Results 1 to 7 of 7

Thread: Indian Hacker plants back door in Symbian firmware Share/Save - My123World.Com!

  1. #1
    ... I am no Expert b0nd.g4h@gmail.com b0nd's Avatar
    Join Date
    Jul 2010
    Location
    irc.freenode.net #g4h
    Posts
    744

    Indian Hacker plants back door in Symbian firmware

    Indian hacker Atul Alex has had a look at the firmware for Symbian S60 smartphones and come up with a back door for it. By modifying version 5 of the original software which runs on such devices as the Nokia 5800, Nokia X6, Nokia 5530XM, Sony Ericsson Satio and Sony Ericsson Vivaz he has integrated a back door as a reverse shell, including support for Perl scripts. All of the smartphone's functions can be remotely controlled, including the camera. Alex wrote the back door itself in Python. He plans to make the firmware available for free soon for downloading.

    To install a modified operating system, however, an attacker would first have to get hold of a smartphone for a few minutes and connect it to a computer via a USB cable or something similar. Once installed, the back door calls the attacker via a wireless connection and transmits the device's current IP address. The shell listens in at port 5530 and handles such functions as netcat, mkdir and wget. In addition, it reportedly supports over-the-air installation of additional applications.

    The back door also includes options to read out email, telephone lists, and text messages from memory, create screenshots, take photos with the phone's integrated digital camera, and record telephone calls. The stolen data are transmitted via GPRS/UMTS or WLAN to the attacker's file server.

    Alex told The H's associates at heise Security that he uses a technique he developed himself to hide the back door process from the system's TaskManager. While third-party task managers are principally capable of displaying the process, Alex says that they work at the level of the system and therefore cannot terminate the task. He says the only way to remove the back door is to overwrite the firmware with Symbian's original software.

    Source
    [*] To follow the path: look to the master, follow the master, walk with the master, see through the master,
    ------> become the master!!! <------
    [*] Everyone has a will to WIN but very few have the will to prepare to WIN
    [*] Invest yourself in everything you do, there's fun in being serious

  2. #2
    Garage Addict 41.w4r10r's Avatar
    Join Date
    Jul 2010
    Location
    Pune
    Posts
    338
    Blog Entries
    3
    Yeh Godwin_austin is lucky to see live show at clubhack....

  3. #3
    Security Researcher fb1h2s's Avatar
    Join Date
    Jul 2010
    Location
    India
    Posts
    616
    Blog Entries
    32
    @wariri this was presented at malcon I guess
    Hacking Is a Matter of Time Knowledge and Patience

  4. #4
    Garage Addict 41.w4r10r's Avatar
    Join Date
    Jul 2010
    Location
    Pune
    Posts
    338
    Blog Entries
    3
    dont know about malcon presentation, but who attended it???

    so i guess from g4h godwin is only one...

  5. #5

    Physical Access..."vinnu"

    It is good to know that he has created a backdoor.

    But, he demonstrated by getting physical access to the phone.

    We can backdoor any ICBM (intercontinental Ballistic Missil), Nukes Detonation & Control systems, and any smart or intelligent security or detonation or satellite networks & systems, etc.

    In some cases it will take hardly 1sec to backdoor them, if we'll get the precious physical access.
    What do u say...."vinnu"

  6. #6
    Ya Vinnu .. Thats true .. Atul's presentation was about bugging symbian firmware.
    Which would take physical access to phone.
    But in movie national treasure when they clone phone by getting physical access... we find it cool ..
    This thing also can be used cool way ..
    Think what you can do if you have base access to a guys's phone.

  7. #7
    Yes , Vinnu bro your correct , but the i also agree with Godwin .. this exploit can rock bro :d loved it .

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •