HackerTool/SMSBomber!Android - Released Aug 04, 2010 - Last Updated Jan 10, 2012
|
Detection Availability
|
Visible SymptomsA Text Flooder application is installed
|
Detailed AnalysisThere are several instances of HackerTool/SMSBomber!Android, but in all cases they consist in:
- an application running on Android mobile phones
- a SMS bombing application, i.e the application sends several identical SMS messages to a given recipient, with the unscrupulous intent of bombing / flooding the recipient.
This tool is seen as a hacker's tool: it may, for instance, be prohibited by corporate
rules.
 |
 |
| Figure 1. Main screen of a SMS Bomber. Fill text of SMS to send, number of SMS to send and recipient's phone number. |
Figure 2. The messages have been sent. Note the application asks for confirmation
before sending the SMS messages |
In the scenario we consider, the user of HackerTool/SMSBomber!Android is the attacker, and he wishes to flood recipients with SMS messages.
The application lets him configure the body of the SMS and the phone number to bomb:
Figure 1. Main screen of another bombing tool
Note that, depending on the attacker's subscription, sending SMS messages may cost or be free and unlimited.
.
|
Recommended ActionFortiGate Systems
- Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
FortiClient Systems
- Quarantine/delete files that are detected and replace infected files with clean backup copies.
|
