Although the concept of Java was “compile-once-run-anywhere”, in the mobile market this has not been really true during a long time. Differences in the implementation of the Java Virtual Machine and in the capacities of the different telephones made the process of writing generic software (especially games) a difficult one.
This was one of the main reasons why virus writers didn’t target this kind of platforms, as the distribution of it would be difficult. But when money is in the game we could expect sooner or later someone would do it.
In this case, the threat is coming from Russia, where a trojan has been found which, disguised in an application which allows to visit WAP sites for free, sends SMS to premium rate numbers, getting money from the user.
It has been named Trojan-SMS.J2ME.RedBrowser.a and, luckily, it can not replicate by itself, you have to download and install it yourself to activate it. Even more, when sending an SMS it will show a warning telling the user what’s happening and not all mobile phones can send SMS from a Java application
The recommendation, as always, is not to download software from suspicious sites or accept files from unknown people.
From | Kaspersky Lab weblog.
0 Responses to “Trojan for mobiles with Java”