First iPhone Trojan horse is weak, Greeks point, laugh
Well if you've been telling your buds your iPhone is totally virus free and safe, 'tis time to eat your words. Seems some [Via CNET, image courtesy of thecampuscomic]
Filed under: Cellphones
Well if you've been telling your buds your iPhone is totally virus free and safe, 'tis time to eat your words. Seems some [Via CNET, image courtesy of thecampuscomic]
Relevant Posts
- iTunes activation servers go down, iPhone 3G customers being sent home unactivated, first-gen iPhone customers stuck with dead iPhones (56 days ago - 897 Comments)
- How would you change Apple's iPhone 3G? (35 days ago - 537 Comments)
- iPhone 3G first look, what do you want to know? (57 days ago - 429 Comments)
- iPhone firmware 2.0.2 is out... and angry (18 days ago - 290 Comments)
- Are you having problems with iPhone 2.0? (57 days ago - 350 Comments)
Reader Comments (Page 1 of 2)
Luigi193 @ Jan 8th 2008 8:56PM
I remember when I was 11... I wasn't hacking iPhones... thats for sure.
jon @ Jan 8th 2008 9:04PM
I remember when i was 11 to. I think i was busy wasting my time on something that wouldn't get me beat up for being a nerd.
webon @ Jan 8th 2008 9:29PM
Wow I'm getting old I cant remember 11... then again cant remember yesterday either
Dirkus @ Jan 8th 2008 10:08PM
"Where am I? Who are you?"
Kris @ Jan 9th 2008 12:15AM
http://www.youtube.com/watch?v=SMF2Eb0Wa_I
Shoes?
Panathas17 @ Jan 9th 2008 1:04AM
I remember when i was 11, two years ago.... enough said.........
skulldriveshaft @ Jan 9th 2008 2:28AM
VIC-20 CARTRIDGES!!!!
CHOPLIFTER!!!
jamma @ Jan 9th 2008 7:25AM
When I was 11 everything was different, and Pluto was a planet
Panathas17 @ Jan 13th 2008 10:06AM
http://leukeh.deviantart.com/art/Wallpaper-2-OS-X-vs-Vista-49816042?q=Mac+OS+X+boost%3Apopular+age_sigma%3A24h+age_scale%3A5+in%3Acustomization%2Fwallpaper%2Fapple
Trojan horses are for vista ONLY! ok fine, other windows os' included...
rommel @ Jan 8th 2008 9:04PM
Somebody should give that kid a tech job!
fred @ Jan 8th 2008 9:04PM
Nice way to downplay it, guys.
I only wish you would show this type of smarmy contempt to all the other malware writes who write this type of crap for Windows.
Malware for Windows:
Micro$oft suckz!
Malware for anything from Apple:
Just some incompetent 11-year old kid. Not a biggie. (sweep under rug)
bob @ Jan 8th 2008 9:25PM
apart from you dont have to hack the shit out of window and still download manually and install for an exploiton windows do you? This is HACKED iphones only and you also have to be stupid enough to do the above. READ!
Reid Contni @ Jan 8th 2008 10:15PM
I'll wait to eat crow until my Macs or my iPhone fall victim to some hack/virus/malware/trojan in the wild.
The day that happens, I will start looking into 3rd party security/AV/anti-spyware software. While I install it, I will look back fondly on the 5 years (and counting) that I hadn't had to suffer with the ills of the Windows world.
Also, that day all of the Microsoft apologists will somehow feel justified in having put up with all of that garbage on their platform of choice for lo those many years.
Jon Graft @ Jan 8th 2008 10:32PM
Considering it is barely a hack at that, yeah, we can safely "sweep" this one by without a worry.
My God, if the iPhone had as many problems as ANYTHING Windows, more than half the time it would boot up to a nice touch active BSOD.
Warning! Touch Screen has become inactive. Please press the okay button on the touch screen to continue! :-P
Chip @ Jan 9th 2008 5:10AM
BSOD lol. I don't think I've seen one of those since 2004. Clue, in 2008 if you get a BSOD, it's probably your $12 TV tuner card you got off eBay.
james @ Jan 8th 2008 9:06PM
"I remember when I was 11... I wasn't hacking iPhones... thats for sure."
thats because when most of us were 11 cell phones were bricks and we weren't all spoiled little SOBs with an iphone daddy bought us. hehe
Hung @ Jan 9th 2008 12:17AM
Really? Thanks for the insight; the original comment meant almost nothing to me. Until I came upon you comment, I was confused, angry, even bamboozled because I couldn't decipher the meaning of such a cryptic first post.
End sarcasm.
John @ Jan 9th 2008 12:49AM
I'm pretty sure the first comment was meant to imply some sort of skill on behalf of the 11 year old... however I'm pretty sure the 11 year old was some script kiddie who managed to "infect" people by contaminating a trusted source.
