"The challenge with cell phones is that there isn't a ubiquitous operating system," Gregg Mastoras, a senior security analyst with Sophos told TechNewsWorld. "We're not talking about computers where Microsoft owns 95 percent of the world. Cell phones have plenty of different operating systems, and for that reason, they're much harder to attack on a large scale."
Is Your Website Killing Customer Confidence?
Your Website's privacy policy can be a key factor in a customer's decision to do business with you, and it is vital to ensuring you don't run afoul of your online legal and regulatory responsibilities. Need more reasons? Read on.
Cell phone worms and VoIP fraud are among the top 10 security threats to watch next year, according to a panel of experts assembled by the SANS Institute.
The panel's findings were released Sunday at the SANS Network Security 2006 conference in Las Vegas.
Cell phone worms will infect at least 100,000 phones in 2007, jumping from phone to phone over wireless data networks, the experts noted.
"Cell phones are becoming more powerful, with full-featured operating systems and readily available software development environments," they said. "That makes them fertile territory for attackers fueled by cell phone adware profitability."
"No one could figure out why writing a cell phone worm would be useful," he told TechNewsWorld, "but it turns out that it is extremely useful, because people are now doing their e-mail 
on their cell phones.
"So a worm in a cell phone can be a way to do phishing exercises, for example, to steal people's passwords and user names," he continued. "It can also be a way to launch denial-of-service attacks."
However, cell phone malware may be years away from becoming a problem.
"The challenge with cell phones is that there isn't a ubiquitous operating system," Gregg Mastoras, a senior security analyst with Sophos, told TechNewsWorld.
"We're not talking about computers where Microsoft (Nasdaq: MSFT) owns 95 percent of the world," he continued. "Cell phones have plenty of different operating systems, and for that reason, they're much harder to attack on a large scale."
To date, only 100 cell phones that have been attacked have become infected, he estimated.
"Attacks happen because people want to go where the money is," Mastoras asserted. "I'm not sure that cell phones are where the money is right now."
There aren't a lot of mobile malware varients appearing on a weekly basis, added David Marcus, security research and communications manager for McAfee Avert Labs.
"But, prevalence will grow as more and more people use their phones for data and confidential information," he told TechNewsWorld.
Another trend to watch next year is compromising Voice over IP (VoIP) phone systems.
Hackers have begun penetrating VoIP servers and selling dial tone as if they were a phone company, noted Paller. "The hackers collect the money from the people that use it, while the company operating the servers gets the bill," he said.
"A lot of medium-sized companies are putting in Voice over IP," he observed. "They are doing it without any sense of security, so they're easy pickings."
As they do with any new technology, vendors are concentrating on getting VoIP onto the market with the desired features, asserted Robert Richardson, director of the Computer Security Institute.
"The protocols for setting up telephone calls were designed without very much attention to security threats," he maintained.
One thing that traditional telephony systems have is a really good call accounting system, he added. A company with a traditional switch can pull up a report that will show anomalies in usage.
"On the VoIP side, those kinds of niceties have lagged," Richardson said.
In addition to cell phone viruses and VoIP attacks, other trends SANS recommends watching next year include the following:
Print Version
E-Mail Article
Reprints
More by John P. Mello Jr.
Next Article in Malware
|
Zero-Day Vulnerability Detected in Windows VML September 20, 2006 
Microsoft has confirmed reports that a zero-day vulnerability has been detected in the Windows implementation of Vector Markup Language, or VML. Hackers have publicly posted exploit code that could enable widespread Web-based attacks, security experts warn. Microsoft aims to have a fix ready for its Oct. 10 Patch Tuesday release, or before that if widespread attacks are reported.
|
Related Stories
|
Five Percent of Global PCs Still Infected With 'Blackworm' Virus February 09, 2006 
"Although many machines have been disinfected, we're certainly not out of the woods yet. Many machines may still be infected without their owner's knowledge," said Dmitri Alperovitch, principal research scientist for CipherTrust.
|
Sober Virus Largest Ever On Internet, Report Says December 01, 2005 
This latest Sober worm typically arrives as a ".zip file" e-mail attachment in either German or English, or in a message that appears to be from either the Federal Bureau of Investigation or the Central Intelligence Agency, or even the Internal Revenue Service.
|
New Virus Strain Spreads Swiftly Through E-Mail November 23, 2005 
One reason the worm spread so rapidly was it cloned a number of tried and true malware methods, according to Sam Curry, vice president for product management at Etrust Security Managment in Islandia, N.Y. "I find it ironic that the same worm can spoof the FBI and CIA on the one hand and use the old 'do you want to see pictures of ...' trick on the other," he said.
|
Related News Alerts
More by John P. Mello Jr.
|
Learning the Way of the Snow Leopard November 23, 2009 
When confronted with a new piece of technology, some users will jump right in, but others may want to learn from an expert how to get the most out of it. Class On Demand puts 13 lessons onto a DVD that Mac greenhorns can use straight from their new computers. However, as many vendors operating in the Apple universe have found, one of their biggest rivals may turn out to be Apple itself.
|
VMware Fuses Performance With Convenience November 16, 2009 
Fusion 3.0, the latest virtualization app from VMware that lets Mac users run Windows alongside OS X, puts an emphasis on performance. VMware built it specifically to leverage the 64-bit capabilities of Snow Leopard with a new 64-bit native engine. Its Migration Assistant for Windows lets Mac switchers recreate their old Windows PC inside a Mac, file by file.
|
Mouse Meets Multi-Touch November 09, 2009 
Apple's latest peripheral, the Magic Mouse, takes the concept of multi-touch that the iPhone and iPod touch popularized and merges it with a button-free mouse. As one's mouse is a direct point of contact between human and machine, any changes made to it can be a divisive issue. Some users love the new abilities Magic Mouse brings to the table; others just can't stand the thing.
|
Get Business and Technology News Alerts
Most Popular | Spotlight Features | Exclusives
This Week on ECT News Network | Podcasts
Online Retail Transaction Performance Indices
Inside E-Commerce Times
|
Reader Services
|
Corporate
|
Headline Feeds
Talkback: 
