View Single Post
Old 07-20-2006, 06:31 AM   #3 (permalink)
CrackBerry Addict
JerryD's Avatar
Join Date: Oct 2005
Location: Brooklyn, NY
Model: 9000
Carrier: AT&T
Posts: 877
Post Thanks: 0
Thanked 0 Times in 0 Posts

Originally Posted by NJBlackBerry
Virus activity: no know BlackBerry viruses to date.
Phishing:that's social engineering. If you are dumb enough to fall for a Nigeria scam, the BB won't help you
Corporate Hacking: Password protect your BB. Don't lose it. No hacking.

The BlackBerry itself is very safe. It the user who normally has the problem...

The BlackBerry is not a PC. It doesn't run Windows.
I wouldn't call Phishing JUST a social engineering issue, although it's debatable.

(IMHO) There are three types of Phishing - email and URL.

The first type is the kind you refer to where someone says they need your help and they'll pay you handsomely for your assistance. Now THAT's PURE Social Engineering. There's no electronic deception going on here and it only plays on people's greed or a few unfortunate good hearted but unknowing souls!

The other type of email phishing is when the FROM address has what appears to be a valid domain name like, but the reply to address is something completely different like, but when you hit Reply, the same display name comes up as the from display name. This can be thwarted on a BlackBerry by using the Show Address command. Of course you have to be suspicious that the email is bogus and/or very cautious to check, so yes it can also be a social engineering issue.

The second type of Phishing is when the display name of a link on a Web page says "My Bank", but really goes to some bad guy's web site. In IE, the link is displayed in the status bar, but without the proper patching even this can be faked. I honestly don't know if, when you have a link selected, the URL displayed can be faked, but somehow I doubt it given BlackBerry's obsession with security.