/ Forside / Teknologi / Hardware / Mac / Nyhedsindlæg
Login
Glemt dit kodeord?
Brugernavn

Kodeord


Reklame
Top 10 brugere
Mac
#NavnPoint
UlrikB 4810
kipros 1675
Klaudi 1010
myg 920
pifo 907
Stouenberg 838
molokyle 830
Bille1948 815
rotw 760
10  EXTERMINA.. 750
iPhone-orm
Fra : Per Rønne


Dato : 10-11-09 19:26

Morale: Lad være med at jailbreake din iPhone!

------- Begin Forwarded Message -------

Subject: iPhone Worm Hits Australia
From: News <News@Group.Name>
Newsgroups: alt.cellular.attws
alt.cellular.cingular
alt.internet.wireless
misc.phone.mobile.iphone
Date: Tue, 10 Nov 2009 12:30:06 -0500

First iPhone Worm Hits Australia


By: Brian Prince
2009-11-09

The first known worm for Apple's iPhone is spreading on jail-broken
iPhones in Australia. The worm takes advantage of the default password
for SSH used by many jail-broken phones and places an image of 1980s pop
singer Rick Astley on the device.

The first known worm for the Apple iPhone is sweeping across Australia,
and it is taking advantage of default SSH passwords on jail-broken phones.

The attack vector is the same as the one exploited by a Dutch teenager
last week in a brief extortion attempt. This time around, the mind
behind the attack isn't doing anything bad—unless you don't like having
English pop singer Rick Astley as your wallpaper.

Once installed, the worm—known as ikee—tries to find other iPhones on
the mobile phone network that are vulnerable so it can propagate. On
each installation, the worm changes the lock background wallpaper to an
image of the 1980s singer with the message: 'ikee is never going to give
you up.'

"Ashley Towns, the author of the worm, says he personally infected 100
jail-broken iPhones," said Graham Cluley, senior technology consultant
at Sophos. "Those iPhones would then have tried to infect other
jail-broken iPhones, and so on, and so on."

The jail-broken iPhones impacted by the worm are running an SSH with the
iPhone's default password. Last week, news reports surfaced that a Dutch
attacker used the same situation in combination with port scanning and
OS fingerprinting to find iPhones in T-Mobile's 3G IP range to install
backdoors on the phones and scare users into paying €5 (US$7.43) for
instructions on how to thwart the attack.

Security vendor F-Secure reported that the latest attack scans a handful
of IP ranges, mostly in Australia. As of Sunday, the company had no
confirmed reports of the worm outside of Australia. The company noted
that there are four variants of the worm, and that Towns has provided
full source code for the malware. That means more variants could be
forthcoming, and both Cluley and F-Secure agreed the next payload could
be worse.

"We can only hold our breath and hope it doesn't happen," Cluley said.
"Unfortunately the genie is out of the bottle as the worm's code has
been published on the Web. It would be relatively trivial for malicious
hackers to adapt the code to make the worm more financially motivated
rather than mischievous."

-------- End Forwarded Message --------


--
Per Erik Rønne
http://www.RQNNE.dk
Errare humanum est, sed in errore perseverare turpe

 
 
Thomas von Hassel (10-11-2009)
Kommentar
Fra : Thomas von Hassel


Dato : 10-11-09 19:51

Per Rønne <per@RQNNE.invalid> wrote:

> Morale: Lad være med at jailbreake din iPhone!

nok nærmere: "hvis du jailbreaker din telefon så sæt dig for fanden ind
i hvad det er du laver"

/thomas

Per Rønne (10-11-2009)
Kommentar
Fra : Per Rønne


Dato : 10-11-09 21:09

Thomas von Hassel <thomas@elements.dk> wrote:

> Per Rønne <per@RQNNE.invalid> wrote:
>
> > Morale: Lad være med at jailbreake din iPhone!
>
> nok nærmere: "hvis du jailbreaker din telefon så sæt dig for fanden ind
> i hvad det er du laver"

Ja, at enable ssh med standardløsenet uændret er for langt ude ...
--
Per Erik Rønne
http://www.RQNNE.dk
Errare humanum est, sed in errore perseverare turpe

Ukendt (10-11-2009)
Kommentar
Fra : Ukendt


Dato : 10-11-09 20:53

Hej,

> Morale: Lad være med at jailbreake din iPhone!

Du er elendig til at uddrage moraler.

At man jailbreaker sin telefon betyder jo ikke nødvendigvis at man også
installerer SSH. Samtidigt vil dem som tænker sig om (dvs. dem der rent
faktisk læser hvad der står, når man installerer SSH) ændre deres
password væk fra standardpasswordet som det første efter installationen.

--
Jens Kristian Søgaard, Mermaid Consulting ApS,
jens@mermaidconsulting.dk,
http://www.mermaidconsulting.com/

Søg
Reklame
Statistik
Spørgsmål : 177552
Tips : 31968
Nyheder : 719565
Indlæg : 6408847
Brugere : 218887

Månedens bedste
Årets bedste
Sidste års bedste