Feeds

China faces million-strong zombie phone horde

Leading the world in mobile malware

High performance access to file storage

More than a million mobile phones in China have been infected with the AVK.Dumx.A Trojan.

According to local reports in the Shanghai Daily, the infection is costing users more than two million yuan (just shy of £200,000) in text messaging as it attempts to spread.

The disguise the Trojan wears is unclear, though it does appear to be Symbian-based. All reports agree that in addition to spreading itself the infection logs with a central server in readiness to receive additional instructions.

The Shanghai Daily's report explains that the infection comes embedded in an anti-virus package, but the official notification from the Chinese "National Computer Network Emergency Response Technical Team Center" draws attention to a media player called DuMusicPLayer which it reckons is carrying the Trojan.

The infection does check for, and disable, anti-virus software running on the handset in the same way as the more-advanced desktop viruses. It then sends SMS messages to everyone in the handset address book, containing links to the package, and reports the handset phone number, model and other available details to a remote server.

That server is under investigation by the local authorities, but it's very possible that the miscreants already have a decent list of infected numbers to which they can send commands over the SMS network whenever they want. Those commands could, for example, make the phone call a premium number or premium text service, offering financial reward to the developers.

The only good news is that the infection is so virulent that users rapidly become aware that their phone is infected by all the text messages it suddenly starts sending - a more relaxed version of the same thing would be much harder to detect even if it took proportionally longer to spread.

The best defence against this kind of thing is, of course, a locked-down device with a gatekeeper. Users, in China and elsewhere, always click "continue" in the face of security warnings such as those presented when this infection is received.

As our mobile phones become as prone to infection as our desktop computers, we'll have to decide what price we're prepared to pay for our security before we see a million-strong zombie army in the west. ®

High performance access to file storage

More from The Register

next story
A black box for your SUITCASE: Now your lost luggage can phone home – quite literally
Breakfast in London, lunch in NYC, and your clothes in Peru
Broadband Secretary of SHEEP sensationally quits Cabinet
Maria Miller finally resigns over expenses row
Skype pimps pro-level broadcast service
Playing Cat and Mouse with the media
Beat it, freetards! Dyn to shut down no-cost dynamic DNS next month
... but don't worry, charter members, you're still in 'for life'
EE dismisses DATA-BURNING glitch with Orange Mail app
Bug quietly slurps PAYG credit - yet EE denies it exists
Like Google, Comcast might roll its own mobile voice network
Says anything's possible if regulators approve merger with Time Warner
Turnbull leaves Australia's broadband blackspots in the dark
New Statement of Expectations to NBN Co offers get-out clauses for blackspot builds
Facebook claims 100 MEEELLION active users in India
Who needs China when you've got the next billion in your sights?
prev story

Whitepapers

Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
HP ArcSight ESM solution helps Finansbank
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Mobile application security study
Download this report to see the alarming realities regarding the sheer number of applications vulnerable to attack, as well as the most common and easily addressable vulnerability errors.