Home » News » Security basics » Fake BlackBerry Update Injects Interceptor Spyware

Fake BlackBerry Update Injects Interceptor Spyware

By Luciana on July 15, 2009 | Security basics, mobile phone spyware, mobile phone, BlackBerry, Interceptor

BlackBerry users from United Arab Emirates have been receiving fake “service quality update” since the last week leading to installing spyware. Customers of Etisalat network are targeted by this fraud.

Etisalat ignores the problem so far. The issue was only noticed because it causes fast battery drain. Ruining battery life is just a small side effect when you compare it to the main purpose of the malware. The fake update installs spyware named Interceptor which is designed to steal text messages and emails. It secretly sends a copy of each message to an Etisalat server.

The spyware comes as a WAP Push message labeled as “Etisalat network upgrade for BlackBerry service. Please download to ensure continuous service quality”. The update installs new application under “/com/ss8/interceptor/app” directory. The Interceptor starts its activities after receiving a remote message which triggers the process. The battery depletion which revealed the spyware happens because the app is designed to register at central server. Since the server isn’t able to maintain the traffic, the application attempts to register again and again and drains the battery this way.

More Security basics news

Frauds versus security tools versus trust issues

Frauds versus security tools versus trust issues

Does this sound familiar? You have a trial version of a security program. It scans your computer, it reports infections, but it will not delete any unless you buy the full version. Or it cleans your computer well, but the demo version does not include firewall/pop-up blocker/spam filter. Now, how can you tell if the program is there to help you or if it is a fraud hunting your money? Read more.


News categories

Latest news