Daily cyber threats and internet security news: network security, online safety and latest security alerts
February 20th, 2009

SMS Malware Targets Symbian S60 Devices

F-Secure and Fortinet are investigating a newly discovered mobile malware identified as SymbOS/Yxes.A!worm or “Sexy View”. The malware is affecting S60 3rd Edition series devices, and has a valid certificate signed by Symbian tricking the mobile device user into thinking it’s a legitimate application.

“Sexy View” propagates by collecting all the phone numbers from the infected device, and then SMS-es itself to all of them including a link to a web site hosting a copy of it. SymbOS/Yxes.A!worm is the second mobile malware detected in the wild for 2009, followed by last month’s discovery of Trojan-SMS.Python.Flocker by Kaspersky Labs.

F-Secure describes the malware as a Trojan but other vendors describe it as a worm, in recognition of the discovery of what might be described as auto-spreading capabilities.

Fortinet adds that the malware gains information on the infected victim (such as serial number of the infected phone, subscription number etc) and posts this data to a remote server likely controlled by cyber criminals. It’s unclear how many users have fallen victim to the attack or its ultimate motives.

Share this item with others:

More on CyberInsecure:
  • Mobile Malware Create A 100,000 Botnet On Symbian Series 60 Handsets
  • New Symbian OS Malware Silently Transfers Mobiles Account Credit
  • Unpatched iPhone Bug Can Virally Infect Phones Via SMS
  • Windows Mobile Trojan Poses As “3D Anti-terrorist action” War Game
  • Ransomware Blocks Internet Access, Forces Users To Send Premium Rate SMS

  • If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: SMS Malware Targets Symbian S60 Devices

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.