Forgot your password?
typodupeerror
Blackberry Android Security News

Zeus Trojan Hits Blackberry Devices 37

Posted by Soulskill
from the kick-'em-when-they're-down dept.
wiredmikey writes "Despite its significant user base within enterprises, BlackBerry devices have managed to stay off the radar for malware writers. That may be ending, as four new Zeus-in-the-mobile (Zitmo) samples targeting BlackBerry users in Germany, Spain, and Italy have been found. Zitmo, which hit Android devices back in July 2011, refers to a version of the Zeus malware that specifically targets mobile devices. Denis Maslennikov, a security researcher at Kaspersky Lab, also identified a new Zitmo variant for Android using the same command and control (C&C) numbers as the BlackBerry versions. While previous Android variants have been primitive, the latest .apk dropper, which shows up as an app 'Zertifikat,' looks 'more similar to "classic" Zitmo,' he said. When executed, it displays a message in German that the installation was successful, along with an activation code. The Android sample also included a self-issued certificate that indicates it was developed less than a month ago."
This discussion has been archived. No new comments can be posted.

Zeus Trojan Hits Blackberry Devices

Comments Filter:
  • by Anonymous Coward on Wednesday August 08, 2012 @01:31PM (#40920813)

    better headline: "Zeus SMITES Blackberry Devices"

  • by benjfowler (239527) on Wednesday August 08, 2012 @01:40PM (#40920933)

    'The RIM Job'

  • by captaindomon (870655) on Wednesday August 08, 2012 @01:54PM (#40921087)
    Not possible. Blackberries are the most secure mobile devices on the planet. The reason people don't appreciate them is because they are only for highly secure corporations and governments. Right? Riiiiiiiight?
    • Re:Not Possible (Score:5, Informative)

      by afidel (530433) on Wednesday August 08, 2012 @02:03PM (#40921191)

      Uh, this software isn't going to get onto a blackberry device with BES lockdown policies, only onto unlocked devices where the user takes some action to install it (most likely bundled with some free game as I doubt drive by downloading is worth the effort for the low penetration numbers unless it's a spearfishing attack).

  • Just stop. (Score:5, Insightful)

    by thePowerOfGrayskull (905905) <marc.paradise@NOsPAm.gmail.com> on Wednesday August 08, 2012 @02:18PM (#40921371) Homepage Journal

    It's probably worth noting that these need to be manually downloaded and installed external to BB's app world - unlike the examples that have turned up for iOS in the appstore and in the market for android. If this was seen in the wild, that means users had to go out of their way to install it, and approve the permissions it requested.

    Most importantly: Under BES you can lock down the devices to completely prevent installation of external/unapproved apps.

  • What steps do the end users have to take for this malware to end up on their BlackBerrys. Do they have to visit a malicious website, open a malicious email attachment, enter an admin password? If so, isn't this the case of end users downloading and installing software from dubious sources. As such there is no known cure for end-user-stupidity ...
    • Re: (Score:2, Insightful)

      by Krneki (1192201)
      Can't be arsed to check the article but I guess it would be through web browsing or installing the application.

      Anyway, we are safe, the web browser on BB suck so much no one is using and the app are so shitty not one is worth your time to installl it for free, let alone pay for it.

      Still, I didn't trade my free BB for a free android (comes with the job), since android devices would need a clean format before I'd dare to use it. oh, and wouldn't touch Apple with a pole, cuz I just hate corporate policy t

    • by Lehk228 (705449)
      they must manually install it. blackberry can install an app from the web as a link, so manually installing would be easier than doing so on android or ios, but it requires user permission and will have to get permissions approved to access anything and will show up in applications list to be removed at any time by the user.
  • by maccodemonkey (1438585) on Wednesday August 08, 2012 @03:10PM (#40922077)

    I bet RIM is ecstatic. Someone is still writing Blackberry software!

  • Tens of users affected. Film at eleven.
  • by slick7 (1703596)
    Just think, condoms from the gods for my PDA.
  • We are now ready for the next step I have been awaiting for years: cross-platform worms that can jump bacck and forth between Windows PC and mobiles, using WiFi and bluetooth. That will be delightful.

If the code and the comments disagree, then both are probably wrong. -- Norm Schryer

Working...