News by Michael Oryl on Tuesday June 01, 2010.
|Sponsored links, if any, appear in green.|
It appears that Samsung has accidentally allowed a malware program called slmvsrv.exe onto the 1GB microSD memory card that is shipping with the new bada-powered Samsung S8500 Wave smartphone. This Windows-based application, known as Win32/Heur, appears with an Autorun.inf file in the root of the memory card and will install itself when it is inserted into any Windows PC that has the autorun feature enabled. Autorun is what causes installation CDs to automatically start up once they are inserted and is enabled by default on most Windows computers.
I recently received a S8500 Wave test unit from our contacts in Seoul, and the microSD card was infected. A quick search of the internet for "slmvsrv.exe samsung wave" turns up two postings on German discussion forum sites (Telefon-Treff and Handy-FAQ) that confirm what I have personally seen. It is worth noting that my Wave was made for the German market.
A PC that is infected with the malware will try to copy the program and associated autorun.inf file onto any memory card or USB memory drive that is inserted into the infected computer. The copied files will show the then-current date and time, which indicates that our memory card was infected in the first half of May, before the phone was shipped overseas to us. Anti-virus software such as AVG Free detects the infected file and appears to offer protection from it.
We've informed Samsung of the problem.
Update: Samsung has responded and said that only the initial run of German market Wave phones shipped with infected microSD cards.