The blogosphere is buzzing with a hot subject: a worm attacking Symbian smartphones. The creature has a name too, not a latin one as the living worms but a rather techie one: Trojan:SymbOS/Yxe.A. Or, among its friends, "Sexy view".
You can read Gabor Torok’s analysis of the incident at Mobile worm, Yxes.A – an analysis but in this post I want to challenge you with a more hands-on task: how to protect yourself from this worm?
We all know (I hope) the good old security advices published by Nokia at http://europe.nokia.com/get-support-and-software/learn-how/security/your-device:
- Exercise caution when accepting applications sent via Bluetooth or opening MMS attachments as they may include software harmful to your phone or PC.
- Do not approve or download content to a mobile device from an unknown or unreliable source.
- In general, keep your Bluetooth connection on hidden mode unless you specifically need to be visible to others.
For the sake of this post however, let’s pretend that we want to ignore these advices and instead ensure that we can install any sis file that finds its way to our devices … except this virus, of course.
So, given that the info we have about the virus is whatever we can find from this picture from F-Secure’s blog,
the requirement is to design a component that blocks the installation of the worm without affecting any other application. If multiple solutions are proposed the winner will be the one with the simplest design and less Platform Security capabilities requirements. Only public APIs can be used for creating the solution.
Do you have the answer? Post it here or, if it has any attachments, send it to firstname.lastname@example.org
Since the task is trivial there will be no prize in this challenge, except of course for the antivirus protection you will implement for yourself