McAfee warns of 'SMiShing' attacks

In newly-named type of attack, text messages contain links to sites that download a Trojan horse

Cell phone users should watch out for text messages containing a Web site link which, when visited, could download a Trojan horse, security experts have warned.

In a blog posting Friday, McAfee Inc. dubbed the new development "SMiShing," referring to a phishing attack sent via SMS (Short Message Service).

Some cell phone users have started receiving an SMS that reads: "We're confirming you've signed up for our dating service. You will be charged $2/day unless you cancel your order," David Rayhawk wrote in the McAfee Avert Labs blog.

The message includes a URL which, if clicked on, downloads a Trojan horse that could allow a Web-enabled phone to be controlled by hackers.

SMiShing is another example of how hackers are injecting cell phones and other mobile devices with malware and viruses which could penetrate enterprise networks, according to Rayhawk.

From CIO: 8 Free Online Courses to Grow Your Tech Skills
Join the discussion
Be the first to comment on this article. Our Commenting Policies