All About Symbian - Nokia (S60) and Sony Ericsson (UIQ) smartphones unwrapped

  #1  
Old 19-02-2009, 09:10 AM
Ewan's Avatar
Ewan Ewan is offline
Ye Olde Administratorium
 
Join Date: Feb 2001
Posts: 2,988
Ewan is a splendid one to beholdEwan is a splendid one to beholdEwan is a splendid one to beholdEwan is a splendid one to beholdEwan is a splendid one to beholdEwan is a splendid one to behold
F-Secure Release 5th Edition Anti-Virus Application

In all the rush of innovation and new devices, we missed the announcement by F-Secure that they are the first anti-virus company to support S60 5th Edition. Their Mobile Security 5 product is now available via F-Secure or Nokia Download, if you feel the need for some extra strength protection.

Read on in the full article.

  #2  
Old 19-02-2009, 06:41 PM
Unregistered
Guest
 
Posts: n/a
There's one piece of software that I won't be wasting any memory space on. Even if it were free.

  #3  
Old 19-02-2009, 09:40 PM
slitchfield slitchfield is offline
Administrator
 
Join Date: Nov 2002
Posts: 7,002
slitchfield is on a distinguished road
Ha! If I'd been around today, this wouldn't have made it as a news post at all - you all know my opinions of the 'anti-virus' industry in the Symbian OS world. 8-)

There isn't a single piece of S60 malware that's worth worrying about. The worst that can happen is that you go cruising for cracked commercial apps (shame on you) and happen to download a trojan, something that's not what it pretends to be. And even then, it can't reproduce and is only one hard reset away from disinfection.....

Steve
__________________
Steve Litchfield, Admin, AAS

  #4  
Old 20-02-2009, 07:00 AM
PeteASJP PeteASJP is offline
Registered User
 
Join Date: Nov 2002
Posts: 48
PeteASJP is on a distinguished road
"With this certificate, the trojan was signed. And being a signed application it gains privileged access."

http://www.f-secure.com/weblog/archives/00001609.html

Something more advanced coming up? I wonder how this got signed, if it really has been? A sign of Symbian Signed being flawed?

  #5  
Old 20-02-2009, 07:53 AM
swedan swedan is offline
Registered User
 
Join Date: Dec 2006
Posts: 3
swedan is on a distinguished road
Quote:
Originally Posted by PeteASJP View Post
"With this certificate, the trojan was signed. And being a signed application it gains privileged access."

http://www.f-secure.com/weblog/archives/00001609.html

Something more advanced coming up? I wonder how this got signed, if it really has been? A sign of Symbian Signed being flawed?
Wow, this is really interesting. If not just a self signed certificate it's of course serious, but could it be? Anyone has more information about this?

  #6  
Old 20-02-2009, 03:19 PM
UKJeeper UKJeeper is offline
Registered User
 
Join Date: Dec 2006
Location: Essex
Posts: 321
UKJeeper is on a distinguished road
When you Google "SymbOS/Yxes.A!worm", all the results eventually point back to press releases from the S60 AV vendors. What a coincidence....

  #7  
Old 20-02-2009, 03:46 PM
ZSX
Guest
 
Posts: n/a
Gabor Torok thinks this worm may have been Express Signed. he also worries that OSCP checking is disabled by default on most S60 phones so they cannot check if a certificate has been revoked.

blogs.forum.nokia.com/blog/gabor-toroks-forum-nokia-blog/2009/02/20/mobile-worm-yxes.a-an-analysis

  #8  
Old 20-02-2009, 04:58 PM
Unregistered
Guest
 
Posts: n/a
You need to have done the HelloOX 1.02 hack to suffer from apps signed this way, so if you are going to hack your phone then you can't blame Nokia.

  #9  
Old 20-02-2009, 05:25 PM
UKJeeper UKJeeper is offline
Registered User
 
Join Date: Dec 2006
Location: Essex
Posts: 321
UKJeeper is on a distinguished road
Quote:
Originally Posted by ZSX View Post
Gabor Torok thinks this worm may have been Express Signed. he also worries that OSCP checking is disabled by default on most S60 phones so they cannot check if a certificate has been revoked.

blogs.forum.nokia.com/blog/gabor-toroks-forum-nokia-blog/2009/02/20/mobile-worm-yxes.a-an-analysis
So if thats the case, (assuming, for one second this might actually BE a risk) wouldn't you just turn ON certificate checking in Trust Settings? At least until this 'threat' is over, or verified?

Still want to see actual proof that is happening, not just press releases from companies who aren't selling enough AV product.

  #10  
Old 20-02-2009, 06:26 PM
Unregistered
Guest
 
Posts: n/a
People with an axe to grind will comb the farthest corners of the internet in search of some event that will give them some mud to sling. If they want to do that then no company or device is immune. Nokia and S60 come out pretty good.

  #11  
Old 20-02-2009, 08:58 PM
ZSX
Guest
 
Posts: n/a
The trouble is not you or I who can turn on OSCP checking, it is the millions of handsets out there with owners who don't even know what it is.

Of course this may all be absolutely nothing, so the point is moot, but perhaps OSCP checking should be on by default on all handsets.

  #12  
Old 21-02-2009, 02:24 PM
PeteASJP PeteASJP is offline
Registered User
 
Join Date: Nov 2002
Posts: 48
PeteASJP is on a distinguished road
New info from F-Secure: http://www.f-secure.com/v-descs/trojan_symbos_yxe.shtml

  #13  
Old 23-02-2009, 02:05 PM
Unregistered
Guest
 
Posts: n/a
Quote:
You need to have done the HelloOX 1.02 hack to suffer from apps signed this way, so if you are going to hack your phone then you can't blame Nokia.
Although you would be skeptical towards 3rd edition malware, it would be nice if you didn't spread misinformation like this. Yxe has been Symbian Signed with a valid certificate and although the certificate was revoked many users do not have Online certificate check enabled on their device. This has nothing to do with the privilege escalation hack.
Ads
 

Bookmarks

Tags
5th, antivirus, application, edition, fsecure, release

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
.avi player n anti virus sha_righthere Nokia 3230 7 30-05-2006 11:30 AM
Commander anti virus wafju Feedback and Announcements 0 24-04-2006 02:47 PM
Problem after installing F-Secure anti virus Manchas Nokia 7710 4 27-07-2005 11:09 AM
6680 On '3' network, but unable to activate or update F-Secure anti virus darkshines6630 Nokia 6630, 6680, 6681 and 6682 2 31-05-2005 01:41 PM



All times are GMT. The time now is 12:41 PM.


vBulletin skins developed by: eXtremepixels
Powered by vBulletin® Version 3.8.0
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Copyright Notes || Contact Us || Privacy Policy