Never miss an update Follow AppleInsider
Monday, November 09, 2009, 07:50 am
First-known iPhone worm 'Rickrolls' jailbroken Apple handsets
The iPhone's first worm -- a playful, wallpaper-changing prank that only affects jailbroken phones -- could be a sign of more dangerous things to come.A hacker who identifies himself as "ikex" created the worm, which changes the user's wallpaper to a picture of 1980s pop star Rick Astley, who sang the 1987 hit "Never Gonna Give You Up." The software includes the message: "ikee is never gonna give you up."
The term jailbreaking refers to a hack that allows users to run software not approved by Apple on the iPhone. It can grant users the ability to install custom wallpapers and themes, enable tethering, or unlock the handset for use on a non-approved carrier.
The ikex worm is simply a prank known as "Rickrolling," an Internet bait-and-switch meme when users expect to see a video on a certain topic, only to find themselves watching Astley's cheesy 1987 music video. According to Forbes, the worm does nothing malicious.
"The world's first iPhone worm is also hardly a true criminal exploit," the report said. "Instead, it seems to be half warning, half prank. Ikee's author, who identifies himself or herself as 'ikex' in the worm's source code, also wrote in the code that "People are stupid, and this is to prove it so," adding that users should read their phones' manuals."
For now, the worm is said to be spreading among jailbroken iPhones in Australia. It affects only users who did not change their default SSH password, which allows file transfers between phones.
"It's not that hard, guys," ikex wrote in the source code. "But hey who cares its only your bank details at stake."
Mikko Hyppönen, researcher with F-Secure, discussed the worm on his company's Web site. It lets users know how to change their root password, and also warns that the software could become more dangerous.
"The creator of the worm has released full source code of the four existing variants of this worm," he said. "This means that there will quickly be more variants, and they might have nastier payload than just changing your wallpaper or might try password cracking to gain access to devices where the default password has been changed."
This summer, Apple quickly fixed a text messaging exploit that could have affected all iPhones. The exploit took advantage of the fact that SMS can send binary code to a phone. That code is automatically processed without user interaction, and can be compiled from multiple messages, allowing larger programs to be sent to a phone.
The exploit, discovered by security researcher Charlie Miller, exposed the iPhone completely, giving hackers access to the camera, dialer, messaging and Safari.
Miller also, back in 2007, discovered the iPhone's first security flaw. It allowed malicious Web sites to take advantage of flaws within the Safari Web browser.
On Topic: iPhone
- IDC gives Apple 9% of Chinese smartphone market, double the prevailing growth rate
- New patent lawsuit targets Apple over iPhone 5's call forwarding feature
- Researchers crack default iPhone Personal Hotspot passwords in under a minute
- Leaked schematics reveal what case makers expect Apple's low-cost iPhone & 'iPhone 5S' will look like
- High resolution images claim to show 'iPhone 5S' and iPhone 5 display assemblies side-by-side
Previous Comments View All
Quote:
Originally Posted by Quadra 610 
jailbreaking = making your own iPhone vulnerable, deliberately. It's self-hacking.
So where's the risk to the average user?
How is it really news that people who hack their iPhones (against Apple's recommendations) are getting into trouble because of it? Pehaps it's useful to warn them of the obvious . . .
jailbreaking = making your own iPhone vulnerable, deliberately. It's self-hacking.
So where's the risk to the average user?
How is it really news that people who hack their iPhones (against Apple's recommendations) are getting into trouble because of it? Pehaps it's useful to warn them of the obvious . . .
i know...when did ai become apple iphone hacker digest? jeez...
Quote:
Originally Posted by Quadra 610
jailbreaking = making your own iPhone vulnerable, deliberately. It's self-hacking.
So where's the risk to the average user?
How is it really news that people who hack their iPhones (against Apple's recommendations) are getting into trouble because of it? Pehaps it's useful to warn them of the obvious . . .
jailbreaking = making your own iPhone vulnerable, deliberately. It's self-hacking.
