New iPhone worm is malicious, but "isolated" for now
Mon Nov 23, 2009 9:36AM EST
See Comments (6)
The first iPhone worm was little more than a prank, but this new one—"isolated" in the Netherlands for now—attempts to steal the victim's online banking information.
According to the Beeb, the new worm targets customers of Dutch bank ING, with infected phones redirecting the iPhone's browser to a fake ING site designed to swipe the usernames and passwords of unsuspecting users.
That's the bad news. The good news: It seems that this new iPhone worm is "fairly isolated and specific to the Netherlands" for now, an F-Secure spokesman told the BBC, and it appears the number of infected phones is only "in the hundreds."
That said, the expects at F-Secure warn that the worm could spread from one iPhone to another over a shared Wi-Fi hotspot.
So, who's behind the new iPhone attack? That's still unknown, although AppleInsider notes that the botnet-like worm, once ensconced in a host iPhone, communicates with "a Web-based command and control center based in Lithuania."
The worm comes on the heels of the "ikee" worm, an innocuous little bugger that did little more than change an iPhone's wallpaper to a picture of 80's pop singer Rick Astley. The 21-year-old creator of the worm said he was "just poking fun" and was "hoping waking [sic] people up a little" about keeping their jailbroken iPhones more secure.
Both the "ikee" worm and this latest specimen should serve as a warning to anyone with a jailbroken iPhone who hasn't bothered to change their default SSH password. (SSH is a service that allows for remote access to—and control of—a networked device, like an iPhone.)
The moral of the story: If you're an iPhone jailbreaker with SSH installed, and your SSH password is still "alpine," do yourself a favor and change it, pronto.
Related:
New iPhone worm can act like botnet say experts [BBC News]
Top 5 Posts
More About Cell Phones
Comments on New iPhone worm is malicious, but "isolated" for now
Post a Comment
Join in the discussion. Here you'll see the comments in the order they were posted.
-
2 Posted by nerd160 on Mon Nov 23, 2009 11:30AM EST Report Abuse
I think "IMG" needs to be changed to "ING". =)
-
3 Posted by ytech_patterson on Mon Nov 23, 2009 12:01PM EST Report Abuse
@nerd160: Sure does, my mistake; should be fixed soon.
-
4 Posted by jatuaia@ymail.com on Mon Nov 23, 2009 5:00PM EST Report Abuse
Apple probably released this themselves to scare you from jailbreaking your iphone. LOL. Good thing the average user has no clue what SSH is or how to use it. Ignorance is bliss! On another note, if your iPhone is "jailbroken" and you do have the Open SSH app -- not only do you have to worry about this virus, you have to worry about the script kiddies, hackers, and other curious minds who would love to pry into your iphone. Take Patterson's advice NOW and change your SSH password from "alpine".
-
5 Posted by jminnich21 on Wed Nov 25, 2009 10:12AM EST Report Abuse
apple----- has been bragging about not being attacked for years now, it wouldn't surprise me one bit if the have been behind alot of it along just like this probably is. Between them and all the anti-virus companies they have the virus and worm market cornered. Think about it what better way to prosper then to create the necessity!!!
Sponsored Links
My Tech
Please enable your browser's cookies to activate the My Tech column.
Also on Yahoo! Tech
| Computers | Home Office | Wi-Fi & Networking | Phones & PDAs | Cameras & Camcorders | TV & Home Theater | Portable Audio |
|---|---|---|---|---|---|---|
1 Posted by sirkay1995 on Mon Nov 23, 2009 11:26AM EST Report Abuse
Deep down we all knew this would happen because this is what happens when there is a wildly populer device. this is pretty much the only thing that could help destroy the iphone