Skip to main content

RIM Fixes Blackberry Phishing Vulnerability

Research In Motion (RIM) has come out with a security fix for a reported vulnerability in its BlackBerry smartphone range which apparently left its users susceptible to possible phishing attacks.

RIM has urged it users to immediately apply the fix in order avoid becoming victims of malicious phishing attacks and users can check for updates by visiting RIM’s website.

The reported flaw could be used by a hacker to trick a BlackBerry user to visit a malicious web site by essentially making the device think that the site visited is a trusted one.

Essentially the flaw revolved around the inability of the BlackBerry software to correctly depict null characters which allowed hackers the option of creating sites which had null characters in the site’s certification field and thereby hoodwink the device.

Taking a note of increasing incidents of phishing, RIM has also cautioned its users against clicking on suspicious links in SMS messages and emails as such links can lead them to malicious websites.

Mobile handsets are increasingly targeted by cyber criminals who are attempting to steal critical information stored in them and smartphones are often a preferred target as many people who use such phones store credit card details in them.

Our Comments

Expect more of these vulnerabilities to be uncovered because of the number of competing platforms currently available on the market. Unlike the desktop platform where Windows is the prefered target, the mobile arena is lively with six different environments. Then there's the fact that sales of smartphones are surging significantly.

Related Links

RIM Patches BlackBerry Phishing Flaw

(Information Week)

BlackBerry Update Fixes Phishing Flaw

(PC World)

RIM plugs BlackBerry phishing hole

(Zdnet)

BlackBerry browser bug makes users vulnerable to phishing attacks

(Fiercemobileit.com)

Désiré has been musing and writing about technology during a career spanning four decades. He dabbled in website building and web hosting when DHTML and frames were en vogue and started writing about the impact of technology on society just before the start of the Y2K hysteria at the turn of the last millennium. Following an eight-year stint at ITProPortal.com where he discovered the joys of global tech-fests, Désiré now heads up TechRadar Pro. Previously he was a freelance technology journalist at Incisive Media, Breakthrough Publishing and Vnunet, and Business Magazine. He also launched and hosted the first Tech Radio Show on Radio Plus.