New Zealand security specialist SimWorks has identified a new threat to Symbian smartphone users. The Trojan, METAL Gear.a, encourages users to install it by masquerading as the Symbian version of the popular Metal Gear Solid game. The Trojan is the first malware to target Symbian security software to disable specific anti-virus and file browsing applications.

As with the Skull Trojans identified back in November, the METAL Gear Trojan also installs a version of the Cabir worm identified earlier this year. Unlike the Skulls trojan, however, Cabir/Metal Gear does not seek to spread itself.

Rather, it sends a file called SEXXXY.sis to any Bluetooth-enabled phones in the vicinity. Should a user accept and install the SEXXXY.sis file, the worm disables the Symbian application selection button on the handset.

SimWorks CEO Aaron Davidson commented, “The METAL Gear trojan is yet another example of the increasing sophistication of developers of malware for the Symbian platform. The METAL Gear trojan uses the same icon disabling technique pioneered by the recent Skulls trojan.

He went on to say that once METAL Gear.a and SEXXXY.sis are installed, it would be difficult to repair the affected phone. For example, METAL Gear.a effectively disables all of the tools on the handset you would use to undo the damage.

We recommend all handheld users follow some basic guidelines to keep their devices and, more importantly, the data they hold safe. These guidelines can be found in the articles listed bellow.

--Top 10 Items You Shouldn't Allow on Employee Unprotected PDAs (and what do about it)

--Handheld Security: Part IV – The Mobile VPN

--Handheld Security: Part III – Evaluating Security Products

--Handheld Security: Part II - Understand Vulnerabilities

--Handheld Security: Part I - Learn the Basics