ST06-007 -- Defending Cell Phones and PDAs Against Attack

Who's Online Now

0 members (), 562 guests, and 29 robots.

Key: Admin, Global Mod, Mod

ShoutChat

Comment Guidelines: Do post respectful and insightful comments. Don't flame, hate, spam.

KSC PAD 39A

KSC PAD 39B

TLE DATA

IDB.COM.AU
For all your TLE downloads.

May
S	M	T	W	T	F	S
			1	2	3	4
5	6	7	8	9	10	11
12	13	14	15	16	17	18
19	20	21	22	23	24	25
26	27	28	29	30	31

Today's Birthdays

There are no members with birthdays on this day.

AUS-CITY Recent Posts

'It almost feels unreal': NASA astronauts excited for 1st crewed Boeing Starliner launch May 6
by Webmaster - Wed 01 May 2024 08:00:PM

NASA prepares for intense sun storms on Mars during 'solar maximum'
by Webmaster - Wed 01 May 2024 07:00:PM

James Webb Space Telescope forecasts clouds of melted rock on this blisteringly hot exoplanet
by Webmaster - Wed 01 May 2024 06:30:PM

A Switzerland-size hole opened in Antarctica's sea ice in 2016-17. Now we know why
by Webmaster - Wed 01 May 2024 06:01:PM

Lego Marvel The Amazing Spider-Man review
by Webmaster - Wed 01 May 2024 05:45:PM

Solar maximum: What is it and when will it occur?
by Webmaster - Wed 01 May 2024 05:00:PM

Yellowstone Lake's weird resistance to climate change could be about to crack
by Webmaster - Wed 01 May 2024 04:00:PM

NASA's James Webb Space Telescope mission — Live updates
by Webmaster - Wed 01 May 2024 03:46:PM

Best sci-fi movies with 90%+ on Rotten Tomatoes
by Webmaster - Wed 01 May 2024 03:29:PM

Astronomers close in on the mystery of the erupting Orion star system (video)
by Webmaster - Wed 01 May 2024 03:00:PM

AUS-CITY Latest Photos

Art By MA
by Alisa, July 27

"5greenheart" by MA
by Alisa, July 27

"3moons" by MA
by Alisa, July 27

Art By MA
by Alisa, July 27

Popular Topics(Views)

4,736,447 The most hated Government Department

3,125,006 UBI, Updates and the rest :-)

840,686 Access to new forum UBI and PBS Private

700,503 CYPRUS SAT ON AIR CH60

519,776 What can we expect of TV Plus ?

511,598 Department of Child Safety's most shameful office

432,752 UBI vs DigiTurk - Turkish Package Changes

347,212 TARBS WAS SCREWED!!!!

339,760 Moderate 4.4 quake hits near Gisborne, Gisborne District, New Zealand

325,831 aussiefrogs.com offline

AUS-CITY Earthquake Map

AUS-CITY Advertisements

Print Thread

Rate Thread

ST06-007 -- Defending Cell Phones and PDAs Against Attack #43648 Fri 06 Feb 2009 12:40:PM
Joined: Feb 2001 Posts: 3,536 Ontario, Canada VA3DBJ OP Mission Commander
OP VA3DBJ Mission Commander Joined: Feb 2001 Posts: 3,536 Ontario, Canada	Cyber Security Tip ST06-007 Defending Cell Phones and PDAs Against Attack As cell phones and PDAs become more technologically advanced, attackers are finding new ways to target victims. By using text messaging or email, an attacker could lure you to a malicious site or convince you to install malicious code on your portable device. What unique risks do cell phones and PDAs present? Most current cell phones have the ability to send and receive text messages. Some cell phones and PDAs also offer the ability to connect to the internet. Although these are features that you might find useful and convenient, attackers may try to take advantage of them. As a result, an attacker may be able to accomplish the following: * abuse your service - Most cell phone plans limit the number of text messages you can send and receive. If an attacker spams you with text messages, you may be charged additional fees. An attacker may also be able to infect your phone or PDA with malicious code that will allow them to use your service. Because the contract is in your name, you will be responsible for the charges. * lure you to a malicious web site - While PDAs and cell phones that give you access to email are targets for standard phishing attacks, attackers are now sending text messages to cell phones. These messages, supposedly from a legitimate company, may try to convince you to visit a malicious site by claiming that there is a problem with your account or stating that you have been subscribed to a service. Once you visit the site, you may be lured into providing personal information or downloading a malicious file (see Avoiding Social Engineering and Phishing Attacks for more information). * use your cell phone or PDA in an attack - Attackers who can gain control of your service may use your cell phone or PDA to attack others. Not only does this hide the real attacker's identity, it allows the attacker to increase the number of targets (see Understanding Denial-of-Service Attacks for more information). * gain access to account information - In some areas, cell phones are becoming capable of performing certain transactions (from paying for parking or groceries to conducting larger financial transactions). An attacker who can gain access to a phone that is used for these types of transactions may be able to discover your account information and use or sell it. What can you do to protect yourself? * Follow general guidelines for protecting portable devices - Take precautions to secure your cell phone and PDA the same way you should secure your computer (see Cybersecurity for Electronic Devices and Protecting Portable Devices: Data Security for more information). * Be careful about posting your cell phone number and email address - Attackers often use software that browses web sites for email addresses. These addresses then become targets for attacks and spam (see Reducing Spam for more information). Cell phone numbers can be collected automatically, too. By limiting the number of people who have access to your information, you limit your risk of becoming a victim. * Do not follow links sent in email or text messages - Be suspicious of URLs sent in unsolicited email or text messages. While the links may appear to be legitimate, they may actually direct you to a malicious web site. * Be wary of downloadable software - There are many sites that offer games and other software you can download onto your cell phone or PDA. This software could include malicious code. Avoid downloading files from sites that you do not trust. If you are getting the files from a supposedly secure site, look for a web site certificate (see Understanding Web Site Certificates for more information). If you do download a file from a web site, consider saving it to your computer and manually scanning it for viruses before opening it. * Evaluate your security settings - Make sure that you take advantage of the security features offered on your device. Attackers may take advantage of Bluetooth connections to access or download information on your device. Disable Bluetooth when you are not using it to avoid unauthorized access (see Understanding Bluetooth Technology for more information). _________________________________________________________________ Author: Mindi McDowell _________________________________________________________________ Produced 2006 by US-CERT, a government organization. Note: This tip was previously published and is being re-distributed to increase awareness. Terms of use <http://www.us-cert.gov/legal.html> This document can also be found at <http://www.us-cert.gov/cas/tips/ST06-007.html> For instructions on subscribing to or unsubscribing from this mailing list, visit <http://www.us-cert.gov/cas/signup.html>.