Mobile Phones Face Hacker Threats
Security experts say that although accessing your bank information through your cell phone might seem safe, hackers can access confidential information through a simple text message from your service provider.
The people in the industry consider the risk very small, because only a few people use handsets to access their bank accounts, but the problem is growing as mobile Internet usage rises.
The flaw gained wider attention at the BlackHat Europe security conference in April.
"The hacker does not have to be especially skilled to do this," said Jukka Tuomi, chief technology officer at Finnish software firm ErAce Security Solutions.
In some phones using Microsoft’s Windows software, users cannot block the attack, while Symbian phone users can block malicious messages, according to ErAce.
But, most users accept an installation of new settings if they seem to be from an operator.
Security problems on cell phones, so far, have been mostly limited to small outbreaks as operators have been able to screen the data traffic, but the new risk could be out of their reach in many countries where screening text messages is not allowed.
There are increasing fears over computer viruses’ ability to attack cell phones, which can put taking up new mobile services at risk. This is crucial for operators looking for growth in mature markets, where call prices are falling.
Installing security software on the phone is not always enough though, because some models criminals can wipe the program from the phone.
"People think they are closing their door, but the windows and the back door are open," ErAce’s Tuomi said.
A mobile browser from an infected phone displays "Opening a secure connection.  Content cannot be seen by anyone else," when trying to enter a bank website on a mobile phone. The connection goes through the criminals’ servers.
"This is a real risk, but we have not seen this used in any real attacks in the field," said Mikko Hypponen, research director at Finnish security software firm F-Secure.
Jacob Greenblatt, from Discretix security software firm, said, "While this is definitely serious, there are certain safeguards which can be built into mobile devices to eliminate the threat entirely or to limit its potential for harm."
If new phones were protected, it would still leave billions of phones on the market that are not shielded from attacks.
—
On the Net: