Skip to navigation
   
Davey Winder's Blog
RSS

Warning: iPhone worm starts RickRolling

By Davey Winder in Editorial

Posted in Blog, Mobile Phones, Security, Apple on November 8, 2009 at 10:52 pm

Permalink | Author Profile

It was inevitable that the iPhone would eventually fall victim to the bad guys, and that inevitability has been realised as users of Jailbroken iPhones are starting to report being infected with an iRickRolling worm.

The ‘ikee’ worm was first spotted over the weekend in Australia, with users posting to online forums that their Jailbroken 3GS iPhones had changed from the default wallpaper to pictures of 80’s pop singer Rick Astley, he of ‘Never Gonna give You Up’ fame and the very same man who was the focus of the RickRolling Internet meme that started in 2007 and spread like wildfire during 2008.

One iPhone user reported that the wallpaper was actually accompanied by the text: “ikee is never going to give you up”.

Although there are, as of yet, no confirmed reports of the worm spreading outside of Australia, security researchers are sure it is perfectly capable of spreading to any Jailbroken iPhone as long as the default password has not been changed after installing SSH to the device.

Graham Cluley of Sophos says “Once in place, the worm appears to attempt to find other iPhones on the mobile phone network that are similarly vulnerable, and installs itself again”.

Unfortunately, analysis by researchers at Sophos Labs would suggest that there at least four variants of the worm code so far, the latest looking to hide behind a filepath which might suggest it is connected to the Cydia application.

Nothing about the worm suggests it has been written with malice in mind, and comments in the worm code itself tend to support this, and the whole Rick Astley thing is annoying rather than malicious. However, it must not be forgotten that this worm is accessing a device without permission and changing data upon it without permission, and breaking the law in many countries as a result.

It should also not be forgotten that as code variants continue to appear it is only a matter of time, and probably not that much of it, before a malicious party uses it to deliver a payload that is a whole lot more troublesome than Rick Astley.

There is no danger to iPhone users who have not Jailbroken their devices, nor to those who have changed the password from the SSH default of Alpine.

12345
Rated: 73.33% (3 votes)
Loading ... Loading ...

Previous Post | Next Post

 
 
Comments

Pingback by IT PRO: Blogs: Davey Winder: Is business ready for the iPhone? - March 28, 2010 on 12:42 pm

[…] continuing use of iPhones (and other smartphone devices) within the enterprise could quickly see iPhone security become a stellar security problem. Not yet rated  Loading […]

Make a comment

* required

* required

We stop spam using reCaptcha.
Type the words below and click Submit Comment.

   
Tag cloud

CAPTCHA meme web Blog SSL students network biometrics Palm OCR Education Addiction MSN hardware Scotland web 2.0 Health The Federation Google Paris Hilton Texas Instruments information Opinion Banned man-in-the-middle IT gadgets broadband dumb iPod Europe Mobile Phone App Store scan development innovation Enterprise Firefox Olympics Project Voice Top 10 gaming Yahoo iPad ROFL Government VeriSign AMD Eee crime virtualisation Research Military Kindle Hack home console Vista exploit privacy virus Porn Music computing patch management banking size GMail wifi black hat Video carbon copy Study economics e-commerce Programming patent Gadget data Madness payments migration Blogging Trojan museum lawsuit botnet millions hypervisor Notebooks Funny Nintendo Marketing FBI service nightmare Flash Mobile Phones InfoSec VM Energy law hacker Amazon disclosure fool news Press NASA RATM spam Google Earth survey adware scam IDC Spotify trust management IBM Analysis Game e copyright betting Conference books Trousers technology family Dell Big Brother Sony Pirate Finjan HP Kaspersky Browser monetisation iPhone 3G MSNBC acquisition Army YouTube spending world of warcraft archiving Mars work smartphone Apple statistics DNS email ISP Harry Potter virtual world Palm Pre security IP Tesco worker USA Russia Application Battery terrorism Internet Explorer ASUS Internet Browsers Review Architecture malware Geeks scareware HPC data protection fraud Texting XP Web Development Jesus Phone Beta Parenting surveys Adobe virtual machine Android staffing BSI OS Windows prison Kin Data Centre cloud standards Facebook office help Noro Twitter politics Patents computers global Zango Backlash Kill Switch debian chips digitise graphics rootkits Cisco Silverlight Jobs Performance computing Michael Jackson ecommerce Digg Intel mail Recall stupid sick Eee PC Psion memory economy encryption MiniBook Sex search Licensing EU storage Space China MessageLabs Deal Meh Networks Linux Steve Ballmer desktop environment App SMS hacking poll avatar symantec recession fake code snooping tech Retail campaign workplace Netbook PS3 School Supercomputer payment server services shopping Steve Jobs hoax Rant admin Death ISPA remote Gartner ID Theft outsourcing report worm hubdub credit card fraud eBook parental control printing VPN theft NBC fun christmas Microchip Advertising Apps Windows Phone 7 Series BOFH phishing Business holidays Top 500 Software games open source banks social networking compromise mobile President money library transactional security universe RAM Children support Nexus Windows 7 Microsoft Obama Gateway credit crunch computer earth hour Employment Guardian Psychic Election iPhone Ballmer football documentation science McKinnon GSM second life policy Digital Footprint Bill Gates Mafia Media Johnny Depp green teleworking xmas Experiment Developers Acer remote working iPhone 3GS stupidity linkedin productivity Lotus Rumour tax
Advertisement

   
Archives

   
Most commented posts

   
Highest Rated Blog Posts

Advertisement