|
Symbian Reviews |
|
|
|
SymbianOne Stuff! |
|
|
|
|
Welcome to SymbianOne... est. 2003 as one of the first Symbian-centric Developer portals, we provide our readers with the latest technology news, tool tips, developer resources and items of interest to developers, system integrators, carrier reps, handset makers, mobile industry architects, wireless technology professionals. Look for news, articles, editorial, app reviews, device updates and more, all focused on the Symbian OS, S60, and related topics. |
|
F-Secure protects against SMS Curse of Silence
|
|
|
|
Written by F-Secure
|
|
Wednesday, 31 December 2008
|
|
F-Secure Mobile Security protects against a Denial-of-Service exploit that could affect popular smartphone models. The "SMS Curse of Silence" can crash the SMS function of the phone, meaning users cannot receive new text messages.
Helsinki, Finland - December 31, 2008: A new exploit for a wide range of Symbian OS-based smartphones was made public last night. This exploit has been dubbed the "SMS Curse of Silence" by Tobias Engel, who discovered and disclosed the exploit at the 25th Chaos Communication Congress.
The exploit can make the text messaging function of the affected phone unusable. Affected phones cannot receive SMS text messages. Smartphones that can be attacked this way include UIQ devices and S60 2nd Edition Feature Packs 2 and 3, 3rd Edition and 3rd Edition Feature Pack 1. S60 3rd Edition Feature Pack 2 or 5th Edition phones are not affected.
The Denial-of-Service attack consists of sending one, or depending on the phone model, several specifically formatted SMS messages to the smartphone being targeted. The messages crash the phone's SMS system, but the phone remains functional otherwise. Older models do not show symptoms of the attack that would be visible to the user, however newer phones can show messages that the phone is running out of memory or experience constantly flashing message icons after the attack.
Samu Konttinen, Vice President of the Mobile Business Unit at F-Secure says: "Performing the attack does not require technical expertise, and due to this, there is a risk of it becoming a nuisance. We have already provided a security update to this threat to our F-Secure Mobile Security customers."
The F-Secure Mobile Security solution protects against this exploit by detecting it and by repairing the phone so that users don't lose the messages in their inboxes. The solution is available for all the smartphone models at risk. It can be downloaded directly to the phone by using the phone's browser to access www.f-secure.mobi. There is a free 7-day trial version of F-Secure Mobile Security available.
F-Secure would like to thank Mr Engel for his cooperation in communicating his discovery in advance.
More information on the smartphone DOS exploit is available on F-Secure's weblog at www.f-secure.com/weblog
|
|
Mobile Technology Blogs |
|
| |
Mobile Technology Blogs, News, and RSS Feeds... Looking for more news, tips, commentary, and blogger discussions? Check out
these excellent feeds for more on wireless technologies and mobile application
development. Got a feed to share? Please tell us about it... | |
|
SymbianOne Sponsored Links and Events |
- The 3rd annual Navigation Day @ CeBIT conference will pull together the top execs from the huge CeBIT exhibition in one room at one time. March 5, 2010
- 2010 ESRI Federal User Conference February 17-19, 2010, Washington D.C. Walter E. Washington Convention Center - The FedUC is the largest geospatial conference for federal agencies. Connect with other leaders, decision makers, and GIS professionals.
 LBSZone.com - for developers interested in mobile location-based services
Geospatial & LBS News - Stay abreast of geospatial technologies with daily updates
See Your Message Here |
|
|
|