So where's the risk to the average user?
How is it really news that people who hack their iPhones (against Apple's recommendations) are getting into trouble because of it? Pehaps it's useful to warn them of the obvious . . .
This is most definitely the #1 reason not jailbreak the iPhone.
Followed closely by "stability issues".
Quote:
Originally Posted by doyourownthing
i know...when did ai become apple iphone hacker digest? jeez...
i know...when did ai become apple iphone hacker digest? jeez...
Definitely, and they even forgot to post the video!
Quote:
Originally Posted by Quadra 610
jailbreaking = making your own iPhone vulnerable, deliberately. It's self-hacking.
So where's the risk to the average user?
How is it really news that people who hack their iPhones (against Apple's recommendations) are getting into trouble because of it? Pehaps it's useful to warn them of the obvious . . .
jailbreaking = making your own iPhone vulnerable, deliberately. It's self-hacking.
So where's the risk to the average user?
How is it really news that people who hack their iPhones (against Apple's recommendations) are getting into trouble because of it? Pehaps it's useful to warn them of the obvious . . .
Quadra, I agree with you, but I'd say that there is a large portion of the jailbreaking community who don't understand the nature of Jailbreaking. They see it as "unlocking what is rightfully theirs" and don't understand that to do so, you have to break many of the locks that Apple has put in there for good reason.
I have many friends who ask me about jailbreaking and describe it as the best thing ever. I, as a developer, explain why the locks are there, and then it dawns on them that their phone is also perhaps the most invasive device they have, can compromise your security, and could become just as vulnerable to viruses as Windows if the locks didn't exist.
There seems to be a good portion of current users who like to unlock their devices because its "cool" and "puts you in control" but fail to grasp what those hacks also allow in.
Quote:
Originally Posted by AppleInsider
The iPhone's first worm -- a playful, wallpaper-changing prank that only affects jailbroken phones -- could be a sign of more dangerous things to come.
A hacker who identifies himself as "ikex" created the worm, which changes the user's wallpaper to a picture of 1980s pop star Rick Astley, who sang the 1987 hit "Never Gonna Give You Up." The software includes the message: "ikee is never gonna give you up."
The term jailbreaking refers to a hack that allows users to run software not approved by Apple on the iPhone. It can grant users the ability to install custom wallpapers and themes, enable tethering, or unlock the handset for use on a non-approved carrier.
The ikex worm is simply a prank known as "Rickrolling," an Internet bait-and-switch meme when users expect to see a video on a certain topic, only to find themselves watching Astley's cheesy 1987 music video. According to Forbes, the worm does nothing malicious.
"The world's first iPhone worm is also hardly a true criminal exploit," the report said. "Instead, it seems to be half warning, half prank. Ikee's author, who identifies himself or herself as 'ikex' in the worm's source code, also wrote in the code that "People are stupid, and this is to prove it so," adding that users should read their phones' manuals."
For now, the worm is said to be spreading among jailbroken iPhones in Australia. It affects only users who did not change their default SSH password, which allows file transfers between phones.
"It's not that hard, guys," ikex wrote in the source code. "But hey who cares its only your bank details at stake."
Mikko Hyppönen, researcher with F-Secure, discussed the worm on his company's Web site. It lets users know how to change their root password, and also warns that the software could become more dangerous.
"The creator of the worm has released full source code of the four existing variants of this worm," he said. "This means that there will quickly be more variants, and they might have nastier payload than just changing your wallpaper or might try password cracking to gain access to devices where the default password has been changed."
This summer, Apple quickly fixed a text messaging exploit that could have affected all iPhones. The exploit took advantage of the fact that SMS can send binary code to a phone. That code is automatically processed without user interaction, and can be compiled from multiple messages, allowing larger programs to be sent to a phone.
The exploit, discovered by security researcher Charlie Miller, exposed the iPhone completely, giving hackers access to the camera, dialer, messaging and Safari.
