 |
|
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
11-08-2009, 05:59 PM
|
#1 (permalink) |
 
Join Date: Apr 2008
Location: Philadelphia, PA
Posts: 2,486
Thanks: 52
Thanked 160 Times in 133 Posts
|
First iPhone Worm Infecting
http://www.pcworld.com/businesscente...wallpaper.html
Just another use of SSH, but it could be turned into something more malicious. Change your default passwords!
__________________
K a b a M o d e r n FOLLOW ME ON TWITTER iPhone 3G / OS 3.1.2 / White / 16gb / blackra1n'd / holla! |
|
  
|
|
11-08-2009, 06:07 PM
|
#2 (permalink) |
 
Join Date: Aug 2008
Location: Long Island, NY
Posts: 178
Thanks: 7
Thanked 12 Times in 8 Posts
|
Here's how (courtesy of another user)....
Go to Cydia, manage tab, packages, and see if OpenSSH is on the list of installed packages. If it is, download and install a package from Cydia called MobileTerminal. Start MobileTerminal, type in "su", then type in the default password "alpine", then type in "passwd", and set a new password (don't use " quote marks " in any of these commands)
__________________
iPhone 3G[S]; FW-3.1 iphone 2G (now an 'iTouch with Skype capabilities) MBP-2.33GHz/3GB/15-inch |
|
|
| The Following User Says Thank You to carrera.owner For This Useful Post: | TarekElsakka (11-09-2009) |
|
11-08-2009, 06:07 PM
|
#3 (permalink) |
 
Join Date: Jun 2009
Posts: 471
Thanks: 0
Thanked 7 Times in 5 Posts
|
oh dear, i think this is the first of many, is the same with computers, as people see a growing number of users, it will draw more attention for virus programmers, to write a virus for that platform..
thats what i think..
__________________
random articulations of codes inward of iphone OS, coadjute to contrive unpremeditated behavior |
|
|
|
|
11-08-2009, 08:18 PM
|
#4 (permalink) |
Join Date: Jul 2008
Posts: 3,072
Thanks: 355
Thanked 157 Times in 136 Posts
|
Originally Posted by mr.reggaeton72
I beg to differ.
The only reason this happened was because people jailbreak the phone and leave SSH set to on. If you dunno what SSH is then google about it. To my knowledge if you have SSH turned off there is no way to remote access someone's SSH and use the default password to get in. This news is soo old anyway because if you leave SSH on anyone can breach private data on the iphone. If the person has SSH off, or isnt even jailbroken or is jailbroken but never installed SSH, hacking or making a virus for the iphone is time consuming and wouldnt yield much...at least at the rate that apple updates its firmwares. The main goal of a hacker/virus/worm is to infect as much as possible. For starters, its a mobile platform, SSH must be on, the persons iphone must be jailbroken in order to even have SSH, the persons SSH password must be set to the default and they have to out hack the rate at which apple updates firmwares. The effort vs "payout" ratio isnt worth it. SSH, and blogs/jailbreaking blogs etc have been saying from day one not to leave SSH on because others can breach your iphone. No one listens, and when it happens it makes news which gets interpreted by millions as "theres a virus out for the iphone now". Its deff not going to be a trend.... its easier to just infect computers anyway.
__________________
White Iphone 3G.Im on a mission here and you are all just collateral. Travel The World, Make New Friends, Make More Money, Have no Regrets But Have Lots of Fun. Last edited by Londonrockz568; 11-08-2009 at 08:32 PM.. |
|
|
|
|
11-09-2009, 12:57 AM
|
#5 (permalink) |
Join Date: Mar 2008
Posts: 2,508
Thanks: 95
Thanked 85 Times in 70 Posts
|
It would be the same as using your computer on a network while leaving your shared folder as your root folder...
Not a worm, just carelessness.
__________________
2.5Ghz Custom PC (XP) + 2.0GHz Aluminum Macbook |
|
|
|
|
11-09-2009, 04:15 AM
|
#6 (permalink) |
Join Date: Nov 2008
Location: Cairo, Egypt.
Posts: 2,944
Thanks: 407
Thanked 123 Times in 109 Posts
|
Originally Posted by carrera.owner
Thank you, sir. Saved me the hassle of searching.
__________________
الحمد للة Thank you very much, Mindi. <3 |
|
|
|
|
11-09-2009, 08:42 AM
|
#7 (permalink) |
|
Join Date: Apr 2008
Location: Philadelphia, PA
Posts: 2,486
Thanks: 52
Thanked 160 Times in 133 Posts
|
Originally Posted by styfle
Actually, it would be considered a worm. If you read the article they mention this worm changes the user's wallpaper and then seeks out other iPhones to infect. Which is exactly what a worm does: sends copies of itself out to other devices without intervention from the EU.
__________________
K a b a M o d e r n FOLLOW ME ON TWITTER iPhone 3G / OS 3.1.2 / White / 16gb / blackra1n'd / holla! |
|
|
|
|
11-09-2009, 10:58 AM
|
#9 (permalink) |
|
Join Date: Apr 2008
Location: Philadelphia, PA
Posts: 2,486
Thanks: 52
Thanked 160 Times in 133 Posts
|
Originally Posted by iNinja
That is correct. AFAIK, if you have SSH turned OFF, you're fine. It's infecting iPhones through the open SSH tunnel. I'd even recommend changing the root and mobile passwords so when you do have SSH turned ON, you're not as easily vulnerable.
__________________
K a b a M o d e r n FOLLOW ME ON TWITTER iPhone 3G / OS 3.1.2 / White / 16gb / blackra1n'd / holla! |
|
|
|
|
11-09-2009, 11:35 AM
|
#10 (permalink) |
|
Join Date: Jul 2008
Posts: 3,072
Thanks: 355
Thanked 157 Times in 136 Posts
|
Exactly everyone. All it takes is one... or three simple steps.
One step being turn it off when not using it. OR The three it takes to change the passwords. Theres nothing more, or nothing less to it.
__________________
White Iphone 3G.Im on a mission here and you are all just collateral. Travel The World, Make New Friends, Make More Money, Have no Regrets But Have Lots of Fun. |
|
|
|
 |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
All times are GMT -5. The time now is 10:48 AM.
