Page 1 of 3 123 LastLast
Results 1 to 20 of 57

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: Malicious Worm Takes Aim at Jailbroken iPhones

Hybrid View

  1. #1
    MMi Staff Writer Michael Essany's Avatar
    Join Date
    Aug 2009
    Location
    Valparaiso, Indiana
    Posts
    3,779
    Thanks
    17
    Thanked 1,480 Times in 566 Posts

    Default Malicious Worm Takes Aim at Jailbroken iPhones



    There's a new worm on the radar. And, this time, it's a bit more nefarious than anything Rick Astley could have ever imagined himself.

    The worm is the first malicious infestation to hit the iPhone, the first merely displaying a picture of 1980's crooner Rick Astley - although music lovers might claim that was pretty malicious as well.
    According to a boatload of media outlets covering the news today, a second worm to hit the iPhone has been detected by security company F-Secure. And, says TG Daily, for now, the worm has set its sights on people in the Netherlands who use their iPhones for internet banking with Dutch online bank ING Direct.

    In other words, this worm isn't just for "fun." There is an obvious financial motive behind this newly discovered attack.

    The worm attacks jailbroken phones and sneakily redirects bank customers to a cloned, look-alike site prompting one to enter their username and password. Naturally, the bank is now frantically trying to get the word out to customers in a hurried fashion.

    Unfortunately, it isn't yet clear just how many iPhones may be infected. Once thought to be merely in the hundreds, it's now more likely that the number has increased into the thousands. As warned by F-Secure, the aforementioned worm can recruit iPhones to a botnet and skip around among phones currently sharing the same wi-fi hotspot.

    "It's the second iPhone worm ever and the first that's clearly malicious - there's a clear financial motive behind it," says F-Secure research director Mikko Hyponen."It's fairly isolated and specific to Netherlands but it is capable of spreading."
    For now, fending off the worm involves some pretty basic steps. For example, jailbroken phone owners are strongly encouraged to revise their SSH password from the default '"Alpine" to help evade the worm.

    To help spread the word and not the worm, F-Secure is endeavoring to publish as many known details as possible of the worm. You can check out their official blog originating from Lithuania by clicking here.

    Image via Mobile Castle
    Last edited by Michael Essany; 11-23-2009 at 12:40 PM.

  2. The Following 6 Users Say Thank You to Michael Essany For This Useful Post:

    JailbrokeniPodKing (11-23-2009), LEVMAN (11-23-2009), louort3 (11-23-2009), matthew1111 (11-23-2009), micnchris (11-27-2009), reaves205 (11-23-2009)

  3. #2
    iPhone? More like MyPhone madczech's Avatar
    Join Date
    Dec 2007
    Location
    Zürich
    Posts
    259
    Thanks
    21
    Thanked 53 Times in 42 Posts

    lucky I dont live in the netherlands!

  4. #3
    For the love of gawd! n00bs: Change your effing root password!!

    @Meesany: You should put info on how to change the default password in the first post, n00bs need to be spoon fed.
    And it will be like a taco inside a taco within a Taco Bell that's inside a KFC that's within a mall that's inside your dream! Springboard screwy after reboot? Here is the fix

  5. The Following User Says Thank You to Imahottguy For This Useful Post:

    whereswaldo (11-23-2009)

  6. #4
    iPhone? More like MyPhone madczech's Avatar
    Join Date
    Dec 2007
    Location
    Zürich
    Posts
    259
    Thanks
    21
    Thanked 53 Times in 42 Posts

    Quote Originally Posted by Imahottguy View Post
    For the love of gawd! n00bs: Change your effing root password!!

    @Meesany: You should put info on how to change the default password in the first post, n00bs need to be spoon fed.
    True that!

    Or just uninstall openssh!!

  7. #5
    What's Jailbreak? mwo2616's Avatar
    Join Date
    Apr 2009
    Location
    Dallas area
    Posts
    10
    Thanks
    1
    Thanked 1 Time in 1 Post
    Quote Originally Posted by madczech View Post
    True that!

    Or just uninstall openssh!!


    Already done that!

  8. #6
    iPhone? More like MyPhone mixi92's Avatar
    Join Date
    Sep 2007
    Location
    US/RP
    Posts
    115
    Thanks
    12
    Thanked 32 Times in 25 Posts

    Quote Originally Posted by Imahottguy View Post
    For the love of gawd! n00bs: Change your effing root password!!

    @Meesany: You should put info on how to change the default password in the first post, n00bs need to be spoon fed.
    Got it on...see post...instruction also in cydia...

    http://modmyi.com/forums/member-writ...n-iphones.html

    Quote Originally Posted by Messany View Post
    @Imahottguy Thanks! I've put in a link.
    Thanks Messany...hope everyone would change their password.
    Last edited by mixi92; 11-23-2009 at 06:01 AM. Reason: Automerged Doublepost

  9. #7
    Quote Originally Posted by Imahottguy View Post
    For the love of gawd! n00bs: Change your effing root password!!

    @Meesany: You should put info on how to change the default password in the first post, n00bs need to be spoon fed.

    And the mobile password as well.

  10. #8
    Green Apple sk8ertim's Avatar
    Join Date
    Jun 2008
    Location
    Kimri, Russia
    Posts
    66
    Thanks
    48
    Thanked 2 Times in 2 Posts

    Damn these "WORMS" are annoying!
    I havent switched my root PW on my Mom's iPhone, but she doesnt even use SSH! I have it installed and it is ALWAYS off.
    When I get a new iPhone, my PW will be 10chars long... maybe like all my other passwords, 26chars long...

    PEOPLE! CHANGE THE PASS IF YOU USE SSH!
    Then we wont have these "WORMZ"!

    Also, maybe in the next ver of oPenSSH there will be an add-on so that before completing installation you would have to MAKE YOUR OWN PASSWORD!

    Just my .02cents

  11. #9
    Quote Originally Posted by Imahottguy View Post
    For the love of gawd! n00bs: Change your effing root password!!

    @Meesany: You should put info on how to change the default password in the first post, n00bs need to be spoon fed.
    You call people noobs but don't help them out. Modmyi is a place where we help people, if you want to be an elitist a-hole then go somewhere else.

    You should know better by now.
    Last edited by Jahooba; 11-23-2009 at 12:38 PM.

  12. The Following 3 Users Say Thank You to Jahooba For This Useful Post:

    1hihum (11-23-2009), kainisable (11-23-2009), The Digital Alchemist (11-23-2009)

  13. #10
    Quote Originally Posted by Imahottguy View Post
    You should put info on how to change the default password in the first post, n00bs need to be spoon fed.
    Actually they need the TV to fall on their head, so to speak.
    Last edited by KartRacer; 11-23-2009 at 04:20 PM.

  14. #11
    Theme Creator
    Join Date
    Apr 2008
    Location
    In a state of confusion
    Posts
    1,144
    Thanks
    514
    Thanked 645 Times in 424 Posts

    Quote Originally Posted by KartRacer View Post
    Actually they need the TV to fall on their head, so to speak.
    Way to contribute guys. It must be nice to have never been a noob yourselves. I now know who to go to whenever I don't have an answer.



    Where's the Bull$!t smiley when i need it.

  15. #12
    MMi Staff Writer Michael Essany's Avatar
    Join Date
    Aug 2009
    Location
    Valparaiso, Indiana
    Posts
    3,779
    Thanks
    17
    Thanked 1,480 Times in 566 Posts

    @Imahottguy Thanks! I've put in a link.

  16. The Following 2 Users Say Thank You to Michael Essany For This Useful Post:

    cbgaines (11-23-2009), mixi92 (11-23-2009)

  17. #13
    Livin the iPhone Life CaptainChaos's Avatar
    Join Date
    Sep 2008
    Location
    In a van down by the river
    Posts
    4,823
    Thanks
    551
    Thanked 515 Times in 427 Posts

    Yet another convincing piece of evidence that Apple can use against jailbreaking in the upcoming hearings. Great.

  18. The Following User Says Thank You to CaptainChaos For This Useful Post:

    JailbrokeniPodKing (11-23-2009)

  19. #14
    Noob question, But this work if you dont have SSH installed? or is the root and alpine set by default as soon as you jailbreak?

  20. #15
    Livin the iPhone Life CaptainChaos's Avatar
    Join Date
    Sep 2008
    Location
    In a van down by the river
    Posts
    4,823
    Thanks
    551
    Thanked 515 Times in 427 Posts

    If you don't have ssh installed then you don't have to worry about it. The benefits of having it though are why it will always be on my phone.

  21. The Following User Says Thank You to CaptainChaos For This Useful Post:

    jalexis4192 (11-23-2009)

  22. #16
    Quote Originally Posted by CaptainChaos View Post
    If you don't have ssh installed then you don't have to worry about it. The benefits of having it though are why it will always be on my phone.
    I know, but i just use it maybe once to get my theme on phone, and to get the tethering hack, after that, its pretty much useless to me, Since i dont switch themes every 5 seconds like some people do, dont use dTunes or anything either so yeah.

  23. #17
    It's as simple as this.... if you know how to and have Jailbroken your phone you SHOULD know how to change your root password. Pure laziness and it's there fault to get infected.

  24. #18
    Quote Originally Posted by chris4851 View Post
    It's as simple as this.... if you know how to and have Jailbroken your phone you SHOULD know how to change your root password. Pure laziness and it's there fault to get infected.
    Yeah this might have been a good reply back in the 1.0 days, when jailbreaks and unlocks were pretty effin complicated to do. Nowadays, with Geohot's all in one click utility, every noob on the planet can get their iPhone jailbroken.

    I think the solution would be to incorporate a password change feature in the jailbreak utilities from now on.

  25. The Following User Says Thank You to bengo For This Useful Post:

    1hihum (11-23-2009)

  26. #19
    Livin the iPhone Life CaptainChaos's Avatar
    Join Date
    Sep 2008
    Location
    In a van down by the river
    Posts
    4,823
    Thanks
    551
    Thanked 515 Times in 427 Posts

    True, but if your phone gets stuck at the bootlogo and you don't have ssh then your only option is to restore.

  27. #20
    Livin the iPhone Life
    Join Date
    Aug 2008
    Location
    New York
    Posts
    1,023
    Thanks
    3
    Thanked 78 Times in 63 Posts

    These aren't that complex of "Worms". Any basic programmer can write a walking script that simply:

    1) Try SSH to IP
    2) Login as root/alpine
    3) Replace hosts file with bad one
    4) Try SSH to next IP.

Page 1 of 3 123 LastLast
Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •