Rickrolling iPhone worm is never gonna give you up

Well, this hacker has quite the sense of humor.

Reports started spreading this weekend that iPhone users in Australia had been falling victim to "ikee," a worm that replaces default wallpaper with a picture of Rick Astley, the British pop singer whose song "Never Gonna Give You Up" has gained eternal infamy thanks to the mainstreaming of the "Rickrolling" prank craze. The photo is accompanied by the message "ikee is never gonna give you up," and it's apparently quite difficult to remove. According to security firm Sophos, this is the first worm detected that targets the iPhone.

The vulnerability is pretty specific: the phones must be jailbroken in order to be affected, and it appears to spread by searching an infected phone's contacts to find other jailbroken-phone users who have installed the Unix software SSH (secure shell) but haven't yet changed their passwords from Apple's default root password, "alpine."

Sophos says that it has not heard of any occurrences of the worm outside Australia, and that while it doesn't appear to do anything worse than irritate and embarrass affected users, that it highlights the vulnerabilities that jailbroken phones face.

[Sporlo]

Dang! I fell for the vulnerabilities link! Didn't bother to check the URL before clicking XD

[tektaktyks]

lol

[Mr_fleabite]

lol, Rickroll'ed

[rationalreview]

Yes, crappy apple software to blame again.

[mose0]

LOL...

[scottjennings]

This is a non-story. This hack does not work over the cell network, and it is not ?infecting? other iPhones through the address book or any other method.

This is a Wi-Fi hack, meaning the person doing it must be on the same Wi-Fi network, and you must have jailbroken the iPhone, installed SSH, and then been dumb enough to not change the default root and user passwords.

As usual, cnet can?t bother to do the simplest research or fact checking before posting a story.

[stiff_kitten]

Oh, it is not just c|net. Many other sites such as Gizmodo and TechCrunch are not even reporting that it requires a jailbroken iPhone.

[djstewpac]

Would life be that bad if you just... laughed.

anyway, you're the one checking and then responding to this.

so if this is a non-story, well mrscottjennings, you just love wasting life.


:) love you caroline.

[macassist]

How on earth can a worm determine whether entries in an address book are for iPhones, let alone jailbroken ones? And how does even having the number give you the IP address to target? Answers - it can't and it doesn't.

The Sophos post even mentions that the worm "appears to attempt to find other iPhones on the mobile phone network" - i.e. a scanning attack similar to the one used by this Dutch hacker: http://arstechnica.com/apple/news/2009/11/dutch-hacker-holds-jailbroken-iphones-hostage-for-5.ars which relies on jailbroken iPhones running SSH with the default root password - the address book doesn't make an appearance in either case.

This sort of attack can happen via WiFi or the cellular network (the latter if the cellular provider doesn't block port 22 incoming to its devices).

Maybe reading linked sources would be a good idea, especially on stories revolving around worms and security, a field which is already rife with FUD from security vendors and pundits.

Sean

[Anhringo]

Vulnerabilities link got me, too.

[7applecores]

If I turn off my firewall I get hacked, or if I use windows too.

Or any other cracked programs tend to do similar bad things

hey Cnet, you figure cracking an OS has any negative implications?

Lol

[CrashPad63]

You buttheads dont get it. Right now 5 percent or more of your swiss cheese OS of Mac are compromised and being used for a botnet. But no this Iphone thing is not real! Stick your head in the sand.
Calssic koolaid induced response. You do know that ole Jobsy made the Iphone crippled, how in the hell do you think the Iphone has been compromised so often.

[Dalkorian]

CrashPad - bull. You lie like a cheap rug, or do you have any sources to back up your wild and totally inaccurate assertions?

LOL!

[CrashPad63]

Dalkorian, Just start looking in the deep part of the black hat world. Go ahead, you can do it. You will be suprised at what you find. You Apple koolaid swillers are so gullible. You leave your doors wide open for all to see and use attheir discretion.
But really go ahead and believe in whatever Jobsy tells you, its allright, Right???

[Mr. Dee]

Listen to me, there is absolutely nothing wrong with Rick Astley. I am big fan of Never Gonna Give You Up, She Wants to Dance with Me, Together Forever, Cry and many others. I don't know where this deep hatred for the guy comes from. He brings back a lot memories for me growing up. Lets stop and just listen the music and understand why Rick is so special. No, this is not a joke, I truly admire the music.

[Random_Walk]

We understand. You admire Windows as well, yes?

[Mr_fleabite]

Random Walk where do you get off, man.

Rick Astley is as hot now as he ever was. RA is a phenomenon unto himself with those silky smooth tonsils and 2 feet planted dance moves that rival any 80's or early 90's artist. Did you even watch the video?! Do you even realize that Mr. Astley has a slightly above average singing range. On top of all that he doesn't even look like he's able to sing the way he does, BUT HE CAN, HE'S FREAK'N RICK ASTLEY! I'm sorry sir but as you are obviously COMPLETELY blind (maybe that's why you don't like windows?) I don't think you're qualified to comment about the great Rick Astley. Good day to you sir, and you can keep your poisonous apple. ;)

[dlow]

Full story is that the phone must be jail broken and the root password for SSH must be the default password. This means that it only affects stupid people.

[rationalreview]

Or people with lives that don't have their faces in their phones 24/7 tinkering. You know, those who walk while looking at the phone with that kinked neck sort of look. Those in the breakroom sitting across from each other at the table texting each other instead of talking only to hear a little giggle from them when they both agreed on something they just texted each other was funny. Most people in the world don't mess with their technology enough to be called stupid,....STUPID. Get out of the box please.

[exNewt]

appears to spread by searching an infected phone's contacts to find other jailbroken-phone users who have installed the Unix software SSH (secure shell) but haven't yet changed their passwords from Apple's default root password, "alpine."

and you LEAVE "SSH" TURNED ON.

Y'know, I had a neighbor robbed who left their doors open with a sign saying "we're on holiday for the week"

[vmlenigma]

I jail broke my phone last night, but restored right after reading the article.
Rick Astley ? na Thanks

[solu1978]

Good for you.

[DragonStab]

You know...... posting this article gives the virus writer just what he wants. Exposure, and proof that his virus has had an effect. It will only inspire the writer of the virus to try to gain "fame" by trying something else.

I find it irresponsible to report something stupid like this since there is no real danger to the "victims" or their equipment.

[scifiend]

Why is jailbreaking being blamed for this? Its the idiot who doesn't change the root password that is the problem. I think it's true Apple can use this incident as further disinfo to validate their anti jailbreaking stance. Perfect timing!

[Raabscuttle]

Lies! LIES!!! ALL LIES!!! Apples are perfect. iPhones are perfect! PERFECT I TELL YOU!!!!

[Gold_Storm_Mac]

lol

[setjeff15081947]

He could at least have been Naked.

[wguzman2014]

Wow. My jail-broken T-Mobile USA iPhone has not been hit yet. I hope it doesn't.

[01Phyxius]

ATTENTION: BREAKING NEWS BULLETIN
This just in, STUPID PEOPLE ARE VULNERABLE TO MALWARE.
Oh wait, you just caught on?

[codenamejag]

damn, i just got hit. i'm in singapore.
is there a way to get rid of it? please help

[kool_skatkat]

You'd think that the jail breaking tool creators would at least make it safe for their users and automate the process. Unless their focus is not more security but less security if it provides more freedom.

If you loose money after jailbraking your phone, do get to sue the author of the tools?