Symantec Connect
  • Login
  • Register
  • Security
    • All of Connect
    • Backup and Archiving
    • Endpoint Management & Virtualization
    • Storage and Clustering
    • Security
    • Inside Symantec
    • Vision User Conference
    • Partners
    • Developers
    •  
  • Overview
  • Forums
  • Articles
  • Blogs
  • Downloads
  • Events
  • Videos
  • Groups
  • Ideas
Login to participate
Security ResponseRSS

BlackBerry Redux -Another year, another whitepaper

James O'Connor
April 19th, 2007
Tags: Endpoint Protection (AntiVirus), Mobile & Wireless, Security, Security Response
Facebook Twitter

Some of you may have read my blog article last year about the BlackBerry mobile device: Hacking the BlackBerry along with the associated whitepaper, Blackberry Security: Ripe for the picking? We decided not to widely distribute that paper for a number of reasons, including the fact that the model reviewed was a tad on the old side (BlackBerry 7290 circa 2004). Well, fast-forward to 2007, when I was supplied with a shiny new BlackBerry Pearl 8100 and a blank sheet of paper.

As I alluded to in my previous blog, the Pearl represents a significant departure for Research In Motion; a departure from the world of purely corporate utility, and an arrival at the world of consumer-oriented features. The device sports a beautifully stylized slimline form-factor, a 1.3 megapixel camera, and a removable media card as standard. Of course, all the features that make the BlackBerry popular with corporate users still remain, such as encrypted email and configurable IT Policies.

So, it sounds great, but is it secure?

I have written a paper examining the security on the Pearl model. In doing so, I re-examined all the major subsystems of the BlackBerry, including the features that are new to this model. For each attack scenario outlined, I also wrote a proof of concept program to make sure that the attack was actually possible. Here are a few examples:

• A multi-threaded port scanner
• A program to log voicemail/online banking PIN numbers and send them to a remote Web site
• A program to enumerate files on the BlackBerry Filesystem and optionally send a file's contents to a PC via Bluetooth Serial Port Profile
• A program to export data from the device using DTMF tones

The paper doesn't contain code samples, but it does describe how each of the above attacks could be carried out, along with many others. It also outlines in detail how to protect your BlackBerry deployment from those same attacks. So, without further ado, may I present my paper: Attack Surface Analysis of Blackberry Devices.

0 votes
  • James O'Connor's blog
  • Comments RSS Feed

About Security Response Blog

Our security research centers around the world provide unparalleled analysis of and protection from malware, security risks, vulnerabilities, and spam.
Filter by:

Recent Blog Posts

  • Beyond the Initial Compromise
    Greg Ahmad - March 18, 2010
  • Passwords—Can’t Live With ‘em, Can’t Live Without ‘em
    Kevin Haley - March 17, 2010
  • New Healthcare IT Landscape and Related Security Needs
    Alessandro Tatti - March 17, 2010
  • Fraudsters Running a Classified Ad Campaign
    Mathew Maniyara - March 16, 2010
  • Mass Phishing of Retail Electronic Payment Brands
    Mathew Maniyara - March 15, 2010

Blog Tags

10.x 11.x 9.x and Earlier Antivirus2010 Backdoor.Tidserv Brightmail Gateway Emerging Threats Endpoint Encryption Endpoint Protection (AntiVirus) Endpoint Protection Small Business Enterprise Security Manager Evolution of Security General Symantec IT Healthcare Landscape IT Risk Management Internet Security Threat Report Live PC Care Malicious Code Misleading Applications Mobile & Wireless Online Fraud Password Management Restore Security Security Risks Spam Sykipot SymbOS.Exy Symbian Trojan.FakeAV Trojan.Zbot VirusDoctor Vulnerabilities & Exploits Windows Zeus
© 2010
  • Symantec Corporation
  • Contact Us
  • Get RSS
  • Privacy Policy
  • Symantec.com