Feeds

Vodafone Spain admits 3,000 smartphones shipped with Mariposa

Pre-pwned snafu not so isolated after all

Choosing a cloud hosting partner with confidence

Vodafone Spain has accepted that 3,000 customers were potentially exposed to malware after Mariposa botnet agents strayed onto the HTC Magic smartphone.

The admission to Spanish media on Thursday follows a meeting between the mobile phone giant's Iberian arm and representatives from Panda Security.

The infection of microSD cards for the HTC Magic with the Mariposa information-stealing client and other strains of malware was first reported after Vodafone Spain supplied a malware-infected Android phone to a Panda worker earlier this month. Earlier this week a second infection was reported, involving a HTC Magic phone supplied by Vodafone to a security consultant at S21Sec.

The Panda worker at the centre of the outbreak told El Reg that Vodafone is replacing 3,000 HTC Magic smartphone microSD cards because it reckons they are infected, not as a precaution.

Vodafone, which has launched an investigation into the infection, maintains that the whole unfortunate business is "isolated and local". There's no evidence that HTC Magic smartphones supplied by the mobile phone giant elsewhere in Europe are affected.

However, new figures suggesting 3,000 users were exposed to the malware make it one of the biggest incidents of an IT supplier shipping pre-pwned mobile kit.

Initially it was thought that stray infection of a refurbished phone might be behind the Panda incident, but the sheer numbers now reportedly infected point to problems in Vodafone's quality assurance, or with a specific batch of smartphones. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
You really need to do some tech support for Aunty Agnes
Free anti-virus software, expires, stops updating and p0wns the world
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
HACKERS can DELETE SURVEILLANCE DVRS remotely – report
Hikvision devices wide open to hacking, claim securobods
Astro-boffins start opening universe simulation data
Got a supercomputer? Want to simulate a universe? Here you go
State Dept shuts off unclassified email after hack. Classified mail? That's CLASSIFIED
Classified systems 'not affected' - but, is this reconnaissance?
prev story

Whitepapers

Why cloud backup?
Combining the latest advancements in disk-based backup with secure, integrated, cloud technologies offer organizations fast and assured recovery of their critical enterprise data.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
How to determine if cloud backup is right for your servers
Two key factors, technical feasibility and TCO economics, that backup and IT operations managers should consider when assessing cloud backup.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.