Comments on: Veracode’s TXSBBspy Spyware Proof-of-Concept for BlackBerry

By: alicedebrax

alicedebrax — Fri, 27 Aug 2010 13:47:26 +0000

I had avast antivirus but uninstalled it (had it for approximately 3 - 4 years) because it kept on prompting me to reboot even after just logging on to the internet. Their latest version is 4.8. I got sick of the popup messages so I went looking for another antivirus program which is just as good as avast. I did a search on the internet and I came across Comodo antivirus and it's free. It also has Comodo Internet Security (which is also free) and I also use Comodo Antispam which I would recommend to anybody looking for such a program. I don't have any spyware removal software as yet, so can anybody recommend a good one? I am very security conscious.
_________________________________
spyware removers

By: Latest spyware news – BlackBerry Buzz: Spyware Alert – jkOnTheRun

Latest spyware news – BlackBerry Buzz: Spyware Alert – jkOnTheRun — Mon, 22 Feb 2010 03:58:18 +0000

[...] Veracode’s TXSBBspy Spyware Proof-of-Concept for BlackBerry … [...]

By: squished18

squished18 — Wed, 17 Feb 2010 19:24:06 +0000

@DurDurDur: Any reply?

By: squished18

squished18 — Wed, 17 Feb 2010 14:24:06 +0000

@DurDurDur: Any reply?

By: squished18

squished18 — Wed, 17 Feb 2010 14:24:00 +0000

@DurDurDur: Any reply?

By: Spyware – American Opinion – American Reporter « Spyware

Spyware – American Opinion – American Reporter « Spyware — Mon, 15 Feb 2010 11:22:24 +0000

[...] Veracode’s TXSBBspy Spyware Proof-of-Concept for BlackBerry – BLACKBERRYCOOLTyler Shields, senior researcher at Veracode Research Lab developed a proof-of-concept spyware package that demonstrates how simple it is to retrieve private data from a BlackBerry. The above video demonstrates the spyware package, which he calls [...]

By: Spyware – Veracode’s TXSBBspy Spyware Proof-of-Concept for BlackBerry – BLACKBERRYCOOL « Spyware

Sun, 14 Feb 2010 12:22:37 +0000

By: BlackBerry Cool Roundup for the Week of February 8th | BlackBerry Cool

BlackBerry Cool Roundup for the Week of February 8th | BlackBerry Cool — Fri, 12 Feb 2010 20:30:49 +0000

[...] 10 Smartphones But Growth Rate Looms Official BlackBerry Bold 9000 OS 5.0.0.464 From Zain Kuwait Veracode’s TXSBBspy Spyware Proof-of-Concept for BlackBerry Google Working on Mobile Babel Fish Universal Translator BlackBerry OS 5.0.1.205 Caught on Camera [...]

By: squished18

squished18 — Wed, 10 Feb 2010 14:59:08 +0000

@DurDUrDur - With the small amount of BB development that I've done, I have not encountered any APIs that could accomplish what the VeraCode's program did without obtaining trusted access. Perhaps you would care to share what APIs you would use to accomplish this without obtaining trusted access?

Obtaining a $20 developer key requires a valid mailing address. That's a pretty good start when someone wants to track you down for creating malware. So getting away with it once or twice might be feasible, but doing it repeatedly would be a pretty significant challenge for most people, myself included.

By: squished18

squished18 — Wed, 10 Feb 2010 14:59:00 +0000

@DurDUrDur – With the small amount of BB development that I've done, I have not encountered any APIs that could accomplish what the VeraCode's program did without obtaining trusted access. Perhaps you would care to share what APIs you would use to accomplish this without obtaining trusted access?Obtaining a $20 developer key requires a valid mailing address. That's a pretty good start when someone wants to track you down for creating malware. So getting away with it once or twice might be feasible, but doing it repeatedly would be a pretty significant challenge for most people, myself included.

By: Spyware – ID Watchdog Secures Partnership with STOPzilla DENVER – dBusinessNews.com « Spyware

Wed, 10 Feb 2010 06:47:10 +0000

By: Spyware – The Latest BlackBerry Spyware Scare: Don’t Worry, Yet – IDG NEWS « Spyware

Wed, 10 Feb 2010 06:46:26 +0000

By: Spyware – What to rid PC of spyware/adaware etc – neowin.net « Spyware

Wed, 10 Feb 2010 06:45:58 +0000

By: DurDurDur

DurDurDur — Tue, 09 Feb 2010 22:23:25 +0000

Polaris, the OS gives apps access to plenty of information by default without requiring trusted access. Read the slide deck before spouting nonsense. Squished, there are plenty of ways to obtain a $20 developer key without exposing yoru identity.

By: DurDurDur

DurDurDur — Tue, 09 Feb 2010 22:23:00 +0000

By: DurDurDur

DurDurDur — Tue, 09 Feb 2010 22:23:00 +0000

By: squished18

squished18 — Tue, 09 Feb 2010 21:39:59 +0000

RIM also requires developers sign their code with a electronic key. In order to obtain a key, you need to register with RIM. So if someone develops malicious code, they are traceable. This certainly can't be said for your average Windows spyware.

So including the barriers that previous posters have mentioned, the security model is actually very good and quite tight.

By: squished18

squished18 — Tue, 09 Feb 2010 21:39:00 +0000

RIM also requires developers sign their code with a electronic key. In order to obtain a key, you need to register with RIM. So if someone develops malicious code, they are traceable. This certainly can't be said for your average Windows spyware.So including the barriers that previous posters have mentioned, the security model is actually very good and quite tight.

By: Polaris125

Polaris125 — Tue, 09 Feb 2010 19:52:09 +0000

"Most consumers aren't aware of the range of information that can be accessed by BlackBerry applications, particularly those granted **trusted application** status by the user".

See now...there's the catch right? The user has to be dumb enough to install the app AND grant it trusted application status. If the user is on a BES, their administrator can easily block the users ability to even do this.

Don't waste our time.

By: Polaris125

Polaris125 — Tue, 09 Feb 2010 19:52:00 +0000

“Most consumers aren't aware of the range of information that can be accessed by BlackBerry applications, particularly those granted **trusted application** status by the user”.See now…there's the catch right? The user has to be dumb enough to install the app AND grant it trusted application status. If the user is on a BES, their administrator can easily block the users ability to even do this.Don't waste our time.