Pocket PC’s Backdoor

Symantec say they’ve found the first Windows CE (PocketPC) backdoor Trojan, which they’re calling Backdoor.Bardor.A: “Once installed, the backdoor allows full control of the handheld system when it is restarted. When the infected handheld is connected to the Internet, the backdoor sends the attacker the IP address of the handheld device. It then opens port 44299 and waits for further instructions from the attacker.”

There are some limits: The backdoor only affects Pocket PC devices with ARM CPUs.

This follows the discovery of the first PocketPC virus, Duts, last month.