The following is from ZDNET (http://blogs.zdnet.com/security/?p=2617)
F-Secure and Fortinet are investigating a newly discovered mobile malware identified as SymbOS/Yxes.A!worm or �Sexy View�. The malware is affecting S60 3rd Edition series devices, and has a valid certificate signed by Symbian tricking the mobile device user into thinking it�s a legitimate application. In terms of propagation, �Sexy View� propagates by collecting all the phone numbers from the infected device, and then SMS-es itself to all of them including a link to a web site hosting a copy of it.
waxup wrote:F-Secure and Fortinet are investigating a newly discovered mobile malware identified as SymbOS/Yxes.A!worm or “Sexy View”.
Given that F-secure just yesterday announced a version compatible with the 5th edition S60, I cannot help but view this with a little suspicion.
It might well exist, but if it actually starts circulating I have no idea.
Needless to say, I shall not be installing any software from links friends send me in an SMS.
It does beg the question, how on earth would it get a cert?
Yeah, that's what I am also wondering? Looks like someone is trying to push the mobile antivirus software into the mainstream....
bartmanekul wrote:
It does beg the question, how on earth would it get a cert?
Well if anyone gets hold of this installer package, I am sure it's possible to extract the cert and find out who signed the app and report them to Symbian - presumably a commercial virus scanner vendor would not be so stupid to use one of their own certs?
I think we need to play X-Files theme tune whilst viewing this (consiparacy) thread. :tongue: