SymbOS.Commwarrior.A

SymbOS.Commwarrior.A is a worm that replicates on Series 60 phones. It attempts to spread using Multimedia Messaging Service (MMS) and Bluetooth as a randomly named .sis file. If it is the first hour of the 14th of any month, the threat resets the device.



Symantec recommends the following to protect against this threat:

• If Bluetooth is not required, it should be turned off.
• If you require the use of Bluetooth, ensure that the device's visibility setting is set to "Hidden" so that it can not be scanned by other Bluetooth devices.
• Avoid use of device pairing. If it must be used, ensure that all paired devices are set to "Unauthorized". This requires each connection request to be authorized by the user.
• Do not accept unsigned applications (no digital signature) or applications sent from unknown sources. Be absolutely sure of the origin of the application before accepting it.

Symantec offers a security solution for Symbian known as Symantec Client Security for Nokia Communicators. This product can be downloaded via the Nokia 9500/9300 web browser or from a PC. Symantec will never send unsolicited messages regarding one of our products. For additional information please see http://www.symantec.com/smallbiz/nok.

Protection

• Initial Rapid Release version March 8, 2005
• Latest Rapid Release version August 20, 2008 revision 017
• Initial Daily Certified version March 8, 2005
• Latest Daily Certified version August 20, 2008 revision 016
• Initial Weekly Certified release date March 9, 2005

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

• Wild Level: Low
• Number of Infections: 0 - 49
• Number of Sites: 0 - 2
• Geographical Distribution: Low
• Threat Containment: Easy
• Removal: Easy

Damage

• Damage Level: Low

Distribution

• Distribution Level: Medium