+ Reply
Page 1 of 4 123 ... LastLast
Results 1 to 20 of 66

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: Malware Allows Access to Jailbroken iPhones

is a discussion within the

iPhone News

forums, a part of the

General iPhone

section;
...
  1. #1
    MMi Staff Writer Paul Daniel Ash's Avatar
    Join Date
    Aug 2009
    Location
    Union Square, Somerville, Mass.
    Posts
    919
    Thanks
    6
    Thanked 995 Times in 401 Posts

    Default Malware Allows Access to Jailbroken iPhones


    Well, we all knew this was coming.

    The Macintosh security firm Intego reports that they have identified malware that will allow hackers to access data on jailbroken iPhones running OpenSSH with the default root password 'alpine.' Unjailbroken iPhones, devices not running sshd, and devices with unique root passwords are not vulnerable to this exploit. Though Intego currently categorizes the risk of the malware as "low," users should act to secure their phones.

    The tool - which Intego identifies as "iPhone/Privacy.A" - works by being installed onto a "Mac, PC, Unix or Linux" computer - or another iPhone - and then scanning the computer's network to find ssh services.

    This hacker tool could easily be installed, for example, on a computer on display in a retail store, which could then scan all iPhones that pass within the reach of its network. Or, a hacker could sit in an Internet café and let his computer scan all iPhones that come within the range of the wifi network in search of data. Hackers could even install this tool on their own iPhones, and use it to scan for jailbroken phones as they go about their daily business.
    When a vulnerable iPhone is found, the hacker can then download all personal data stored on the device: "e-mail, contacts, SMSs, calendars, photos, music files, videos, as well as any data recorded by any iPhone app."

    Intego recommends its own VirusBarrier X5 software to identify and eradicate the software on a Mac, but notes there is no detection tool for other computer platforms, or for the iPhone itself. Users of jailbroken phones should not enable ssh except when needed, and should change their root passwords:
    • install and run "Mobile Terminal"
    • type su root at the shell prompt and tap enter
    • type passwd and tap enter
    • enter alpine for your old password
    • enter new password
    • enter new password again to confirm

    image via Intego
    Last edited by Paul Daniel Ash; 11-11-2009 at 02:22 PM. Reason: h/t jedized and TooSlo for corrections to password commands

  2. The Following 9 Users Say Thank You to Paul Daniel Ash For This Useful Post:

    amybest222 (11-11-2009), CaryDude (11-11-2009), grantskier (11-11-2009), jailbait28 (11-11-2009), johndoe25 (11-11-2009), LEVMAN (11-11-2009), lonewolf045 (12-02-2009), MJedi (11-11-2009), MuseFan288 (11-11-2009)

  3. #2
    iPhoneaholic
    Join Date
    Feb 2008
    Location
    Miami, FL
    Posts
    403
    Thanks
    2
    Thanked 47 Times in 29 Posts

    as soon as the news came up with the "virus" from that guy changing the background and demanding paypal money, I knew someone was gonna come out with something like this... good think I never run OpenSSH

  4. #3
    iPhoneaholic nighthawk283's Avatar
    Join Date
    Jun 2008
    Location
    Close then you know
    Posts
    366
    Thanks
    5
    Thanked 17 Times in 15 Posts

    Another one whats up with that wow

  5. #4
    What's Jailbreak?
    Join Date
    Sep 2009
    Location
    Salt Lake City, UT
    Posts
    13
    Thanks
    3
    Thanked 0 Times in 0 Posts

    can i change my password in cyberduck?

  6. #5
    Green Apple amybest222's Avatar
    Join Date
    Jul 2009
    Location
    Bronx, New York, United States
    Posts
    38
    Thanks
    17
    Thanked 0 Times in 0 Posts

    how do i know if im Jailbroken Iphone is open ssh

  7. #6
    What's Jailbreak?
    Join Date
    Dec 2007
    Posts
    24
    Thanks
    2
    Thanked 2 Times in 1 Post
    wow that sucks.. im glad i did changed password since the first gen iphone to 3Gs. i usually use openssh to mod my iphone with winscp and all that. just change the password and u will be fine. i hope so have a nice day

  8. #7
    Super Duper Moderator blkcadi's Avatar
    Join Date
    Aug 2008
    Location
     Valley of the Sun, ARIZONA ♥♥♥
    Posts
    30,731
    Thanks
    3,778
    Thanked 9,728 Times in 5,974 Posts

    ^if you installed it, it is there. If not your fine.

  9. #8
    iPhoneaholic
    Join Date
    Feb 2008
    Location
    Miami, FL
    Posts
    403
    Thanks
    2
    Thanked 47 Times in 29 Posts

    Quote Originally Posted by amybest222 View Post
    how do i know if im Jailbroken Iphone is open ssh
    by default, its not.. so if you don't know what it is or never used it, you have nothing to worry about cuz its not running

  10. #9
    iPhone? More like MyPhone bbillh77's Avatar
    Join Date
    Feb 2009
    Location
    Kansas
    Posts
    129
    Thanks
    39
    Thanked 8 Times in 8 Posts

    who leaves a default password anyway

  11. #10
    What's Jailbreak?
    Join Date
    Jul 2009
    Posts
    20
    Thanks
    3
    Thanked 0 Times in 0 Posts

    I think i've been breached...I can't change the password it won't let me type in alpine

  12. #11
    iPhone? More like MyPhone
    Join Date
    Nov 2007
    Posts
    147
    Thanks
    35
    Thanked 2 Times in 2 Posts

    I think Apple's hacking us so that they can get less jailbreakers, lol.

  13. #12
    What's Jailbreak?
    Join Date
    Mar 2009
    Location
    Florida, USA
    Posts
    3
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Please revise your steps to change the password using mobile terminal. They are wrong. That will
    only change the
    password for user 'mobile' and still leave the hacker access to the user 'root' giving them full control of the device STILL.

  14. #13
    What's Jailbreak?
    Join Date
    Oct 2009
    Posts
    14
    Thanks
    7
    Thanked 0 Times in 0 Posts

    im a hardcore idiot when it comes to this ...how do i go about changing my password in winSCP?

  15. #14
    iPhone? More like MyPhone wgm214's Avatar
    Join Date
    Aug 2008
    Posts
    286
    Thanks
    20
    Thanked 11 Times in 10 Posts

    openshh is not even a dependency for any packages, I don't understand why so many newbies hve it installed. if you have no idea how to use it, uninstall it. if you do actually use it, you have three options. You can either consider an alternative, like USB-file transfer with diskaid or netalk which will work for mac. if you do like the ability to do over the air transfer then either change your shh password with mobileterminal or disable shh via sbsettings. if you dot have openshh installed, don't worry about getting a "virus." charlie miller may be an ultimate hacker, but some of things he says are just plan excagerated.
    Wanna-be coder/iphone user since '08

  16. #15
    iPhoneaholic
    Join Date
    Jul 2009
    Location
    Bellevue, WA
    Posts
    438
    Thanks
    43
    Thanked 46 Times in 41 Posts

    Quote Originally Posted by jedized View Post
    Please revise your steps to change the password using mobile terminal. They are wrong. That will
    only change the
    password for user 'mobile' and still leave the hacker access to the user 'root' giving them full control of the device STILL.
    That's why you log in using SU.

    Now, I might be a little rusty since it's been a while.

    Open Terminal and type in "su"

    This should prompt you to use your credentials to log in.

    Follow the steps below while still having SU privileges and it SHOULD change that password.

    At least that's how I've been doing it when playing around on my HTC, and if I recall, the commands are spot on with the iPhones.

  17. #16
    The Basketball Guru punjabi212's Avatar
    Join Date
    Oct 2009
    Location
    NYC
    Posts
    1,062
    Thanks
    75
    Thanked 167 Times in 113 Posts

    I un-installed all SSH stuff I had on my iphone but it still showing up in my SBsettings. Does that mean its still on my phone or its jus there for no reason?

  18. #17
    iPhoneaholic
    Join Date
    Jul 2009
    Location
    Bellevue, WA
    Posts
    438
    Thanks
    43
    Thanked 46 Times in 41 Posts

    Quote Originally Posted by wgm214 View Post
    openshh is not even a dependency for any packages, I don't understand why so many newbies hve it installed. if you have no idea how to use it, uninstall it. if you do actually use it, you have three options. You can either consider an alternative, like USB-file transfer with diskaid or netalk which will work for mac. if you do like the ability to do over the air transfer then either change your shh password with mobileterminal or disable shh via sbsettings. if you dot have openshh installed, don't worry about getting a "virus." charlie miller may be an ultimate hacker, but some of things he says are just plan excagerated.
    Well, it's not exactly true if you are jailbreaking your device on 3.1.2, as you have to SSH to modify the Services.plist if you want to enable USB connectivity to your phone.

    The only way to actually replace that file is.....

    USING SSH!

  19. #18
    Livin the iPhone Life Poseidon79's Avatar
    Join Date
    Jan 2008
    Location
    Austin, TX
    Posts
    8,265
    Thanks
    819
    Thanked 1,681 Times in 1,159 Posts

    Quote Originally Posted by ramsizzle View Post
    im a hardcore idiot when it comes to this ...how do i go about changing my password in winSCP?
    Read the first post at the bottom for instructions. It's done with mobile terminal which is downloaded from Cydia.

  20. #19
    Retired Moderator one1's Avatar
    Join Date
    Sep 2007
    Location
    In my own little world
    Posts
    10,318
    Thanks
    349
    Thanked 1,180 Times in 730 Posts

    Dear Apple,


    You can stop releasing bugs to try and scare people to quit jail breaking. It doesn't work.



    ~The Community.
    Screw #Winning, I'm #Juanning
    iMac 27" i5 quad 2.8Ghz (1TB), MacBook Pro 17" 2.6, iPhone 4s

  21. #20
    What's Jailbreak?
    Join Date
    Oct 2009
    Location
    Philadelphia
    Posts
    16
    Thanks
    1
    Thanked 2 Times in 1 Post
    You can change it even quicker if you have mobileterminal installed, just type in the command "passwd" and you can just change it simply from there.

+ Reply
Page 1 of 4 123 ... LastLast
Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts