Stealthy video capturer: a new video-based spyware in 3G smartphones

Authors:
Nan Xu;Fan Zhang;Yisha Luo;Weijia Jia;Dong Xuan;Jin Teng
Affiliations:
City University of Hong Kong, Hong Kong, Hong Kong;Huazhong University of Sci. & Tech. & City University of Hong Kong, Wuhan & Hong Kong, China;City University of Hong Kong, Hong Kong, Hong Kong;City University of Hong Kong, Hong Kong, Hong Kong;The Ohio State University, Columbus, OH, USA;City University of Hong Kong, Hong Kong, Hong Kong
Venue:
Proceedings of the second ACM conference on Wireless network security
Year:
2009

Citing 14
Cited 10

Mobile Phones as Computing Devices: The Viruses are Coming!

IEEE Pervasive Computing
Mitigating attacks on open functionality in SMS-capable cellular networks

Proceedings of the 12th annual international conference on Mobile computing and networking
Vulnerability Analysis of MMS User Agents

ACSAC '06 Proceedings of the 22nd Annual Computer Security Applications Conference
PolyUnpack: Automating the Hidden-Code Extraction of Unpack-Executing Malware

ACSAC '06 Proceedings of the 22nd Annual Computer Security Applications Conference
MobiUS: enable together-viewing video experience across two mobile devices

Proceedings of the 5th international conference on Mobile systems, applications and services
SmartSiren: virus detection and alert for smartphones

Proceedings of the 5th international conference on Mobile systems, applications and services
Can you infect me now?: malware propagation in mobile phone networks

Proceedings of the 2007 ACM workshop on Recurring malcode
BotHunter: detecting malware infection through IDS-driven dialog correlation

SS'07 Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium
Is It Finally Time to Worry about Mobile Malware?

Computer
Behavioral detection of malware on mobile handsets

Proceedings of the 6th international conference on Mobile systems, applications, and services
Detecting energy-greedy anomalies and mobile malware variants

Proceedings of the 6th international conference on Mobile systems, applications, and services
Ether: malware analysis via hardware virtualization extensions

Proceedings of the 15th ACM conference on Computer and communications security
McBoost: Boosting Scalability in Malware Collection and Analysis Using Statistical Classification of Executables

ACSAC '08 Proceedings of the 2008 Annual Computer Security Applications Conference
Using labeling to prevent cross-service attacks against smart phones

DIMVA'06 Proceedings of the Third international conference on Detection of Intrusions and Malware & Vulnerability Assessment

Defending against sensor-sniffing attacks on mobile phones

Proceedings of the 1st ACM workshop on Networking, systems, and applications for mobile handhelds
Exploiting smart-phone USB connectivity for fun and profit

Proceedings of the 26th Annual Computer Security Applications Conference
Towards permission-based attestation for the Android platform

TRUST'11 Proceedings of the 4th international conference on Trust and trustworthy computing
A specification based intrusion detection framework for mobile phones

ACNS'11 Proceedings of the 9th international conference on Applied cryptography and network security
TouchLogger: inferring keystrokes on touch screen from smartphone motion

HotSec'11 Proceedings of the 6th USENIX conference on Hot topics in security
Automated remote repair for mobile malware

Proceedings of the 27th Annual Computer Security Applications Conference
ACCessory: password inference using accelerometers on smartphones

Proceedings of the Twelfth Workshop on Mobile Computing Systems & Applications
TapLogger: inferring user inputs on smartphone touchscreens using on-board motion sensors

Proceedings of the fifth ACM conference on Security and Privacy in Wireless and Mobile Networks
On the practicality of motion based keystroke inference attack

TRUST'12 Proceedings of the 5th international conference on Trust and Trustworthy Computing
Practicality of accelerometer side channels on smartphones

Proceedings of the 28th Annual Computer Security Applications Conference

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we investigate video-based vulnerabilities in 3G Smartphones. Particularly, we design a new video-based spyware, called Stealthy Video Capturer (SVC). SVC can secretly record video information for the third party, greatly compromising Smartphone users' privacy. We implement the spyware and conduct extensive experiments on real world 3G Smartphones. Our experimental results show that the spyware can capture private video information with unremarkable power consumption, CPU and memory occupancy, hence being stealthy to Smartphone users. Moreover, SVC can naturally be resistant to almost all commercial anti-virus tools, like McAfee, Kaspersky and F-Secure mobile version. To the best of our knowledge, our work is the first one to address video-based vulnerabilities in 3G Smartphones. We expect our work will prompt serious attentions on this issue.