Trojan Stalks Pocket PC

Printable View

August 6th, 2004, 12:08 PM
jinxy

Trojan Stalks PPC

Some thing for pocket pc owners to be aware of.

Quote:

Russian virus hunters Kaspersky Labs have detected a Trojan horse programme capable of infecting PDAs running Microsoft's PocketPC operating system
Although a very small number of PocketPC viruses have been located, Brador-A is said to be the first backdoor program capable of infecting handhelds running PocketPC. Previous PocketPC viruses have been written as experiments in coding not for malicious intent. Brador-A breaks this pattern by coming pre-loaded with a series of malicious routines..

The full article is here:
http://www.theregister.co.uk/2004/08...cketpc_trojan/
August 6th, 2004, 12:33 PM
the_JinX

w00h00w..

Quote:

"It could be spread by sending out emails saying 'check out this cool game for PocketPC' so there is a risk but at the moment PocketPC owner should not be unduly worried."

...

After the backdoor is launched, Brador-A creates the svchost.exe file in the Windows auto run folder, loading the malware every time a handheld is turned on. Brador next identifies the machines IP address and sends it to back to its author, informing him that the handheld is in the Internet and the backdoor is active. Finally, Brador-A opens port 44299 and awaits further commands.

So what's next..

a botnet of hijacked pda's ??
August 6th, 2004, 12:50 PM
jinxy

I doubt it :D

More likely a pocket pc Av solution from Kapersky.

Have they got one at the moment??
August 6th, 2004, 01:04 PM
the_JinX

Yup..

http://www.kaspersky.com/homeuser?chapter=4157432

And not even too expencive either (for people that can afford a PDA :P),
available for both Palm and WinCE..

Quote:

Two-tier protection for Pocket PC
Antivirus protection for Pocket PC scans both data storage locations and memory extension cards. The Datasafe module offers the option of creating password protected files. Data in these files is encrypted, securing your information against unsanctioned users.

Keep your Palm virus-free
The program monitors all data streams which can act as infection vectors: on-demand scanning of data storage locations, RAM and memory extension cards protects data transferred via HotSync and Beam. The Datasafe module provides password protection and encryption options, and locking down of the device according to user specification.

Ow.. BTW I'm not a Kaspersky retailer or something ;)
August 6th, 2004, 01:14 PM
jinxy

Didn't think you were. Or i would have asked why they don't support the Xscale processor. Which runs mine.Lol
September 21st, 2004, 04:30 PM
HotSpot

Quote:

Originally posted here by the_JinX
Yup..

http://www.kaspersky.com/homeuser?chapter=4157432

And not even too expencive either (for people that can afford a PDA :P),
available for both Palm and WinCE..

Ow.. BTW I'm not a Kaspersky retailer or something ;)

Or airscanner ..........the freeware version

http://www.download.com/Airscanner-M...ml?tag=lst-0-2

Yesterday installed on my pocket pc together with the firewall.

http://www.airscanner.com/pr/fwBeta0830.html

Beta Windows Mobile Firewall Released.

Airscanner Corp. today announced the public beta release of their personal firewall for Windows Mobile 2003/Pocket PC. Airscanner Mobile Firewall is a full-strength, fully configurable, NDIS packet-filtering TCP/IP firewall. It is the first personal firewall made specifically for the Widows Mobile PDA end-user.