Miller also, back in 2007, discovered the iPhone's first security flaw. It allowed malicious Web sites to take advantage of flaws within the Safari Web browser.
[ View this article at AppleInsider.com ]
The iPhone's first worm -- a playful, wallpaper-changing prank that only affects jailbroken phones -- could be a sign of more dangerous things to come.
A hacker who identifies himself as "ikex" created the worm, which changes the user's wallpaper to a picture of 1980s pop star Rick Astley, who sang the 1987 hit "Never Gonna Give You Up." The software includes the message: "ikee is never gonna give you up."
The term jailbreaking refers to a hack that allows users to run software not approved by Apple on the iPhone. It can grant users the ability to install custom wallpapers and themes, enable tethering, or unlock the handset for use on a non-approved carrier.
The ikex worm is simply a prank known as "Rickrolling," an Internet bait-and-switch meme when users expect to see a video on a certain topic, only to find themselves watching Astley's cheesy 1987 music video. According to Forbes, the worm does nothing malicious.
"The world's first iPhone worm is also hardly a true criminal exploit," the report said. "Instead, it seems to be half warning, half prank. Ikee's author, who identifies himself or herself as 'ikex' in the worm's source code, also wrote in the code that "People are stupid, and this is to prove it so," adding that users should read their phones' manuals."
For now, the worm is said to be spreading among jailbroken iPhones in Australia. It affects only users who did not change their default SSH password, which allows file transfers between phones.
"It's not that hard, guys," ikex wrote in the source code. "But hey who cares its only your bank details at stake."
Mikko Hyppönen, researcher with F-Secure, discussed the worm on his company's Web site. It lets users know how to change their root password, and also warns that the software could become more dangerous.
"The creator of the worm has released full source code of the four existing variants of this worm," he said. "This means that there will quickly be more variants, and they might have nastier payload than just changing your wallpaper or might try password cracking to gain access to devices where the default password has been changed."
This summer, Apple quickly fixed a text messaging exploit that could have affected all iPhones. The exploit took advantage of the fact that SMS can send binary code to a phone. That code is automatically processed without user interaction, and can be compiled from multiple messages, allowing larger programs to be sent to a phone.
The exploit, discovered by security researcher Charlie Miller, exposed the iPhone completely, giving hackers access to the camera, dialer, messaging and Safari.
Miller also, back in 2007, discovered the iPhone's first security flaw. It allowed malicious Web sites to take advantage of flaws within the Safari Web browser.
[ View this article at AppleInsider.com ]
This is the same Charlie Miller that compromised the Mac in 2008 Pwn 2 Own in 2 minutes.....
Then did it again in Pwn 2 Own 2009 with the same Safari exploit but this time it took him 10 seconds.......
If you JB your iphone it will put it at risk along with giving it some additional features.
I guess if you are going to JB then change the default password on your iphone!!!
Quote:
Originally Posted by PG4G
Quadra, I agree with you, but I'd say that there is a large portion of the jailbreaking community who don't understand the nature of Jailbreaking. They see it as "unlocking what is rightfully theirs" and don't understand that to do so, you have to break many of the locks that Apple has put in there for good reason.
I have many friends who ask me about jailbreaking and describe it as the best thing ever. I, as a developer, explain why the locks are there, and then it dawns on them that their phone is also perhaps the most invasive device they have, can compromise your security, and could become just as vulnerable to viruses as Windows if the locks didn't exist.
There seems to be a good portion of current users who like to unlock their devices because its "cool" and "puts you in control" but fail to grasp what those hacks also allow in.
Quadra, I agree with you, but I'd say that there is a large portion of the jailbreaking community who don't understand the nature of Jailbreaking. They see it as "unlocking what is rightfully theirs" and don't understand that to do so, you have to break many of the locks that Apple has put in there for good reason.
I have many friends who ask me about jailbreaking and describe it as the best thing ever. I, as a developer, explain why the locks are there, and then it dawns on them that their phone is also perhaps the most invasive device they have, can compromise your security, and could become just as vulnerable to viruses as Windows if the locks didn't exist.
