Page 1 of 2 12 LastLast
Results 1 to 15 of 21

Becareful of what emails you open on your BlackBerry - as usual I hope. Check ... Smartphone News forum

  1. #1
    hayden's Avatar
    hayden no está en línea Stack Mod
    Join Date
    Jul 2004
    PIN/ID
    ask
    Posts
    12,440

    Security update: Blackberry trojan "BBproxy" to be released in a week!

    Advertisement



    Becareful of what emails you open on your BlackBerry - as usual I hope. Check out this thread to help secure your Blackberry.

    via Wired News:

    Jesse D'Aguanno a computer security researcher says he's found an unexpected new path into company networks: the Blackberry.

    "Because it's a handheld device, most people don't think it's something that can actually harm the rest of your internal network," D'Aguanno said. "But a Blackberry is not your average handheld. It's not just a PDA that's connected (to your network) only when you're in the office. It's a code-running machine that's always on and always connected to your internal network and has direct access to whatever you give it access to. And most company architectures allow it unfettered access to everything on the internal network."

    The program, called BBProxy, has to be placed on a Blackberry either physically or as a Trojan horse delivered by e-mail. Once installed, it causes the Blackberry to call back to the attacker's system in the background, opening a communications channel between the attacker and the company's internal network. From there, safely behind the organization firewall, the intruder can scan for hosts with security vulnerabilities. -- Read More

  2. #2
    SuzzyP's Avatar
    SuzzyP no está en línea Stack level 5
    Join Date
    May 2006
    PIN/ID
    ask
    Posts
    1,752

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    ew those sneaky dirtbags..... everyone please be very careful
    SP[B]
    Sportin a kBerry Curve

  3. #3
    BBadBoy's Avatar
    BBadBoy no está en línea Stack level 3
    Join Date
    Mar 2006
    PIN/ID
    4010DD80
    Posts
    222

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    This is obviously a danger for BES users. Any ramifications for BIS users?

    ~via BB (wap.pinstack.com)~

  4. #4
    cp6169's Avatar
    cp6169 no está en línea Device Pro
    Join Date
    Mar 2006
    PIN/ID
    3056468b
    Posts
    14,661

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    Not everyone has my email addresses so I pretty much know whos emailing me, but if I see a weird email address I will be careful. Thanks.

  5. #5
    Rcbjr's Avatar
    Rcbjr no está en línea Stack Pro
    Join Date
    May 2006
    PIN/ID
    PM - Ask
    Posts
    14,848

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    This guy is a security researcher and I have seen his name before in the news. But I find it curious that he's telling everyone that he's found a security flaw, talked to RIM about it, yet he's going to release the trojan for download next week. So here is a "Security Researcher", pointing out a flaw, then he's going to give the Trojan to everybody that wants to try to exploit the flaw. Not my idea of responsable research, but maybe I just don't understand.

    He claims that RIM has posted two new documents on their website on this issue, but a search for BBproxy finds no results. There is one new document that addresses Protecting the Device Platform from Malware in the New Documents Listing.

    Rcbjr
    You Ask, We Will Answer
    Can’t Install theme via DM?No Additional Apps Found for Your Device
    Links to Usefull KB Articles

  6. #6
    BBadBoy's Avatar
    BBadBoy no está en línea Stack level 3
    Join Date
    Mar 2006
    PIN/ID
    4010DD80
    Posts
    222

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    I have heard of security researchers using similar tactics with Microsoft. They claimed that as long as they told Microsoft about the flaw but did not disclose it to the public, that Microsoft dragged its feet about finding and publishing a patch to close the vulnerability. When they made the vulnerability public, they forced Microsoft to respond and to make publishing a patch a high priority. Who knows how long this guy has known about this problem or how long ago he made it known to RIM. Maybe he's frustrated and is doing the same thing.

    ~via BB (wap.pinstack.com)~

  7. #7
    Crewdawg257's Avatar
    Crewdawg257 no está en línea BES Pro
    Join Date
    Jul 2006
    Posts
    248

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    This is scary. ~via BB (wap.pinstack.com)~

  8. #8
    Driften's Avatar
    Driften no está en línea Stack level 1
    Join Date
    Aug 2006
    Posts
    9

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    This can be done easier to any pc and is more likley to get infected. I would thinkg if you are running the BB firewall you would have to approve the program connecting out to the attackers system. There are a lot more PC's then BB's that get email in the world. The attacker would have to be going after a company known to be using BB's not just sending out to everybody in the world...

  9. #9
    racinrocker's Avatar
    racinrocker no está en línea Stack level 4
    Join Date
    Apr 2006
    PIN/ID
    24b4c6de
    Posts
    763

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    so is this virus being sent out, is it coming from RIM or another party? ya know cuz if the guy sends it out, and makes the sender of the email from RIM he will get alot more people than just sending it out via joeblow@hotmail.com. someoen needs to looks into this......

