Quantcast
RSS
Security August 09, 2006 6:00 AM

Trojan Horse Takes a Bite Out of BlackBerry

By Robert McMillan, IDG News Service

Security researcher Jesse D'Aguanno has developed what he bills as the first Trojan horse malware for Research in Motion's BlackBerry e-mail device.

People who read this also read:

The software, which was demonstrated at the Defcon hacker conference over the weekend, appears to be a free tic-tac-toe download. Once downloaded, however, it works with another piece of code, called BBProxy, that can be used to attack vulnerable machines within the corporate network.

D'Aguanno plans to make the BBProxy software, but not the Trojan horse code, available on his company's Web site within the next few days.

The BlackBerry hack was written to show that while these devices are often not treated with the same concern as PCs, they can be equally dangerous, said D'Aguanno, director of professional services and research with Praetorian Global.

When users think of the BlackBerry's security, they are too focused on protecting the device's data, and tend to ignore its networking capabilities. D'Aguanno said. "It's a computer that has constant access to your internal network."

Avoiding Attacks

After reviewing his research, RIM published two documents describing how to configure BlackBerry Enterprise Servers so they are not vulnerable to this attack, D'Aguanno said.

RIM said that attacks such as D'Aguanno's were possible on any mobile device and that they could be avoided by properly configuring the BlackBerry Enterprise Server.

"The IT policy settings for preventing malware exploits are built into the BlackBerry Enterprise Server software and can be set by the administrator," RIM said in a statement. RIM's white papers on the subject can be found online.

One security expert agreed that users tend to overlook the capabilities of machines such as the BlackBerry.

"When people install these types of devices they are very casual about the policy around the device," said Paul Henry, vice president of strategic accounts with Secure Computing. "There's the assumption that because they're encrypted, they have to be secure."

"It all points to a much bigger problem," he said. "For whatever reason, as soon as a device is put into the marketplace with encryption being used, everybody forgets about the endpoints."

Was this article useful? Yes 0 No 0

Read more like this: , , , , ,

Add Yours

Comments Readers reply with their ideas and expertise.

Subscribe to this discussion via email or RSS

  • What do you think?

  • Great year-end deals
    for small business!

  • Get 24/7 live remote AT&T Tech Support 360* service along with select Lenovo* PCs (with Intel® Core™ 2 Duo processors) and save up to 200!

    Learn more

  • HP EliteBook* 6930p Notebook with Intel® vPro™ technology and a free HP Basic Docking Station - $641 instant savings!

    Learn more

  • *Other names and brands may be claimed as the property of others. ©2009 Intel Corporation. Intel, the Intel logo, vPro and Core trademarks of Intel Corporation in the United States and other countries. All rights reserved.
Business News Daily

Get the latest technology news that's important to you and your business, fresh seven days a week.

Featured Webcasts
More webcasts »

Free Whitepapers

Software and Services Whitepapers from PC World

More whitepapers »

Whitepaper Alerts

Get updates on white papers, case studies, and spotlights on tech products and solutions for your business.

PC World's Marketplace

Sponsored Links