Dangerous Worm Targets Jailbroken iPhones

By Geoff Duncan November 23, 2009

Yet another worm has appeared that targets jailbroken iPhones and iPod touch devices, using the same default password vulnerability in SSH remote login software to crawl its way into the devices. However, unlike the two previous worms exploiting the vulnerability, this worm protets itself by replacing the vulnerable SSH software, has the capability to steal sensitive data, and can update itself via a botnet-like command-and-control architecture to add new malevolent features.

Apple-iphone-sg3 — Image used with permission by copyright holder

As with previous iPhone/iPod touch worms, the only devices potentially vulnerable are those that have been “jailbroken” to use unapproved applications or to operate on mobile carriers other than Apple’s selected iPhone partners. The worm exploits a vulnerability in the default rool password used for the SSH remote login software; users who have jailbroken their devices can protect themselves by changing their default SSH root passwords. Users who have not jailbroken their devices are not vulnerable.

According to security firm Sophos,the new worm uses an architecture like a typical PC botnet, enabling the worm’s creators to gather data and send updates to infected devices. The worm “configures two startup scripts, one to execute the worm on boot-up, and the other to create a connection to a Lithuanian server (HTTP) to upload stolen data and cede control to the bot master.” The worm assigns each infected device a unique ID number, potentially enabling the worm’s creators to target compromised devices individually.

The worm also changes the default root password on the iPhone or iPod touch, making it impossible for users to retake control of their devices without reinstalling Apple’s default firmware. The worm currently targets IP ranges belonging to Dutch and Australian ISPs, as well as T-Mobile. One impact of the worm is that it seriously depletes battery life in infected devices because the worm produces so much network traffic. The worm may also be related to so-called Banker Trojans: it appears to look for two-factor authentication requests from banking systems that send one-time passwords to mobile users via SMS.

Editors' Recommendations

Topics

Former Digital Trends Contributor

Geoff Duncan writes, programs, edits, plays music, and delights in making software misbehave. He's probably the only member…

Mobile

Nomad’s new iPhone case and Apple Watch band may be its coolest yet

Nomad Glow 2.0 Sport Case and Apple Watch Sport Band in daylight.

Though the world of Apple accessories is a dime a dozen, one of the better brands that you can buy is Nomad. Nomad has a variety of amazing leather Apple Watch bands and cases, as well as non-leather options, too. In August 2023, Nomad released a one-of-a-kind Glow in the Dark Apple Watch band that sold out in about 12 hours.

Since that Glow in the Dark band was a limited edition, no one was sure if Nomad was going to re-release it, and this explains the high resale prices you’ll find on eBay. But Nomad just released the Glow 2.0 Apple Watch Sport Band as well as a new Glow 2.0 Sport Case for the iPhone 15 Pro and iPhone 15 Pro Max. And, yes, they're just as wonderful as before.
The new and improved Glow 2.0

Mobile

An Apple insider just revealed how iOS 18’s AI features will work

An iPhone 15 Pro Max laying face-down outside, showing the Natural Titanium color.

As Apple’s Worldwide Developers Conference (WWDC) inches closer, the chatter around the company’s AI work has taken a feverish turn. In a year when smartphone and computing brands have focused solely on AI niceties, Apple has been uncharacteristically silent around the AI hype — eliciting concern about the brand missing the train.

However, a new report has given us a closer look at how Apple's AI dreams may come to fruition with its iOS 18 update later this year.
New details on Apple's AI plans

Mobile

Best iPhone deals: Save on iPhone 15, iPhone 15 Pro Max and more

iPhone 13 Pro in blue.

The Apple iPhone is likely the most popular smartphone of all time, and even older models are still seeing impressive sales. This popularity can make it difficult to find iPhone deals, but there are quite a few hanging around out there right now and some of them could be considered among the best phone deals currently taking place. And while you can always shop refurbished iPhone deals to ensure some savings, we think we’ve found some iPhone deals worth taking a look at right now. They include the newest model iPhone 15, so whether you’re looking for the latest and greatest or an iPhone that simply gets the job done, read onward and start shopping the best iPhone deals going on right now.
iPhone 15 128GB (AT&T) — $730, was $830 (plus up to $700 off w/ trade-in)

The Apple iPhone 15 finally brings with it Dynamic Island which we’ve only previously seen on the Pro range. It’s a real game changer at times and is very convenient. Alongside that, the Apple iPhone 15 has the Ceramic Shield front to keep it more protected while its 6.1-inch Super Retina XDR display promises to be up to two times brighter than the iPhone 14 in the sun. There’s also a 48MP main camera with 2x telephoto lens to help you take great shots. The A16 Bionic chip has plenty of processing power to aid with software adjustments.