Steele @ Jan 8th 2008 9:13PM
took longer than i anticipated
Student Driver @ Jan 8th 2008 9:15PM
I was typing away on a TRS-80...
drsilverworm @ Jan 8th 2008 9:15PM
The bit about the 11 year old is either a joke or embarrassingly slanted reporting
CUBSWILLWIN @ Jan 8th 2008 9:49PM
I might sound crazy but it sounds a bit like something my neiboughrs son would do. He is all into hacking things, especially apple products.
UKNigel @ Jan 8th 2008 10:08PM
I started programming not long after I was 11, and if I had no life before then I definitely would have started earlier.
John @ Jan 9th 2008 12:58AM
considering what the app does - displays "shoe" then rm's some stuff in /bin/ - I would put this at the level of anyone who was given a crash course in unix/linux at some point in their life, which could easily be before the age of 11.
Steve B. @ Jan 8th 2008 9:30PM
If the Trojan horse is weak, wouldn't it be the Trojans who were laughing, not the Greeks? The Greeks were the ones inside the horse sneaking into Troy, not the Trojans. Just to clarify. I love my Iliad. Even if that story isn't in the Iliad. Damn me and my knowledge of Greek Literature!
Blake Bowen @ Jan 8th 2008 9:36PM
Yeah, seriously. Engadget, you're dangerously close to losing your nerd license.
C. Patrick @ Jan 8th 2008 9:47PM
Steve B. beat me to the punch. Yes, it was the Greeks that built the Trojan horse, after a 10 year (maybe a little exaggerated) siege on Troy.
Joe @ Jan 12th 2008 2:32AM
I think the point is that the Greeks built a successful Trojan horse, while this kid's sucks.
Chris McDowell @ Jan 9th 2008 1:10AM
I think they greeks would be laughing cause their trojan worked out better than this kids trojan. So the Greeks would be laughing at the kid for not making it wreak havoc. Maybe.
cdog @ Jan 9th 2008 3:06AM
...and weren't the Greeks the Achaeans back then? I too love my Homer. Thanks for making the point!
I try to keep my 14 year old away from programming tools and gave him something more practical this Christmas: his first set of lock picks. I'm so proud!
Steve B. @ Jan 9th 2008 10:15AM
Ahhh, Chris, that makes sense. I see. This kid has brought shame on all of Hellas!
Paul @ Jan 8th 2008 9:31PM
My iPhone hasn't been jailbroken since 1.1.1, so I'm not at all vulnerable, sukkas!
nathan @ Jan 11th 2008 6:14PM
I'm not vunerable to it either. Why? I read about what I download and install first, especially something as sensitive as "1.1.3 prep". You'd have to be idiot to install it.
Karl @ Jan 8th 2008 9:32PM
I agree with Fred. And IMHO Bob is a jacka$$
deslock @ Jan 8th 2008 9:35PM
The story's text, "Well if you've been telling your buds your iPhone is totally virus free and safe, 'tis time to eat your words." is misleading and sensationalistic since it's a trojan not a virus.
Likewise, fred's comment, "I only wish you would show this type of smarmy contempt to all the other malware writes who write this type of crap for Windows." is misplaced since it's not malware either.
From Symantec's site it's clear that this is just another example of why you should never run a program that you don't trust, regardless of the platform:
"According to various reports, installing the package doesn't have much effect on the iPhone. However, uninstalling it may cause problems, as the malicious package overwrites some other applications during the install. Some of the applications it overwrites are "Erica's Utilities" (a collection of command-line utilities for the iPhone) and OpenSSH. If the user chooses to uninstall the bogus package, these applications will also be removed. Affected users will need to reinstall these applications.
This is technically the first Trojan horse seen for the iPhone, however it does appear to be more of a prank than an actual threat. The impact of uninstalling the "Trojan" would appear to be an unintended side effect. The risk to users is minimal as they would have to choose to install the bogus package and the site which was hosting it has now been taken offline. Nevertheless, iPhone users should exercise caution regarding the packages they choose to install on their phones."
skulldriveshaft @ Jan 9th 2008 2:39AM
holy crap - nerdathon deluxed overkillah!
it's flamebait
spezz @ Jan 8th 2008 10:21PM
Shoes? Is that some kind of Murder by Death joke? Is this kid really 11?
rutsy5 @ Jan 8th 2008 10:25PM
BUt HOWE CAN U TEL BY MY CODEING DAT I AM OLNY 11!!! :O
zephead @ Jan 8th 2008 10:28PM
"Greeks point, laugh"
Haha, that's part of why I love Engadget. :D
Karl Viklund @ Jan 8th 2008 11:10PM
I laugh at this article.
it's not because the iPhone is insecure (not that it's totally secure) but this is just social engineering. Don't blame the iPhone. Blame stupid users.
