News

BLACK HAT: Money Will Fuel Mobile Spying Programs

Spying programs for mobile phones are likely to grow in sophistication and stealth as the business around selling the tools grows

By Jeremy Kirk, IDG News Service (London Bureau)

But there are ways that less technical users can get a hint they've been hacked. One simple clue is if a colleague of the victim knows something that they shouldn't, Niemela said.

Also, mobile spying programs have to transmit their data. If the spy program sends data over GPRS (General Packet Radio Service), the network operator will demand payment. "As long as it has to use a paid channel, it can not escape the operator's bill," Niemela said.

Another way is to replace the phone's SIM card with one that allows for real-time monitoring. SMSes can then be sent to the phone, which in many countries are free to receive. If the monitoring reveals outgoing data traffic after SMSes are received, the phone could be hacked. It's also possible to check if the GPRS connection icon lights up after a message is received, Niemela said.

Niemela offered some defenses against mobile spyware: Keep the OS up to date, as manufacturers are usually working to counter new devious software. The use of a mobile antivirus program is also prudent, he said. People should also use password protection to block access if someone gets a hold of the device.

Administrators can also regularly "flash" phones to wipe off malware, as well as ensuring that phones only install signed applications.

And when the phone is out of a person's hands, another option is to put the device in a tamper-proof container. But "for most people, this is way too James Bond," Niemela said.

• Email
• Print
• Comments
• Digg This
• SlashDot