The Mac Observer

This is an iPod Observer article.

ikee Worm Rickrolls Jailbroken iPhones

November 9th, 2009 at 8:49 AM - News by Jeff Gamet

Owners of jailbroken iPhones in Australia are getting a bit of a surprise thanks to hackers that released a worm that "Rickrolls" them by installing a new wallpaper with Rick Astley's face. Only iPhone owners that hacked their iPhone to install unauthorized third-party apps and also failed to change their default password after installing SSH are affected, according to the security research firm Sophos.

The worm works by trying to find other jailbroken iPhones on the same cell phone network. If the jailbroken iPhones are still set with their default SSH password, the worm installs itself and changes the wallpaper to a photo of 80's singer Rick Astley and the text "ikee is never going to give you up."

ikee Image Courtesy of Sophos

The words and photo are a play on the online joke known as "Rickrolling," where someone is tricked into clicking a link that shows a video or Mr. Astley singing "Never Gonna Give You Up."

It appears that at least four variants of the worm have been written so far, and they don't do anything other than install the Rick Astley wallpaper. Since all four variants are available in the wild, however, there is the possibility that someone could add a more malicious payload to the code.

"Other inquisitive hackers may also be tempted to experiment once they read about the world's first iPhone worm. Furthermore, a more malicious hacker could take the code written by ikee and adapt it to have a more sinister payload," said Sophos's Graham Cluley.

This marks the second incident where someone took advantage of the default SSH password on jailbroken iPhones. Last week jailbroken iPhone owners in the Netherlands started seeing a message appear on their screens from a hacker wanting €5. That hack appeared to work like the new ikee hack, too.

These hacks work only on jailbroken iPhones, so unmodified iPhones won't be affected. Users that do jailbreak their iPhones should change the default SSH password to avoid the worm, too.

Since many iPhone owners don't understand the potential security risks involved with jailbreaking, however, there will likely be a large base of phones for hackers to target. "My prediction is that we may see more attacks like this in the future," Mr Cluley said.

  • Related Entries
  • Email This
  • Tweet This
  • Jeff Gamet on Twitter

7 Observer Comments

With sample code available on the Internet, it’s pretty likely that there’ll be plenty copy cat hackers that try their hand at modifying the ikee worm. If you don’t understand what jailbreaking is, aren’t familiar with SSH, and don’t feel comfortable with the Unix command line, it’s a good idea to stick with apps that are available at Apple’s App Store and leave the unauthorized apps that require jailbreaking to someone else.

A worm with a sense of humor. A sick one, but still. I chuckle a bit.

The next idiot who goes on a rant about the “injustice” of the Apple application approval process needs the image of Rick Astley tattooed on his/her forehead!

I am so ambivalent on this one

Worms are bad.
This one really does not damage the system.
Worms are bad.
People did leave themselves open to this sort of thing by jailbreaking.
Worms are bad.
It does have a sick humor about it.
Worms are bad.
This is a good warning to users without real harm.

Maybe it will finally show those people who STILL think jailbreaking is a good thing that it’s not such a great idea after all (yes I’m talking to you Mr. Landau). wink

aybe it will finally show those people who STILL think jailbreaking is a good thing that it’s not such a great idea after all (yes I’m talking to you Mr. Landau).

Bear in mind that jailbreaking alone doesn’t make you vulnerable to the worm (you have to separately enable SSH as well - and then leave the default password in place).

More to the point, to say that this negates the value of jailbreaking is like saying that, because Apple has to release Security Updates for Mac OS X, Macs are “not such a great idea after all.”

There are a lot of things I do with systems and servers that are not a good idea for the average user. I know what I’m doing. I would put Jailbreaking in the same class. If you know the risks and know what you are doing and know the precautions you need to take then it’s cool. In this case if one has Jailbreaked (Jailbroken? What would the past tense of Jailbreak be in this case I wonder) your iPhone and activated SSH you likely are a few rungs above the average user.

No offense intended. It was mostly a snarky comment for amusement sake.

to say that this negates the value of jailbreaking is like saying that, because Apple has to release Security Updates for Mac OS X, Macs are “not such a great idea after all.”

Spot-on. A default jailbreak is not susceptible to this, and when you enable SSH you are warned that you should change your password, and even given step-by-step instructions.

The equivalent on a mac would be if every single computer came with the default password “alpine”. Guess what root password every virus in the world would try first in order to compromise a system?

Page 1 of 1 pages
Login. Need an account? Register here.



Auto-login on future visits

Show my name in the online users list

Forgot your password?

Post A Comment

Name:

Email: (will not be displayed)

Location:

URL:

  Your Comments
 @ 
<a>
Close Tags

Remember my personal information

Notify me of follow-up comments?

Submit the word you see below:
 

Recent Headlines - Updated November 22nd

Fri, 7:07 PM
Games - Soccer Sim Championship Manager 2010 Released for Mac
6:47 PM
Games - EA Publishes Original Monopoly for iPhone
6:15 PM
News - Original Apple I on Ebay for $50K, w/Letter from Steve Jobs
6:11 PM
Games - New iPhone Games: Secret of the Lost Cavern Ep 1, New DJ Nights, More
5:47 PM
Games - Star Trek D-A-C Game Headed to the Mac Next Month
4:57 PM
Product News - TidBITS Releases “Take Control of Syncing Data in Snow Leopard”
4:26 PM
John Martellaro's Blog - Particle Debris (week ending 11/20) Stationery Pads Go Poof
2:59 PM
Free on iTunes - Musée du Louvre, Art Lite, SketchBook Mobile X and More.
1:50 PM
Deal Brothers - Acer P215H bmid 21.5” Widescreen LCD Monitor:  $139.99
11:24 AM
TMO Appearances - Jeff Gamet Shares More Holiday Gift Ideas on MacJury
10:43 AM
Product News - Cocktail 4.5 for Leopard Adds QuickLook Cache Clearing
10:06 AM
News - Hack Enables Mac OS X 10.6.2 on Netbooks
 

The Mac Observer Reader Specials

  • TypeStyler For Mac OS X is Now Shipping! Download The Free Fully Functional 60 Day Tryout at www.typestyler.com
  • RamJet Memory: Mac Pro 8-core 8GB Kit $249.99, 4GB Kits $149.99! Sale on MacBook and MacBook Pro 8GB kits $497.99! New MacBook DDR3 4GB for $109.99. iMac and Mac mini 4GB Kits for $109.99! 1TB SATA Hard Drives for $109.99! Click here
  • OWC: Mercury On-The-Go FW800+USB2 up to 1.0TB. Bus Powered, no external power supply needed. Macworld ‘Editor’s Choice’, CNET ‘Very Good’ Starting from $99.97, 500GB $159.99. Click here
  • Poker Mac If you're using a Mac, then you've gotta check out Full Tilt Poker for Mac. This Full Tilt Poker bonus code does the unthinkable, it actually rewards!

  • For the latest Apple products use Ciao, a price comparison website, to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate mobile phones like the Apple iPhone.

  • Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.
  • Buy Stuff, Support TMO!
  • __________
  • Macworld Expo 2010 Hotel Deal
  • TMO on Twitter!

Apple Stock Quote

  • AAPL: $199.92. Change: -0.59.
  • (Prices delayed up to 20 minutes.)
  • Discuss in our Apple Finance Board

Hot Topics

What's the buzz? These articles have TMO readers talking.

TMO Express

Join the TMO Express Daily Newsletter to get the latest Mac headlines in your e-mail every weekday. Find out more!

Top Deals From DealBrothers.com

Recent Features

Get the latest installments of TMO Columns, Podcasts, & Blogs.