Serious BlackBerry hack attack exposed

Hacking program due to be released next week

Robert Jaques

vnunet.com, 09 Aug 2006

Many enterprises that have issued staff with BlackBerry mobile email devices will be vulnerable to a serious hack attack when security researchers release exploit code, security experts warned today.

According to Secure Computing Corporation, any firm that has deployed a BlackBerry server behind its gateway could fall foul to the hacking code that is due to be published by IT security specialist Jesse D'Aguanno next week.

Advertisement

The soon-to-be-released hacking program, called BBProxy, can be installed on a BlackBerry or sent as an email attachment to an unsuspecting user. Once installed, BBProxy opens a back channel bypassing the organisation's gateway security mechanisms between the hacker and the inside of the victim's network, Secure Computing stated.

Since the communications channel between the BlackBerry server and handheld device is encrypted and cannot be properly inspected by typical security products, a tunnel is most often opened by the administrator to allow the encrypted communications channel to the BlackBerry server inside the organisation's network. A malicious person could potentially use this back channel to move around inside an organisation unabated and remove confidential information undetected or use the back channel to install malware on the network.

Paul Henry, vice president of Strategic Accounts for Secure Computing, warned that servers connecting to the public internet have an inherent risk: " Isolating these internet-facing servers reduces the risk of a compromised server providing access to other critical servers. Hence due diligence would require that any internet-facing server like a BlackBerry server should be isolated on its own demilitarised zone segment," said Henry.

He also advised enterprises to ensure that their mail servers working with the BlackBerry server are also an internet-facing server and should also be isolated on their own separate DMZ.

Additional protection can be achieved by preventing internal users from opening arbitrary connections to either the BlackBerry server or mail server.

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Have your say on this article

Further reading

Related whitepapers

Related jobs

Most watched

iPhone

Video Review: iPhone 3GS

We put Apple's latest iPhone through its paces

Xperia X1

Video Review: Sony Ericsson Xperia X1

First Looks Editor Ian Williams gets hands on with the Sony Ericsson Xperia X1

More video

IT white papers

Search white papers

Top categories

Poll

Poll: Summer smartphones

Poll: Summer smartphones

Which smartphone will you be taking to the beach this summer?

View poll results

Advertisement

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

  • More available - 'submit' to view

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

More IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Spotlight

a padlock

Microsoft to plug security holes

Microsoft has given advance warning of a number of security...

Nokia handset

Top 10 articles, 10 July 09

No Nokia Android phone, ActiveX attacks and Google enters into...

Can Google beat Microsoft at its own game?

Google's announcement this week that it plans to step into...

iPhone

Video Review: iPhone 3GS

We put Apple's latest iPhone through its paces

Primary Navigation