Another Worm Attacks Jailbreakers

Another Worm Attacks Jailbreakers  | read this item

When the first ever worm broke into jailbroken iPhone handsets, there was havoc created among iPhone users. It messed around with the screen background. This was not long ago. Back again folks at security.nl have found another worm on the move, and this time its back again to attack jailbroken phones. The worm search for the Secured Shell Password (SSH), and if you thought that was it, there is more. It also attacks your iPhone via the Wi-Fi system and shares all of your important information like bank details etc. Chester Wisniewski of Sophos Security Research mentioned that this was a very harmful worm.

It’s almost the same system that this worm works on like the ‘ike_x” worm. This worm again attacks only jailbroken phones and leaves the locked ones alone. It is said to configure itself to the boot on the systems startup device and then connects to the HTTP server and then uploads all the data that has been stolen. However the security services have found out that the IP address from where the web based command and control centre originates has also been identified. Infact it is said to be 92.61.38.16 which is from Lithuania.

Before the worm enters to take away your files it changes your password to “ohshit” and then puts in a unique ID. The main regions that have been affected by the virus are Australia, Netherlands and even those countries where the T-Mobile servers are infected. It’s not the 3G networks that are responsible in the spread of the virus, but to everyone’s surprise it is through the Wi-Fi networks.

Topics: iPhone, Jailbreakers, virus, worm