[siva.guduru]

Hi,

please send me some information regarding any known virus that you people have come across for blackberry.

iwant some 5 virus names that blackberry got affected in recent times.

Regards,
siva guduru.

[ezrunner]

Wirelessly posted (BlackBerry8800/4.2.1 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/100)

None that I am aware of

[JSanders]

Wirelessly posted (8800: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0) BlackBerry8310/4.2.2 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/102)

You're gonna be searching long and hard.

[jsconyers]

I think you are getting Windows Mobile confused with Blackberry

Good luck on your search!

[NJBlackBerry]

Please let us know how many (0) that you find.

[shogunmaster]

I'm a security professional and the only thing that I am aware of is the presentation at the Blackhat/Defcon Conference two years ago about a trojan that was developed for the Blackberry called bbproxy.

This trojan has not been very prevalent but it proves that something like this can be done. I think we should be careful not to install random applications just like on PCs.

"'CrackBerrys' get cracked
Attackers aren't spending all of their time on Vista. Some of them also are thinking about ways to exploit devices such as BlackBerrys. Jesse D'Aguanno, a consultant with Praetorian Global, unveiled BBProxy at Black Hat, a hacking program he created that takes advantage of the trust relationship between a BlackBerry and an enterprise's internal server to hijack a network connection. Intrusion detection systems (IDS) deployed at the network perimeter would be useless against this type of exploit, he said, because the data tunnel between the BlackBerry and the server is encrypted. BBProxy must be installed on a BlackBerry or sent to one as an emailed Trojan horse. Once installed, the program causes the BlackBerry to call back to the attacker's system in the background, opening a communications channel between a company's internal network and the attacker. D'Aguanno plans to release BBProxy for download sometime in the next week."
Black Hat notebook: Flying under the radar

BlackBerry vulnerability, mobile viruses are real threats

[NJBlackBerry]

Can be done is totally different than HAS been done.
Many organizations disable the ability to load third party applications.

[siva.guduru]

Hi,

as of now there is company calld s-mobile that claims that it has developed a blackberry antivirus product called AntiVirus Gaurd and claims that it is the first company to have developed a antivirus for blackberry.

so, i am wondering that on what basis have these people constructed/developed a antivirus program, when there is no effective virus for balckberry.

SMOBILE SYSTEMS

it would be of great help for me, if some one cane help me to find more information regarding this.

Thanks & Regards,
Siva Charan Guduru.

[NJBlackBerry]

I offered many years ago to write a BlackBerry AV problem. It doesn't have to do anything, so it would be easy to write. I wouldn't charge much, as the problem didn't actually DO anything.

PT Barnum...

[JerryD]

Quote:

Originally Posted by siva.guduru

Hi,

as of now there is company calld s-mobile that claims that it has developed a blackberry antivirus product called AntiVirus Gaurd and claims that it is the first company to have developed a antivirus for blackberry.

so, i am wondering that on what basis have these people constructed/developed a antivirus program, when there is no effective virus for balckberry.

SMOBILE SYSTEMS

it would be of great help for me, if some one cane help me to find more information regarding this.

Thanks & Regards,
Siva Charan Guduru.

Did you happen to notice that on the SMobile site's Virus Threat Center, they list the Windows Mobile and Symbian platforms, but no BlackBerry platform? Wanna take a guess why?

[siva.guduru]

Yeah...
i observed that RIM platform is not mentioned in there....i thought may be RIM does not like to expose much about it's platform so it is not listed there, also S-Mobile it does not want to expose it's technology as well, as it is very hot in market. Is my guess right? or is there some other reason.

[NJBlackBerry]

You are guessing. So far I can agree with that.

You should look for another platform to discuss.

[SheepDog]

sounds like snake oil to me. BBproxy has a very limited reach. It will only work *if* a bes admin allows such third party app folly on a corp BB. Most I bet wont. It is worthless if on a BIS BB.

[Mark Rejhon]

Even if 3rd party applications are allowed, there are ways to restrict what the 3rd party application is able to do. For example, it may not be allowed to open a connection to the corporate network.