And be prepare to see Antivirus companies release Antivirus software for the phone soon and making big news all over that you need it. Which you eventually will on a phone this advanced.
N30 G30 @ Jan 9th 2008 12:12AM
Stupid users? It was a program. Normal people don't Google everything they're about to download and normal people don't have AVs on their iPhone. From the hours "smart users" spend on researching if a program is safe, "stupid users" would've reinstalled all programs they lost and would be happily enjoying their iPhone. It's not that serious.
Hung @ Jan 9th 2008 12:20AM
Hours? Have you ever used google?
Oh wait, are you still using GPRS?
Chip @ Jan 9th 2008 5:16AM
Naw.. they're on EDGE
LD @ Jan 9th 2008 12:48AM
So here's the rundown:
IF you have manually hacked your iPhone
AND
IF you use Installer.app
AND
IF you manually install this software without knowing what it is
you will need to do nothing more than restore your iPhone to factory condition using Apple's utility.
Um, where's the story, guys?
Scott @ Jan 9th 2008 1:36PM
AND
You installed JMCO source jmwiki.com, since that isn't a source that comes with installer.app or the "community sources" package.
This is as dumb as going to some random web site and downloading FREE_XXX.exe on a PC and attempting to run it.
Ed @ Jan 9th 2008 2:18AM
This kid needs his little butt paddled. I don't care if the trojan did not work very well, or it turned out to do something benign. Uninstalling it apparently can some problems, even if unintended.
It's that same sort of mentality that gets viruses and other type of malwares created. Complete disregard towards another's property.
I'm not coming down on hackers either. Hacking, as a term, has been misused for awhile now to represent behaviors and motivations that have nothing to do with hacking specifically. It has also been used to aggregate specific types of actions under one term such as cracking, or phreaking, etc. Unfortunately, it also aggregates specific types of actions that are not even hacking in the first place.
Most people don't come close to hacking. Having an iPhone running home brew does not qualify. One cannot "hack" their own property. I have always found it interesting we call modifying your iPhone, PS1, PSP, PS2, XBox, etc. "Hacking". Sony and Apple want you to believe that doing this is hacking your device. That implies, that at some level, you don't own it. They do. It's very subtle isn't it?
Hacking, according to its traditional definition, has always been performing actions against property that is not yours. I know some may disagree with my interpretation, feel free to tell me yours.
A lot of hacking is merely for information gathering purposes, the attainment of knowledge or ability, and rarely one of destruction. That is the propaganda machine at work.
So I know a lot of people want to laugh at this, dismiss it, turn into a flame war between Apple vs. Microsoft, but this kind of behavior really needs to be taken seriously.
This kid needs to be punished because his actions affected a lot of other people, and caused damage. If we don't make him wish he was never born for the next couple of weeks, he may grow up to be one of those assholes that is not just making the new stealth MBR rootkits, but using them to install not so benign malware.
It's shoes today, but tommorow it could be capture the bank account info and transfer the money out.
skulldriveshaft @ Jan 9th 2008 2:47AM
kid doesn't need butt paddling - that doesn't work on nerd kids - removing the electronic devices from their rooms works wonders - installing sandboxing software on their machines, and unplugging your router when you are not at home works great too.
butt paddling worked when there was nothing in the kids' room to do - you couldn't distract yourself by staring at the walls in your room.
it's better for things to be found broken and fixed, rather than the alternative, you kinda deserve this situation if you have a jailbroken phone and you have no clue what that means.
again, this post is flamebait
Ed @ Jan 9th 2008 3:38AM
Well at least we agree he needs PUNISHMENT. Now we are just haggling over whether to cut off his right-hand, or stick bamboo pieces under his fingernails. I'm kidding of course. Whatever happens, something needs to be done that will reach this kid. Something that will make him understand.
Accordingly, maybe installing a destructive rootkit on his system that will slowly corrupt his games, steal his online passwords and IM his friends that he still wets the bed, might be more effective.
As for some of the iPhone users that have no idea what they are doing, the stupid should not be targeted merely because they are stupid.
"But your honor, look at the guy... he's a moron", is not a real good or ethical defense as to why you programmed his iPhone to deliver electric shocks every time he put to his face. The fact he may be suing since he has 3rd degree burns from talking to Apple tech support does not mean anything either.
NG @ Jan 9th 2008 5:05AM
somehow i don't think he's only 11
Jerome @ Jan 9th 2008 6:18AM
Most of other news sites mentionned the fact that this trojan only affects hacked iphones.
I am not very surprised that engadget didn't.