft Windows Mobile, Mobile, Trojan Horse, Malware, Microsoft Windows, Shah, Spyware, Adware & Malware, Spyware, Viruses And Worms

McAfee has unearthed a Windows Mobile PocketPC Trojan that disables security, installs via a memory card, can’t be uninstalled and makes itself your home page.

According McAfee’s Avert Labs blog, the Trojan has been discovered in China. Here’s how it works according to researcher Jimmy Shah:

WinCE/InfoJack sends the infected device’s serial number, operating system and other information to the author of the Trojan. It also leaves the infected mobile device vulnerable by allowing silent installation of malware. The Trojan modifies the infected device’s security setting to allow unsigned applications to be installed without a warning.

The Trojan was packed inside a number of legitimate installation files and distributed widely. It has been distributed with Google Maps, applications for stock trading, and a collection of games.

Considering the penetration of mobile devices in Asia this malware could raise quite a ruckus.

Shah reckons that WinCE/InfoJack was created by a web site that may have hired a hacker to create the malware and then distribute it. The Trojan installs as an autorun program on the memory card, installs itself when that memory card is inserted and can’t be deleted. It also becomes your home page.

Update: US CERT also has a warning.

Larry DignanLarry Dignan is Editor in Chief of ZDNet and Editorial Director of ZDNet sister site TechRepublic. See his full profile and disclosure of his industry affiliations.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?

  • Talkback
  • Most Recent of 23 Talkback(s)
Well, it IS Windoze - from MicroShaft!
What did you expect?

Stability?

Security?

A pleasant user experience? (Read the rest)
Posted by: drprodny Posted on: 02/29/08 You are currently: a Guest | | Terms of Use
Great  DarthRidiculous | 02/26/08
Thank goodness Apple is coming out with its SDK  Confused by religion | 02/26/08
Right...  MarcB_z | 02/26/08
Hard to believe.  HypnoToad72 | 02/26/08
Not if the security's worth two pfennigs.  odubtaig | 02/26/08
Too bad iPhone was hit with malware before WM  NonZealot | 02/27/08
Link  itguy08 | 02/27/08
You must be reading this on an infected iPhone  NonZealot | 02/27/08
False  Mikael_z | 02/27/08
Sorry, that one doesn't count  NonZealot | 02/28/08
Well, it IS Windoze - from MicroShaft!  drprodny | 02/29/08
sad, MS is vector for more malware  killerbunny | 02/26/08
takes the biscuit  Narr vi | 02/26/08
More proof that Windows no matter what its shape or form  iwillnotbestopped@... | 02/26/08
What about the link above?  GuidingLight | 02/27/08
Windows Mobile Protection  ZDNet_replier | 02/26/08
Tons, just Google it (NT)  odubtaig | 02/26/08
Anyone surprised?  Jeremy W | 02/26/08
Nope  James T. Kirk | 02/27/08
EU Paves the way  jfreedle2@... | 02/27/08
Surprised? Nah.  GuidingLight | 02/27/08
Not a MS Vuln. - This 'issue' is old news...  zdnet@... | 02/27/08
What about backups?  tvride | 02/27/08

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here