It’s only a proof of concept for now, but Symantec’s Security Response site is listing the first worm for Nokia Series 60 phones, called EPOC.Cabir. The worm transmits itself over open Bluetooth connections to other phones, copying itself over where it continues to search for other Bluetooth-enabled devices — after copying itself to another, hidden directory from where it executes, meaning even deleting the trojan .SIS file and rebooting won’t stop the worm from replicating.
Since EPOC.Cabir is proof of concept alone for now, there is no payload (like deleting all your contacts or something), besides the diminished battery life of a phone always actively searching and copying over Bluetooth. Don’t get too worried, for now, but make sure you have disabled Bluetooth when not in use and never accept Bluetooth connections from unknown sources or open/execute files from unknown sources — you know, all the basic network safety tips you should know from when we all collectively saved the internet from Outlook viruses.
