Nov 08 2009
I knew it had to be just a matter of time before someone took advantage all of the jailbroken iPhones and created another malicious tool to pwn them. This time the attacker has been RickRolling iPhone users, changing the background on the phones to a picture of Rick Astley. The worm is fairly simple and uses the default password set up on the SSH daemon when you jailbreak your iPhone, so if you’ve taken the 5 minutes required to change the password, you’re perfectly safe from the effects of the worm. Of course, it’s written by someone in Australia going by the name of ‘ikee’ and generally has only been hitting phones down under, but given that the ikee code was released, along with an interview, it’s only a matter of time before someone else creates a new version that does something much nastier than putting up a picture of an 80’s pop icon. I can think of a couple of people I know who’d be willing to put pictures of goats or lemons or things with spelling close to that on your iPhone. And those are just the people who are there to be playful.
I’ve said it a number of times in the last week, but it bears saying again: If you’ve jailbroken your iPhone, change your iPhone’s root password immediately!
By the way, I don’t know anyone who’s jailbroken their iPhone in order to access pirated software, everyone I’ve talked to did it so they could install software that unlocks capabilities that Apple doesn’t want us to have in existing apps, for example tools like xGPS and SBSettings.