Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Vodafone has distributed a second HTC handset complete with malware pre-installed, according to security vendor Panda Research.
In a blog post, Panda senior research advisor Pedro Bustamante said that a concerned user had sent the firm an HTC Magic purchased through Vodafone, and found that it contained a Mariposa infection.
The user sent Panda the phone because of a previous report from the firm that covered an earlier, similar infection.
“This guy had also purchased an HTC Magic direct from Vodafone’s official website the same week as my co-worker," wrote Bustamante.
"He hadn’t connected the phone to his PC yet, but as soon as he saw the news hurried back home, plugged it in via USB and scanned its memory card with both MalwareBytes and AVG Free. Lo and behold, Mariposa emerged again, exactly in the same way as in our original finding."
In the previous case, Vodafone suggested that the presence of Mariposa was an isolated incident. A spokesman said, “The most likely cause of this infection is that someone will have sent the device back to Vodafone in a box that looked sealed, when in fact it had been tampered with."
However, Bustamante said that this new infection suggested that the isolated incident theory was losing validity.
“Having the exact same botnet client with the exact same characteristics, with such little time difference between the malware being loaded and delivered to the client and all happening during the same week, makes me think this might be a bigger problem, either with quality assurance or with a specific batch of phones,” he explained.
He recommended that anyone in Europe who had purchased an HTC Magic through Vodafone should run a security check on their PC and HTC microSD card.
“The early indications are that these are isolated local incidents that appear to be confined to Spain," he said. “We take our customers' security and privacy extremely seriously and will take further action to protect our customers should it be necessary."
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.