There seems to be a good portion of current users who like to unlock their devices because its "cool" and "puts you in control" but fail to grasp what those hacks also allow in.
I agree with you that most people that JB their phones do it because they think it will make them "cool".
But they have no idea what they are doing.......
It does open the phone up to a different set of vulnerabilities!
How many times in the press will they fail to mention the 'jailbroken' part, or downplay it completely..?
Here we have the difference between Android ie Windows, and iPhone ie Mac....
There's something, which I just fail to understand. It's explained thousands of times and crystal clear to everyone, that being a regular legal owner of locked iPhone guarantees the smooth and issueless function of the device and decent assistance at any moment. App Store has 100 times richer collection of applications, than any illegal stores do. And people jailbreak "to be cool"... Stupid, no?
Quote:
Originally Posted by AppleInsider
Only to find themselves watching Astley's cheesy 1987 music video.
Only to find themselves watching Astley's cheesy 1987 music video.
What's with all the hating on Rick Astley I've been seeing in various blogs. Rick is da bomb!
Latest Apple Headlines
-
Analyst recants claim that Apple will add Retina display to iPad mini before 2014
~6 minutes ago -
First benchmarks for redesigned Mac Pro reportedly appear online
~16 minutes ago -
Best Buy recalls 5,100 third-party MacBook batteries for fire risk
~1 hour ago -
Twitter heat map shows iPhone use by the affluent, Android by the poor
~1 hour ago -
IDC gives Apple 9% of Chinese smartphone market, double the prevailing growth rate
~3 hours ago - more...
Want to write for AppleInsider? Submit your application now!
| Model | White | Black | |
|---|---|---|---|
| iPad mini (WiFi only) | |||
| 16GB WiFi |  |
$329.00 | $329.00 |
| 32GB WiFi | |
$429.00 | $429.00 |
| 64GB WiFi | |
$529.00 | $529.00 |
| iPad mini (WiFi + 4G) | |||
 |
 |
 |
|
| 16GB 4G White | $459.00 | $459.00 | $459.00 |
| 32GB 4G White | $559.00 | $539.99 | $559.00 |
| 64GB 4G White | $659.00 | $659.00 | $629.99 |
| 16GB 4G Black | $459.00 | $459.00 | $459.00 |
| 32GB 4G Black | $559.00 | $539.99 | $539.99 |
| 64GB 4G Black | $659.00 | $659.00 | $629.99 |
Lowest Prices Anywhere!
| Model | Price | You Save |
|---|---|---|
| 11"1.3GHz/4GB/128GB | $964.18* | $34.82 |
| 11" 1.3GHz/8GB/128GB | $1,061.18* | $37.82 |
| 11" 1.3GHz/8GB/256GB | $1,255.18* | $43.82 |
| 11"1.7GHz/8GB/128GB | $1,206.68* | $42.32 |
| 11"1.7GHz/8GB/256GB | $1,400.68* | $48.32 |
| 11" 1.7GHz/8GB/512GB | $1,691.68* | $57.32 |
| 13" 1.3GHz/4GB/128GB | $1,061.18* | $37.82 |
| 13" 1.3GHz/4GB/256GB | $1,255.18* | $43.82 |
| 13" 1.3GHz/8GB/256GB | $1,352.18* | $46.82 |
| 13" 1.3GHz/8GB/512GB | $1,643.18* | $46.82 |
| 13" 1.7GHz/8GB/256GB | $1,497.00* | $52.00 |
| 13" 1.7GHz/8GB/512GB | $1,788.68* | $60.32 |
* price with Promo Code:
APPLEINSIDER01
|
||
| Click for even more configurations | ||
jailbreaking = making your own iPhone vulnerable, deliberately. It's self-hacking.
So where's the risk to the average user?
How is it really news that people who hack their iPhones (against Apple's recommendations) are getting into trouble because of it? Pehaps it's useful to warn them of the obvious . . .