Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.
11-04-2009, 10:05 AM #1
Dutch Jailbroken iPhones "Gehackt"
A Dutch hacker gained access to a number of jailbroken iPhones that were running ssh with root passwords set to default, and demanded €5 to restore them. He's since returned the money, but the incident highlights a common security issue with jailbroken phones.
It seems likely that the hacker portscanned for ssh on the T-mobile Netherlands network in order to find jailbroken iPhones with SSH running. He then changed their wallpaper to a graphic that mimics an SMS message, reading: "Your iPhone's been hacked because it's really insecure! Please visit doiop.com/iHacked and secure your iPhone right now! Right now, I can access all your files." The website contains a link to a PayPal account, and users were told to send him €5 for instructions on how to regain access to their phones. He also left the following message:
"If you don't pay, it's fine by me. But remember, the way I got access to your iPhone can be used by thousands of others—they can send text messages from your number (like I did), use it to call or record your calls, and actually whatever they want, even use it for their hacking activities! I can assure you, I have no intention of harming you or whatever, but, some hackers do! It's just my advice to secure your phone."
The exploit is not a complicated one, and a commenter to Ars Technica noted that security researchers have done it in the past, and downloaded users' SMS databases as a "proof of concept" that the security hole exists. A Netherlands-based commenter on tweakers.net provided this pithy explanation that will probably be understandable even by readers who speak no Dutch.
A concern that I have involves problems users have noted after changing their root passwords using the passwd utility, as the Dutch hacker directs his "victims" to do. Users have reported that after changing the password using that method and rebooting, an "Edit home screen" message appears and Springboard crashes, entering a loop and rendering the device unusable. The phone then has to be restored.
Has anyone had success with changing passwords using passwd... and if not, did the reported workaround solve the issue?
image via tweakers.net
Last edited by Paul Daniel Ash; 11-04-2009 at 10:09 AM.
11-04-2009, 10:13 AM #2
11-04-2009, 10:15 AM #3
what!!!! Now My S*** Can Get Hacked F***!!!!!!
11-04-2009, 10:20 AM #4
Well I am changing my password today, just to be sure no one is going to hack into my iPhone
Last edited by petterloco1; 11-04-2009 at 10:24 AM.
11-04-2009, 10:22 AM #5
This isn't hacking. This is just using SSH over EDGE. And being a ****.
11-04-2009, 10:30 AM #6
I guess he is a hardcore apple fanboy? Well I'm a mild fanboy but this is crazy.
11-04-2009, 10:36 AM #7lol
How dum you got to be to pay him lol...
Restore? Change the "APLINE" ...
I doubt any 1 has actualy fallen for this crap cause if you jailbroken your phone than i doubt your a dum ***..No Spam - ajl917
11-04-2009, 10:36 AM #8
How do you change your ssh password? sorry me noob. lol
11-04-2009, 10:37 AM #9
It was a **** move to ask for money, but it's good that he returned it. Provided that this leads to more awareness of ssh security, no harm no foul.
11-04-2009, 10:40 AM #10
haha kinda funny actually for people to fall for this...good hole he showed though making people realize to either change their pw or TURN OFF SSH if ur not using it...simple
11-04-2009, 10:42 AM #11
ssh [email protected] (or whatever your IP address is)
You will now be prompted to enter a new password. You will then be prompted to enter the password again. Your root password is now changed. Remember this when you log in using Fugu or Terminal again. If you forget your password, then you will have to restore the iPhone.
Now enter the following:
You will now be prompted to enter a new password. You will then be prompted to enter the password again. Your mobile password is now changed.
11-04-2009, 10:56 AM #12
I'll turn off ssh nowI am not a jailbreak n00bI like to drink iPhoneahol...Circa 2008
11-04-2009, 11:02 AM #13
Thats just wrong . This guy looks like he was actually trying to extort money and then realized his mistake . What a ****** .
11-04-2009, 11:03 AM #14
1 Question, Cant you just turn SSH off and they cant get into your phone, or do you still have to change the password?
-if you do have to change the password, how do I go about doing this without getting the little Springboard error messages??
11-04-2009, 11:08 AM #15
I had never changed my ssh password but i've always kept it off. I never turn it on because i know someone else could use it..so i was secure in that method. But to be safe one should always change the password and never leave ssh open unless you're planning to use it.
The Following User Says Thank You to hollow0 For This Useful Post:
11-04-2009, 11:09 AM #16
- Join Date
- Mar 2008
- VTE, Laos
- Thanked 4 Times in 1 Post
the easy way to change the root password is
install mobile terminal fro Cydia
after finish install please home button to go back to Home screen
look for mobile terminal then open
type "su" (without quote)
then password "alpine" (without quote)
now you are logging as root
type "passwd" (without quote)
type your new password
retype your new password
after the instruction try to log in then enter password "alpine"
the system will deny it.
hope it help.
Greeting from Laos
11-04-2009, 11:21 AM #17
I dont know. This dude is freaking me out. I cant imagine he going through my pictures but hey, I dont use SSH. So I have nothing to worry?
11-04-2009, 11:27 AM #18
thats classic, I would just turn it off. Also I hope just having it off makes it less likely to happen.
11-04-2009, 11:31 AM #19
Thats incredible and why I'm going to ATT when my tmobile contract is up. I am still restricted with unlocked iphone, so I can't remember to turn ssh off everytime a new firmware update comes out or if i have to restore custom ipsw. I ain't saying att is no better but I can't remeber to do all this stuff plus I forget all the themes and cool apps that get erased in the restore process. Guess I am getting older mid-life crisis?
Last edited by mikerlx; 11-04-2009 at 11:38 AM.
11-04-2009, 11:38 AM #20
Because it is hard to change your SSH password. Those that got hacked deserve it....------------------------------------------------------------------------------------------------------------------------------------------------------------------
I once prayed to God for an iPhone, but quickly found out He didn't work that way...so I stole an iPhone and prayed for His forgiveness.
A dog is the only thing on earth that loves you more than you love yourself. - Josh Billings