Posted 11/23/09 at 11:20:07 AM by Paul Lilly

It didn't take long for hackers to take advantage of a potentially dangerous exploit affecting jailbroken iPhones. The vulnerability first gained notoriety earlier this month when a hacker from the Netherlands took control of modified iPhones and sent the owners an SMS requesting a fee for instructions on how to protect thier device. He later backed down and posted the fix for free, but by then, the cat was out of the bag.

Fast forward a few weeks and we now have the first malicious worm making the rounds on jailbroken iPhones and iPod touch devices. According to reports, the worm uses command--and-control like a traditional PC botnet. it configures two startup scripts, one of which is used to execute the malicious worm during boot, and the other to make a connection to a Lithuanian server in order to upload stolen data and hand over control to the bot master.

The worm works by changing the root password from the default of "alpnie" that Apple put in place in the factory firmware. It attacks IP ranges from a wider range of ISPs, including UPC, Optus, and T-Mobile.

The recommended fix is to restore jailbroken iPhones to the current Apple-supplied firmware.

Read More

Posted 11/04/09 at 09:02:40 AM by Paul Lilly

There's a lot you can do with a jailbroken iPhone, and apparently, there's a lot others can do with your hacked smartphone as well. A hacker from the Netherlands made it his mission to alert modified iPhone owners via SMS that their security wasn't up to snuff.

The SMS contained a link to http://doiop.com/Hacked, which has since been eradicated from the Web. But before it was taken down, the site asked victims to send 5 euros (about $7.56 USD) to a Paypal account and then sit tight for email instructions on how to secure the hacked phone.

"If you don't pay, it's fine by me," the hacker's page said. "But remember, the way I got access to your iPhone can be used by thousands of others -- they can send text messages from your number (like I did), use it to call or record your calls, and actually whatever they want, even use it for their hacking activities! I can assure you, I have no intentions of harming you or whatever, but some hackers do! It's just my advice to secure your phone."

According to ArsTechnica, the hacker used port scanning to identify jailbroken iPhones on the T-Mobile network in the Netherlands with SSH running. The hack also relied on unchanged root passwords to gain access, which is where the real security risk came from.

So what can you do to secure your phone? The same hacker who tried to make a quick buck has apologized for his actions, promised to return what money he's made, and posted steps to secure your jailbroken iPhone, which you can find here.

Read More