Welcome!

Java Authors: Michael Sheehan, Maureen O'Gara, Jonny Defh, Suresh Krishna Madhuvarsu, RealWire News Distribution

Related Topics: Java

Java: Article

Java Trojan Discovered in the Wild

Malicious Code Writers Enter Mobile Territory
By Java News Desk
Article Rating:
March 6, 2006 04:00 PM EST
Reads:
 6,694
According to Moscow based Kaspersky Labs, a new Trojan horse that is able to infect almost any mobile phone or PDA is in the wild. The Trojan called "RedBrowser" targets traditional mobile phones running Java as well as the newer generation of SmartPhones. The official name of the Trojan is Trojan-SMS.J2ME.RedBrowser.a and claims to allow users who install this to browse WAP enabled sites without using a WAP connection. It is a Java application packaged as a .jar file that may be called RedBrowser.jar and is 54482 bytes in size.

The Trojan dupes users by offering free Internet browsing, but instead sends text messages to premium rate services, with users being charged as high as $5.00 to $6.00 dollars per message. RedBrowser can run on any new phone or PDA that runs Java 2 Micro Edition (J2ME), Sun Microsystems flavor of Java for mobile devices.

To date, the variant seems to be contained in Russia. However, security experts are concerned that a Trojan such as this could easily be written and circulated on the Internet, making a larger and more widespread problem for mobile users.

RedBrowser.a has been rated as a low-level threat by leading security companies, as there has not been a large-scale outbreak as yet. The Trojan does pose a threat to consumers though, as there is currently no malware protection available for cell phones with Java capabilities. Security applications are available for smartphones and PDAs, and users are encouraged to utilize them.

According to the alert posted by McAfee, the Trojan's text sending function doesn't work in the U.S. "We are currently assuming this is due to the numbers dialed being local to Russia," the alert read.

Should the Trojan spread, the large number of users with Java-enabled phones might end up haggling over reimbursements for bogus messaging charges. Friedlander estimates that there are some 100 viruses targeting mobile devices, none of them particularly dangerous at this point.

So far, the perpetrators or their motivation for creating the Trojan hasn’t been discovered. But it is an indicator that malicious code writers are expanding into mobile territory. Kaspersky, F-Secure, and McAfee all sell products aimed at protecting mobile users from worms, viruses and Trojans.

Published March 6, 2006 – Reads 6,694
Copyright © 2006 SYS-CON Media, Inc. — All Rights Reserved.
Syndicated stories and blog feeds, all rights reserved by the author.

More Stories By Java News Desk

JDJ News Desk monitors the world of Java to present IT professionals with updates on technology advances, business trends, new products and standards in the Java and i-technology space.

Comments (1) View Comments

Share your thoughts on this story.

Add your comment
You must be signed in to add a comment. Sign-in | Register

In accordance with our Comment Policy, we encourage comments that are on topic, relevant and to-the-point. We will remove comments that include profanity, personal attacks, racial slurs, threats of violence, or other inappropriate material that violates our Terms and Conditions, and will block users who make repeated violations. We ask all readers to expect diversity of opinion and to treat one another with dignity and respect.

Most Recent Comments
JDJ News Desk 03/06/06 03:34:25 PM EST

RedBrowser is a new Trojan that infects mobile phones and PDA that runs Java 2 Micro Edition (J2ME), Sun Microsystems flavor of Java for mobile devices, and has been rated as a low-level threat by leading security companies, as there has not been any large-scale outbreak as yet. But it does pose a threat to consumers as there is currently no malware protection available for cell phones with Java capabilities.