  10. #10
    CoolFinalFan's Avatar
    CoolFinalFan no está en línea Stack level 4
    Join Date
    Jul 2006
    Posts
    951

    Arrow Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    Here's some more stuff on that....>>>

    http://www.smobilesystems.com/homepa....jsp?lang=null

  11. #11
    Crewdawg257's Avatar
    Crewdawg257 no está en línea BES Pro
    Join Date
    Jul 2006
    Posts
    248

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    I wanna know where these "2 documents" are. I have read the one on malware. I do think it would be incredibly difficult to install this on my BB or Desktop without my knowledge. The reality is, if I can gain physical access to a device on your network, I can comprimise your network. Prevent physical access and you prevent the threat. Just my two cents.

  12. #12
    ibanyan's Avatar
    ibanyan no está en línea Stack level 2
    Join Date
    Nov 2005
    PIN/ID
    24222F96
    Posts
    51

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    Don't you think this is a good warning on how to very simply lock down your BES/BB and not an all-out panic?

    You already know that BB's can't open attachments, only ones processed by the attachment service. How is BBProxy going to get onto your BB by openning an email?

    Secondly, the admin can set the IT Policy to disallow any third party apps that are not included in the software config.

    Third, the BB firewall will always ask you to allow an outgoing connection from a BB app which should alert the user if this app somehow got onto the device.

    Craig.
    Craig Johnston
    --------------
    My book "Professional BlackBerry":
    http://tinyurl.com/gyqvz
    Mobile Computing Authority Podcast:
    http://mca.libsyn.com

  13. #13
    hayden's Avatar
    hayden no está en línea Stack Mod
    Join Date
    Jul 2004
    PIN/ID
    ask
    Posts
    12,440

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    update - Purported BlackBerry Hack Overstated, RIM Says:

    BlackBerry maker Research In Motion (RIM) and its partners, however, say the risk is overstated.

    At last week's Defcon security conference in Las Vegas, Jesse D'Aguanno, a consultant at Praetorian Global, a Placerville, Calif.-based risk management firm, showed how a hacking program he developed--called BBProxy--could allow an attacker to gain access to a company's internal network via the encrypted connection between a BlackBerry handheld and the Blackberry Enterprise Server (BES).

    Security vendor Secure Computing on Tuesday warned companies that their BES deployments on internal networks could be vulnerable to a BBProxy attack. After manually installing BBProxy or getting a user to install it via an e-mail attachment, a hacker could piggyback the encrypted connection between the handheld and the BES and gain access to the internal network, according to San Jose, Calif.-based Secure.

    However, the notion that BBproxy could be spread by e-mail without user interaction is misleading, said Scott Totzke, director of the global security group at RIM, Waterloo, Ontario. "Our attachment service doesn't work that way. You can send and view e-mail, but the BES system is designed to require users to manually download the application from a Web site," he said.


    "[BBProxy] isn't a hacking tool. It's an application that runs on the BlackBerry and potentially does something malicious," Totzke added.

    Although BBProxy may work in theory, RIM has addressed the issue of over-the-air or self-installing applications with the IT policy component of BES version 4.1, said David Bean, president of eAccess Solutions, a Palatine, Ill.-based RIM partner. BES 4.1 includes policies that can repel an attack by a self-installing or virus-infected file, but such policies must be set up and implemented by the server administrator, Bean added.

    On its Web site, RIM has published documents that describe steps that companies can take to protect themselves from such an exploit. Those measures include segmenting networks and limiting third-party application access to the BlackBerry Enterprise solution.

    Dan King, president of New West Technologies, a Portland, Ore.-based solution provider, said he thinks it's interesting that security researchers are announcing hacks before releasing them, which he said helps educate companies about the risks they take by not locking down their networks.

    "Hopefully, companies will take the appropriate steps to make sure their data is not intruded on so that they are not enabling the proliferation of viruses and hacks by leaving their compromised systems open and on the Internet," King said. -- Source

  14. #14
    ibanyan's Avatar
    ibanyan no está en línea Stack level 2
    Join Date
    Nov 2005
    PIN/ID
    24222F96
    Posts
    51

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    This special podcast episode explains it all, straight from the horses mouth. Take a listen at em cee ay dot com or search for Mobile Computing Authority in iTunes.
    Craig Johnston
    --------------
    My book "Professional BlackBerry":
    http://tinyurl.com/gyqvz
    Mobile Computing Authority Podcast:
    http://mca.libsyn.com

  15. #15
    Mrhappy371's Avatar
    Mrhappy371 no está en línea Stack level 1
    Join Date
    Aug 2006
    Posts
    1

    Re: Security update: Blackberry trojan "BBproxy" to be released in a week!

    A company going by SMobile Systems has a solution to protect against the BBProxy trojan. Do you think there is validity in what they offer? [F((biz.yahoo.com/prnews/060814/clm044.html?.v=54))

Page 1 of 2 12 LastLast

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •