The Thailand expat forum for Travel, Lifestyle and Fun.

Gipsy · 10-11-2009, 10:00 AM

From BBC News,
Monday, 9 November 2009

Worm attack bites at Apple iPhone

The worm changes the wallpaper of the phone

The first worm to infect the Apple iPhone has been discovered spreading "in the wild" in Australia.
The self-propagating program changes the phone's wallpaper to a picture of 80s singer Rick Astley with the message "ikee is never going to give you up".
The worm, known as ikee, only affects "jail-broken" phones, where a user has removed Apple's protection mechanisms to allow the phone to run any software.
Experts say the worm is not harmful but more malicious variants could follow.
"The creator of the worm has released full source code of the four existing variants of this worm," wrote Mikko Hypponen of security firm F-secure.
"This means that there will quickly be more variants, and they might have nastier payload than just changing your wallpaper."
The picture of Rick Astley is believed to be a nod to the internet phenomenon known as Rickrolling, where web users are tricked into clicking on what they believe is a relevant link, only to find that it actually takes the user to a video of the pop star's song "Never gonna give you up".
'Stupid people'
The worm has so far only been found circulating in Australia, where the hacker - Ashley Towns - who wrote the program lives.
The 21-year-old told Australia's ABC News Online that he created the virus to raise the issue of security.
It only exploits jail-broken phones that have SSH installed, a program that enables other devices to connect to the phone and modify the system and files.

My prediction is that we may see more attacks like this in the future

Graham Cluley

The worm is able to infect phones if their owners have not changed the default password after installing SSH.
"What's clear is that if you have jail-broken your iPhone or iPod Touch, and installed SSH, then you must always change your root user password to something different than the default, 'alpine'," wrote Graham Cluley of security firm Sophos.
"In fact, it would be a good idea if you didn't use a dictionary word at all."
After a phone becomes infected it disables the SSH service, preventing reinfection.
The code contains numerous comments from Mr Towns about his motivation.

Jail breaking allows a user to run non-Apple approved software

One comment reads: "People are stupid and this is to prove it."
"It's not that hard guys. But hey who cares its only your bank details at stake."
The worm can be removed by changing the phone's password and deleting some files.
A spokesperson for Apple warned against jail-breaking handsets.
"These hacks not only violate the warranty, they will also cause the iPhone to become unstable and not work reliably," the spokesperson said.
Some estimates suggest that up to 10% of all iPhones and iPod Touch are jail-broken.
The practice allows a phone user to install software and applications that have not been approved by Apple.
"Phone users may rush into jail-breaking their iPhones in order to add functionality that Apple may have denied to them, but if they do so carelessly they may also risk their iPhone becoming the target of a hacker," said Mr Cluley.
"My prediction is that we may see more attacks like this in the future."

DaffyDuck · 13-11-2009, 01:30 PM

...only if you're dumb enough to jailbreak *and* deliberately install SSH *and* leave the default root passwords unchanged.

By default, a jailbreak installation does not include SSH... in other words, you need to work really hard at being stupid.

10-11-2009, 10:00 AM	#1 (permalink)
Gipsy Surat Thani Last Online: Today 09:57 AM Join Date: Sep 2009 Location: NE of Chiang Mai Posts: 158	First worm wiggles in iPhone From BBC News, Monday, 9 November 2009 Worm attack bites at Apple iPhone The worm changes the wallpaper of the phone The first worm to infect the Apple iPhone has been discovered spreading "in the wild" in Australia. The self-propagating program changes the phone's wallpaper to a picture of 80s singer Rick Astley with the message "ikee is never going to give you up". The worm, known as ikee, only affects "jail-broken" phones, where a user has removed Apple's protection mechanisms to allow the phone to run any software. Experts say the worm is not harmful but more malicious variants could follow. "The creator of the worm has released full source code of the four existing variants of this worm," wrote Mikko Hypponen of security firm F-secure. "This means that there will quickly be more variants, and they might have nastier payload than just changing your wallpaper." The picture of Rick Astley is believed to be a nod to the internet phenomenon known as Rickrolling, where web users are tricked into clicking on what they believe is a relevant link, only to find that it actually takes the user to a video of the pop star's song "Never gonna give you up". 'Stupid people' The worm has so far only been found circulating in Australia, where the hacker - Ashley Towns - who wrote the program lives. The 21-year-old told Australia's ABC News Online that he created the virus to raise the issue of security. It only exploits jail-broken phones that have SSH installed, a program that enables other devices to connect to the phone and modify the system and files. My prediction is that we may see more attacks like this in the future Graham Cluley The worm is able to infect phones if their owners have not changed the default password after installing SSH. "What's clear is that if you have jail-broken your iPhone or iPod Touch, and installed SSH, then you must always change your root user password to something different than the default, 'alpine'," wrote Graham Cluley of security firm Sophos. "In fact, it would be a good idea if you didn't use a dictionary word at all." After a phone becomes infected it disables the SSH service, preventing reinfection. The code contains numerous comments from Mr Towns about his motivation. Jail breaking allows a user to run non-Apple approved software One comment reads: "People are stupid and this is to prove it." "It's not that hard guys. But hey who cares its only your bank details at stake." The worm can be removed by changing the phone's password and deleting some files. A spokesperson for Apple warned against jail-breaking handsets. "These hacks not only violate the warranty, they will also cause the iPhone to become unstable and not work reliably," the spokesperson said. Some estimates suggest that up to 10% of all iPhones and iPod Touch are jail-broken. The practice allows a phone user to install software and applications that have not been approved by Apple. "Phone users may rush into jail-breaking their iPhones in order to add functionality that Apple may have denied to them, but if they do so carelessly they may also risk their iPhone becoming the target of a hacker," said Mr Cluley. "My prediction is that we may see more attacks like this in the future."

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

13-11-2009, 01:30 PM	#2 (permalink)
DaffyDuck Fluff & Fold Last Online: Yesterday 02:01 PM Join Date: Nov 2007 Posts: 2,443	...only if you're dumb enough to jailbreak and deliberately install SSH and leave the default root passwords unchanged. By default, a jailbreak installation does not include SSH... in other words, you need to work really hard at being stupid.

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)