Abstract

“The malware uses legitimate WP8 functionality without resorting to other methods such as ‘homebrew apps’ and interop capabilities,” Gawde said. “The idea behind the app was to code it in such a way that it would be accepted into the marketplace [Windows Phone Store], whilst having hidden functionality.”

Gawde declined to reveal other technical details about the malware ahead of his presentation at MalCon.

ISAC researchers are analyzing possible methods that attackers could use to distribute Windows Phone 8 malware apps in enterprise environments.

“We are currently researching the impact on security of deploying and updating apps in the enterprise through various MDM [mobile device management] products,” Rajshekhar Murthy, director of the National Security Database program and founder of the MalCon conference, said Tuesday via email. “There are possible chances that hackers can still compromise private enterprise app stores and cause significant damage.”

“We would like to further add that based on our malware research internally, we find that Windows Phone 8 is way superior and better than Android in all aspects of security,” Murthy said.

“Microsoft is aware of the upcoming presentation but further details have not been shared with us,” Dave Forstrom, director in the Trustworthy Computing Group at Microsoft, said Tuesday via email. “As always, we will investigate any issues disclosed in the talk, and will take appropriate action to help protect our customers.”