Bad sorts have created a malware targeted at Symbian mobile phones that comes signed with an apparently valid Symbian Certificate.

Because it is signed the application can potentially gain privileged access, net security firm F-secure warns. The malware is also unusual because it is targeted at S60 3rd Edition phones, instead of the more common target of 2nd edition phones.

Security researchers at Fortinet report that the malware (which it calls the Yxes-A worm) harvests phone numbers from an infected device's file system, and repeatedly attempts to send SMS messages to these mobile numbers. These SMS messages direct surfers to a maliciously constructed website. When users of vulnerable devices "click" on the address in received messages, an attempt to download a copy of the malware will occur.

Fortinet adds that the malware gains information on the infected victim (such as serial number of the infected phone, subscription number etc) and posts this data to a remote server likely controlled by cyber criminals. It's unclear how many users have fallen victim to the attack or its ultimate motives.

Analysis of the malicious code remains ongoing. ®

Related stories

• Malware afflicts 1.5% of Symbian handsets (31 July 2009)
• Analysis Signed mobile malware prompts Symbian security review (23 July 2009)
• Symbian Trojan strikes Indonesian operator (22 January 2009)
• Chinese mobile users targeted by Trojan (5 March 2008)
• Mobile botnet threat downplayed (13 April 2005)
• Text me and I'll reply with a virus (4 April 2005)
• Trojan infects PCs to generate SMS spam (9 November 2004)