• Your favorite








    , and
  • Dutch Jailbroken iPhones "Gehackt"

    A Dutch hacker gained access to a number of jailbroken iPhones that were running ssh with root passwords set to default, and demanded €5 to restore them. He's since returned the money, but the incident highlights a common security issue with jailbroken phones.

    It seems likely that the hacker portscanned for ssh on the T-mobile Netherlands network in order to find jailbroken iPhones with SSH running. He then changed their wallpaper to a graphic that mimics an SMS message, reading: "Your iPhone's been hacked because it's really insecure! Please visit doiop.com/iHacked and secure your iPhone right now! Right now, I can access all your files." The website contains a link to a PayPal account, and users were told to send him €5 for instructions on how to regain access to their phones. He also left the following message:
    "If you don't pay, it's fine by me. But remember, the way I got access to your iPhone can be used by thousands of others—they can send text messages from your number (like I did), use it to call or record your calls, and actually whatever they want, even use it for their hacking activities! I can assure you, I have no intention of harming you or whatever, but, some hackers do! It's just my advice to secure your phone."
    He subsequently apologized for asking for the money, and posted the restore instructions on his website.

    The exploit is not a complicated one, and a commenter to Ars Technica noted that security researchers have done it in the past, and downloaded users' SMS databases as a "proof of concept" that the security hole exists. A Netherlands-based commenter on tweakers.net provided this pithy explanation that will probably be understandable even by readers who speak no Dutch.

    A concern that I have involves problems users have noted after changing their root passwords using the passwd utility, as the Dutch hacker directs his "victims" to do. Users have reported that after changing the password using that method and rebooting, an "Edit home screen" message appears and Springboard crashes, entering a loop and rendering the device unusable. The phone then has to be restored.

    Has anyone had success with changing passwords using passwd... and if not, did the reported workaround solve the issue?

    image via tweakers.net
    This article was originally published in forum thread: Dutch Jailbroken iPhones "Gehackt" started by Paul Daniel Ash View original post
    Comments 80 Comments
    1. b3nny's Avatar
      b3nny -
      so do we need to change our passwords? or can we just turn off ssh? seems like anyone with sbsettings (everyone) has an easy solution for this. turn it the hell off when you're not using it... am i right?
    1. gothi's Avatar
      gothi -
      Quote Originally Posted by pauldanielash View Post

      Has anyone had success with changing passwords using passwd... and if not, did the reported workaround solve the issue?

      image via tweakers.net
      That information is almost 2 years old! Please, check the dates on articles!

      The passwd utility installed with Installer on 1.X firmware was broken. Saurik released Cydia and included a working version and it's not been an issue for well over a year, it died out in the 2.X firmwares as Cydia became the defacto standard.
    1. howlett15's Avatar
      howlett15 -
      Ironic... I just changed my password last night. After 2 years of putting it off, its obvious that this should be a priority, after you jailbreak before you download winterboard or a theme CHANGE YOUR SSH PASSWORD!!
      It is really easy to change the password, im sure there are guides on here but if not, google it, or bing it, or yahoo! It
      just get it done, doesnt take but a couple minutes.

      This kind of stuff is why apple will always have an excellent argument for making jailbreaking illegal. Way to go dutch guy, tryin to ruin it for the rest of us.
    1. vish4488's Avatar
      vish4488 -
      Quote Originally Posted by xwinger View Post
      I'll turn off ssh now
      Thats exactly what i do. I keep it off all the time and only turn it on when i need to access my iphone.
    1. gthugballin's Avatar
      gthugballin -
      I know what he did looks bad, but at least he didn't steal anyones information or ruin someones iPhones you know. Isn't there something you can delete that makes it so your phone won't talk to your computer...thus rendering it useless for a restore?

      "com.apple.usbptpd.plist - Allows your device to connect to your computer and charge." (jdys_1991)

      Speed Up Your iPhone/iPod by Removing Launch Daemons

      couldn't he have deleted that

      (btw i don't think he should have charged, but i think he refunded so yeah no harm no foul)
    1. The Maestro's Avatar
      The Maestro -
      If I saw that on my phone I would bug the **** out, I might have to buy another iPhone just cause he took it's inocence

      o ya I haven't sshed in a why but isn't it alpine not apline
    1. gthugballin's Avatar
      gthugballin -
      @The Maestro

      LOL I love your quote about the right speaker....to bad i thought mine wasn't working when i first got an iphone
    1. s4mb4's Avatar
      s4mb4 -
      btw, running open ssh on your iPhone with the default password on the AT&T network is perfectly safe. your iphones IP is natted and port 22 is not forwarded. you run a risk of it being accessed when it is on a wifi network though....
    1. tudtran's Avatar
      tudtran -
      Dutch Bag.
    1. reveritt90's Avatar
      reveritt90 -
      just changed the password
    1. JedixJarf's Avatar
      JedixJarf -
      passwd has been working for me for years on my iphones, its the first thing i do once SSH is installed.
    1. Dorkenstein909's Avatar
      Dorkenstein909 -
      MOTHERF***ER!! i dont want my fone hacked!!
    1. dmateljic's Avatar
      dmateljic -
      Hehe, what a stupid topic :-)

      1) SSH doesn't exist on normal iPhone unless YOU INSTALLED IT
      2) If u installed it via iSSH or other program, then you are smart enaf to install SBsettings and disable it after use ( when u don't need it )
      3) SSH will auto start on every iPhone reboot / power ON
      4) Most of Jailbroken iPhone have owner who's aware of danger wich come with default alpine root password
      5) U realy DO NOT NEED SSH ... try wonderfull iPANDA iphone toolkit ( u will have all option u ever need without runing SSH or iTunes )

      Google ipanda or net dragon iphone ... after you install small client "panda daemon" you will have complete access to iphone file system with few click of your mouse !!!

      c ya l8er
    1. legendka7's Avatar
      legendka7 -
      Wow thats crazy. One of the main reasons i always change the default password. I always have it off until i plan on using it on which is only on WiFi.

      But why would you turn OpenSSH on running on Edge or 3G.
    1. Boker's Avatar
      Boker -
      bahh. quick money. yeah, good thing my ssh is always off.
    1. pechon's Avatar
      pechon -
      kill the MF, I have my SSH off just in case.
    1. lkailburn's Avatar
      lkailburn -
      i reset root and mobile passwords on both my 3gs and 3g without problem. i thought about changing the ssh port on the phones aswell. but then just decided to uninstall openSSH completely on both. if i need to ssh in i will just reinstall the package and use it.

    1. CaptainChaos's Avatar
      CaptainChaos -
      No. Do not turn it off. Just change your password. If you turn it off and your phone ends up in an endless reboot loop then you can't SSH into and fix it. You would have to restore.
    1. miatawnt2b's Avatar
      miatawnt2b -
      I've changed the passwords using passwd since 2.0 jailbreak and never had a problem. I login as root and type passwd to change the root then type passwd mobile to change the mobile account. Never had a reboot loop
    1. d_mc_a's Avatar
      d_mc_a -
      This problem has been around for ages. When I first had ssh on my iPhone, one of the first things I did was change the password!! I first noticed it around my college, When I would scan the local range, I always found a couple of ssh'able iphones with default passwords. A quick port scan of 62078 and 22 of my provider's(O2 Ireland) IP range's shows ALOT of insecure iPhones. It's crazy that my provider doesn't secure access to these ports but it is also some benefit's to those of us that like to take advantage of.

      I did the more noble thing and wrote a service on a server of mine there that scans for these insecure iphones drops a webclip onto there dashboard with a link to how to change the ssh password.