Vulnerability found in the latest Symbian operating system

It is now possible for mobile phone hackers to bypass the security system of the Symbian OS 9 based S60 3rd Edition phones with a mobile application. Symbian OS 9 based S60 3rd Edition is the market-leading open operating system for mobile phones.

The newly developed hack is a so-called privilege escalation hack. This means that hackers can get unauthorized access to the phone’s file system, which is normally protected. With this access system modifications can be made.

Hacks directed towards the S60 3rd Edition have been evolving for some time. What makes this case different is that the new hack can be carried out without external devices or system knowledge by installing just one mobile application that is downloadable from the web.

Commenting on the vulnerability, Jarno Niemel?¤, Senior Mobile Virus Researcher at F-Secure, said:

The application needs to be installed by the user, so this hacking tool is not a threat to the average mobile user. Because the application lets a user access the file system, we consider this as a security risk. Mobile virus source code could be updated to work on 3rd Edition phones and with the addition of this privilege escalation, hackers could do pretty much the same things as they do on 2nd Edition phones.



Share this