A presenter at Kiwicon, a security conference in New Zealand, recently showed how easy it is to set up a Trojan virus on a BlackBerry. Given this involves installing the client-side program in the first place, Graeme Neilson from Aura Software Security makes it sound like a piece of cake.
“But all code that runs on Blackberrys is signed, right? Yes, Neilson says, but the maker of the portable device, Research in Motion (RIM), isn’t too fussy about who it sells certs to. If you want to get your Trojan code signed to run on a Blackberry, just go to the Research In Motion Web-site, plug in your details, pay a fee and voila! You’re in business.”