We sort of knew this would happen as soon as we heard about that
iPhone wallpaper hack in the Netherlands -- a hacker named ikex has created what's apparently the first iPhone worm, and it's currently infecting jailbroken iPhones across Australia. The "ikee" worm, as it's being called, takes advantage of the fact that jailbroken iPhones with SSH installed all have the same default root password of "alpine," and once in the system it changes your wallpaper to an image of Rick Astley and then tries to install itself on other jailbroken iPhones on the network. Sophos says it hasn't confirmed any infections outside of Oz, and to be clear, this worm can't get to stock iPhones or jailbreak owners who haven't installed SSH -- but if you're running a hacked phone we'd say you should
change that root password just to be safe right away. Get to it, kids.
[Thanks to everyone who sent this in]
posted Nov 8th 2009 10:48PM
I think this is the first time I actually want my phone to be infected with a worm.
Bring it on, Rick Astley!
Well, honestly the song does tell exactly how an iPhone owner feels about their phone...
NEVER GONNA GIVE YOU UP NEVER GONNA LET YOU DOWN !!!!...
Yea but that means everyone points and laughs at the people with iPhones. Oh wait, I guess it does describe it pretty well.
honestly when i saw this, i thought the hack involved your iphone getting random calls w/ rick astley singing. that'd be the best prank hack ever. YOU HACKERS HEAR ME??
sounds like a special request
Sure Dave, what's your number?
How about posting how to change the root default password?
Because it's painfully obvious if you've ever used *nix.
Assuming you have MobileTerminal installed on the phone:
1. Run 'su' enter password 'alpine'
2. Run 'passwd' follow the prompts, change to something secure.
Optionally, turn SSHd off when you aren't using it by installing SSH Toggle (IIRC) from Cydia.
You can also toggle ssh on and off in SBSettings.....under more/Set toggles.
Yes, so "painfully obvious."
This is why "*nix" has no public presence. Because of the arrogance of those with knowledge.
Fortunately, the arrogance on this commenter was light enough to allow him to post the solution. The darkness is still weak with this one, but they all succumb to it eventually.
Last time I checked, if you change the root password it screws up a lot of stuff. The pass is hard coded into several apps that make the phone/ipod work.
@barry99705
And that's why these "one button" jailbreak tools are bad. Cause any idiot can hit a button, but to really do things right requires some experience with cli (that short for command line for all you not*nix heads ;) ).
@Brian
I hear you about some hardcore users but actually Linux has a pretty good support network. But it's hard when people come around asking how to fix something you know they shouldn't have had any business messing with. You know what I mean? After the umpteenth time, it wears on your nerves... so cut nerdtalker some slack...
@Brian,
We share the same name but not sentiment. Conversely, one could say that *nix remains difficult for underlings to understand or use because they're both averse to searching google for answers, or because they think they're always intitled to help.
That said, I wasn't trying to be arrogant, merely helpful and perhaps defend why the engadget editors didn't make or link to a step by step guide. It's because - well, passwd is pretty fundamental. That said we were all noobs once, right?
Also regarding stuff not working I'm pretty sure that's an old problem. I've changed mine and nothing bad has happened yet.
@nerdtalker: While I grant that we might assume anyone installing SSH on their jailbroken iPhone knows or has been told about at least one shell command (else why would they install it?), I don't think any shell command can ever be called "painfully obvious." There's the major hurdle that you have to know a command exists before you can call it.
thats one sexy devil in the background there
Does it change the ringtone to "Never gonna give you up"? It would be funny too if the worm make fake call at random time and then play the song when people answer it.
refer back to my post >.
haha... hahahahaha XD!!!
Well now that someone can claim to be the first, hopefully thatll dissuade anyone else from wasting time on creating another.
Never gonna give you up, never gonna let you live not changing your root password down....
You've got to admit this is pretty funny.
It was pretty funny. I would have gone with this image though....
http://modmyi.com/iphone_wallpapers/images/140329/1_bart_bgA04.jpg
What a lame generic iPicture.
hey! theres a worm in my apple!
One bad Apple spoils the whole bunch. . . . .
points for being the first in with that comment :P
I'm surprised it wasn't the first one posted :P
I wouldn't b surprised if verizon behind this.
Yeah, because Verizon has a major presence in Australia...
i wouldn't be surprised if apple was behind this
I wouldn't be surprised if Rick Astley was behind this.
I would be extremely surprised if a hacker was behind this.
I wouldn't be surprised if you were involved in this. Yes, you. No, not someone else reading this. You.
(now when the hacker reads through the comments he'll think I'm on to him c:)
If those 4 iPhones are jailbroken with SSH enabled and the default password (especially after reading this post), then you deserved to be hacked.
Totes woke up to this today.
i learnt my lesson.
Why? It is the first iPhone worm, it only affects jailbroken phones and it rickrolls your handset. Headline seems spot-on to me.
psh, shouldve done it to bananaphone
ring ring ring ring ring ring ring bananaphoneee
simbr-
you mean it only affects jailbroken iphones with ssh installed with the default password in australia
Heyyyyyyyyy, that video's not about gardening!
But if this doesn't happen, how many iPhones do you have?
that's too bad for all you jailbreaking douches :)
Yeah, well, that's because everyone who was a good little apple minion and didn't jailbreak their iPhone can't be accesed through the internet by hackers.
The same way that people without cars can't be carjacked.
Never gonna give you up,
never gonna drop your call
OT ftw
heyy apple i think you should provide iphone user a anti-virus also dont be monopoly like microsoft or pay for it like microsoft is paying for his image now..
the most action rick astley has seen in years!
You can always install sbsettings and turn ssh off when ur not using it.. i dont remember if the ssh toggle comes installed with sbsettings but u can always install it after.
You may have 4 iPhones but that does not matter. For you see, I have 3 PS3's.
What should be the fate for all those who jailbreak and pirate apps then?
lol
Can anyone plz do thing to Android too?
We need rick rolls.
Congratz for getting raped in the A$$ for $400 a month by at&t.