A New iPhone Malicious Worm is Out
Posted on 23. Nov, 2009 in IPhone
The new worm is called “Duh” or “Ikee.B”, and it uses the exact same vulnerability as the first one. The fix to change the root password in the SSH application to something other than the default, which is “alpine”.
Failing to do so might result in very serious consequences. According to Sophos, Ikee.B is “designed to connect to a server in Lithuania and to follow orders from remote hackers.” It can find vulnerable iPhones on a wide range of IP addresses, including IPs in several different countries, for example the Netherlands, Portugal, Australia, Austria, and Hungary. Furthermore, it changes the root password on the iPhone to “ohshit” (as discovered by Paul Ducklin, head of technology in Sophos Asia Pacific.)
Users who haven’t jailbroken their iPhone or haven’t installed the SSH application are not affected by this vulnerability.