BBProxy is 100% useless on a government BlackBerry, for example.

[Mark Rejhon]

A useful post I made on HowardForums:
My HowardForums Post about the nearly-do-nothing BlackBerry "antivirus" product

Quote:

[Regarding the existence of S-Mobile antivirus]

They are simplly exploiting the fact that one proof-of-concept malware app called BBProxy merely exists, as a means to justify the existence of the BlackBerry antivirus product. It's essentially a virus definition file of possibly only 1 semi-malware product (as far as I know), compared to the many thousands for a PC. BBProxy is almost not even a trojan horse because it's hard to get to install on a BlackBerry, and even harder to do so unintentionally. Plus, many BES's block all third party apps, so everything becomes impossible to install without sysadmin permission, even BBProxy, on say, a government BlackBerry. This may be reassuring to companies, but there are much better and cheaper ways to block BBProxy. If there were many dozens of different semi-functioning trojan horses like BBProxy, then maybe it justified. But as of right now, they are exploiting fear in the market.

Similiar snake oil "take-advantage-of-market" FUDware (software that takes advantage of FUD) product as McAfee ViruScan for Palm from back in Year 2000. As one commenter says, "Just a few days after the first PalmOS virus and they've already got a product out. The conspiracy theorists can go wild with this one!". After 7 years, how many PalmOS viruses are there -- still not even enough to justify the need for most corporations to install antivirus on Palm devices. Now, when it comes to BlackBerry, BlackBerry is at least a couple orders of magnitude safer than Palm because BlackBerry Enterprise Server is far more powerful than any antivirus product -- it has the ability to block 100% of all third party software (legitimate or otherwise) from being installed on a BlackBerry, without authorization by the sysadmin of the company running that particular BlackBerry Enterprise Server (BES). BES also has software whitelisting/blacklisting capabilities too, and can even force application permissions such as banning third party software programs from being able to do TCP/IP (except for whitelisted apps) - no TCP/IP, no network, no filesystem access -- thus no corporate LAN access.

There may be a niche for detection of unauthorized software, but that's presently BES's responsibility. There are plenty of ways to do that with BES, and it is very easy to block BBProxy via BES. As it stands now, there is no better BlackBerry antivirus software than BES itself, and the maker of BES is RIM itself -- the maker of BlackBerries. BES gives you gargantuanely powerful remote control reign of your own company's BlackBerries -- you're the king of your own company's BlackBerries -- you can use BES to even remotely kill your own BlackBerries if they ever gets stolen, for example. Spy on them, control them, push software to them, remotely delete software from them, remotely upgrade them, log their usage, etc. And many add-ons and plug-ins to make BES even more powerful. Companies, corporations, goverments, love all that.

Just set your BES to block third party software, and -- presto, no antivirus needed. Or whitelist a list of applications you don't mind users to install (Google Maps, Opera Mini, etc) and then it is possible to restrict the permissions of these applications to not access your corporate LAN, but only be able to access the outside Internet only. (while giving these permissions to only authorized intranet apps). And companies who need to give their BlackBerries more permissiveness (let employees install reasonable amounts of unexpected third party software) but still be able to spy on what's installed and such -- a better product may be an unauthorized software detection utility rather than calling it full blown "antivirus", or some application that remotely asks the sysadmin for authorization to install software, etc. Even so, there's already techniques and methods to do things similiar to these kinds of things now...

[silentmax]

ive handled thousands of blackberry issues and never once have encountered a virus issue. look if there is ever a virus(knock on wood) it would show up here first

BlackBerry Technical Solution Center

[BoostedSupra]

in4snakeoil

[siva.guduru]

Hey what is this snakeoil everyone is referring to......is that some kind of process or malware

please provide some iformation on this.

Regards,
Siva.

[penguin3107]

Quote:

Originally Posted by siva.guduru

Hey what is this snakeoil everyone is referring to......is that some kind of process or malware

please provide some iformation on this.

Regards,
Siva.

Snake Oil refers to any fraudulant product which is described to fix a problem that doesn't really exist.
You can read more on Wikipedia.
Snake oil - Wikipedia, the free encyclopedia