50 likes | 151 Views
Securing your Jail broken IPhone. iPhone Worm. An iPhone worm has started jumping between jailbroken devices, taking advantage of users who have replaced the phone's software but failed to create a new root password
E N D
iPhone Worm • An iPhone worm has started jumping between jailbroken devices, taking advantage of users who have replaced the phone's software but failed to create a new root password • The worm, dubbed “Ikee,” replaces the phone's wallpaper with a picture of Rick Astley • Currently there are four known variants of this worm in the wild. None to date that are considered to be “extremely nefarious”
How it works…. • When an iPhone’s default OS is jailbroken an SSH service is started on the phone and is continuously running. • Knowing the IP address range for ATT an attacker can scan the net block for the open SSH port and then try and connect using the known default username and password. • Username: root • Password: alpine • One of the IP address blocks for ATT: • AS20057 AT&T Wireless Service • 166.128.0.0 - 166.255.255.255 • The “Ikee” worm by default scans the known netblock for the SSH service and then attempts to login to the device and change the background.
How to Secure your JailbrokeniPhone • Grab your favorite SSH program • SSH to your phone • Note If you haven't SSH to your phone before it may take a while, after the wait there might be a warning about a key fingerprint just accept and Login using username "root" and password "alpine"…. If your lost here grab a hammer and smack your self over the head. • You should now be at terminal screen where you need to change your passwd to do so type passwd and you will be prompted to change it. DO IT DO IT…..