Print 47 comment(s) - last by pickymeek.. on Nov 24 at 6:49 PM

Jailbroken iPhone users with SSH and a default password are the target

The iPhone is one of the most popular smartphones on the market. By most accounts, the iPhone is the most likely of all smartphones to be used on the internet to access files on the go. There are also a growing number of iPhone users who are jailbreaking the devices to use unauthorized Apple software or to use the devices on other carrier networks.

Over the last few weeks, a worm targeted specifically at iPhones which are jailbroken and have SSH installed with the default password was found. The original worm was nothing more than an irritation and would change the background image of the iPhone to a picture of washed up pop star Rick Astley. Embarrassing for sure, but hardly what most would consider malicious.

A similar worm targeting jailbroken iPhones with SSH and the default password -- alpine -- is making its rounds in the Netherlands. The new worm is different from the first in that the latest is clearly malicious and has a financial motive behind it for the worm maker. BBC News reports that security firm F-Secure discovered the worm and that it targets users of Dutch online bank ING. The worm infects the iPhone and redirects the user to a fake login page.

Mikko Hypponen from F-Secure told BBC News, "It's the second iPhone worm ever and the first that's clearly malicious - there's a clear financial motive behind it."

At least for now the worm is limited to the Netherlands. However, the security firm points out that the worm could spread to more countries. The number of iPhones thought to be infected numbers only in hundreds. The worm is capable of spreading itself to other vulnerable iPhones that are connected to the same hotspot. A representative from ING told BBC News that it has alerted call center personal and that an official message would be placed on the ING bank website.

Comments     Threshold

This article is over a month old, voting and posting comments is disabled

RE: Wait a cotton pickin minute....
By Chris Peredun on 11/23/2009 9:50:19 AM , Rating: 5
Microsoft patches pirated copies of Windows.

(Critical updates only, but those are the, well, critical ones.)

RE: Wait a cotton pickin minute....
By AshT on 11/23/09, Rating: 0
RE: Wait a cotton pickin minute....
By AshT on 11/23/2009 9:59:12 AM , Rating: 2
On a side note, iFarm is so damn addictive.

RE: Wait a cotton pickin minute....
By stmok on 11/23/2009 10:17:55 AM , Rating: 2
Microsoft can't protect you if you do dumb things like customise your Windows install with nLite/vLite, and use the Administrator account with an easy to guess OR no password on a regular basis.

Read the article carefully folks...

iPhones which are jailbroken and have SSH installed with the default password was found.

SSH and the default password...The password is the root password.

"Root" is equivalent to Windows's "System" privileges. Meaning if you gain control of that account, you have total access to that system.

How To: Change Your iPhone’s Default SSH Password

If you don't use SSH, then disable it.

The situation is no different to people buying home marketed routers/firewalls and not changing the default password.

By nevermore781 on 11/23/2009 2:39:51 PM , Rating: 2
LOL - this whole thing cracks me up. It is indeed the jailbreak/install of ssh through cydia/lack of instructions during jailbreaking that is causing this and not a failure of Apple. If I am installing something, i usually like to know WHY i am installing it and not just following some blog post on how to do it. This is what happens when the hack becomes so easy that even your standard 'user' can f it up.

RE: Wait a cotton pickin minute....
By michael2k on 11/23/2009 10:58:52 AM , Rating: 2
So does Apple, patch jailbroken iPhones.

People just jailbreak them again, reintroducing the vulnerability.

RE: Wait a cotton pickin minute....
By chick0n on 11/23/09, Rating: -1
RE: Wait a cotton pickin minute....
By michael2k on 11/23/2009 12:23:38 PM , Rating: 2
A default root password with SSH is a vulnerability.

Just like an unlocked door is a vulnerability.

By Alexstarfire on 11/23/2009 11:16:02 PM , Rating: 3
If stupidity is a vulnerability then most of the world is screwed.

By SteveIsMyiConArtist on 11/23/2009 7:28:00 PM , Rating: 2
Let this be a lesson to all the nincumpoops who spend a small fortune on iCrap garbage from crApple.
Also, it is obvious who wrote this iPhone Virus/Worm, since certain racist criminal crook$$ are allowed to commit any criminal felony they want to since the law does not apply to certain people.
Keep programming your credit card numbers on your iCrap and giving them to your kids to by iFart iPhone applications from crApple.

"The whole principle [of censorship] is wrong. It's like demanding that grown men live on skim milk because the baby can't have steak." -- Robert Heinlein
Related Articles

Latest Headlines
Inspiron Laptops & 2-in-1 PCs
September 25, 2016, 9:00 AM
The Samsung Galaxy S7
September 14, 2016, 6:00 AM
Apple Watch 2 – Coming September 7th
September 3, 2016, 6:30 AM
Apple says “See you on the 7th.”
September 1, 2016, 6:30 AM

Most Popular ArticlesAre you ready for this ? HyperDrive Aircraft
September 24, 2016, 9:29 AM
Leaked – Samsung S8 is a Dream and a Dream 2
September 25, 2016, 8:00 AM
Yahoo Hacked - Change Your Passwords and Security Info ASAP!
September 23, 2016, 5:45 AM
A is for Apples
September 23, 2016, 5:32 AM
Walmart may get "Robot Shopping Carts?"
September 17, 2016, 6:01 AM

Copyright 2016 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki