On TV.com: 2009's Most PIRATED TV Show
BNET Business Network:
BNET
TechRepublic
ZDNet

November 3rd, 2009

iHacked: jailbroken iPhones compromised, $5 ransom demanded

Posted by Dancho Danchev @ 6:09 am

Categories: Apple, Botnets, Browsers, Complex Attacks, Hackers, Malware, Passwords, iPhone

Tags: Apple iPhone, SSH, Smart Phones, Consumer Electronics, Personal Technology, Security, Dancho Danchev

Yesterday, a “Your iPhone’s been hacked because it’s really insecure! Please visit doiop.com/iHacked and secure your phone right now!message popped up on the screens of a large number of automatically exploited Dutch iPhone users, demanding $4.95 for instructions on how to secure their iPhones and remove the message from appearing at startup.

Through a combination of port scanning and OS fingerprinting of T-Mobile’s 3G IP range, a Dutch teenager has for the first time automatically exploited a known security vulnerability introduced on jailbroken iPhones - the SSH daemon which unless modified remains running with default users root and mobile, using the same password on each and every device.

Here’s what he demanded, and how he changed his attitude following the suspension of his PayPal and the spamvertised URL:

The now taken offline site was featuring the following message:

“Dear iPhone user,

Your iPhone is not secure. That’s the reason your visiting this page, isn’t it? Well you can pay me $4,95 at my paypal account PureInfinity92@mailinator.com,  and I’ll mail you very easy instructions on how to secure your iPhone. You can also contact me at PureInfinity92@gmail.com

If you don’t pay, it’s fine by me. But remember, the way I got access to your iPhone can be used by thousands of others. And they can send text messages from your number (like I did..), use it to call (or record your calls), and actually whatever they want, even use it for their hacking activities! I can assure you, I have no intention of harming you or whatever, but, some hackers do! It’s just my advise to secure your phone (: Have a nice day!”

Following the media coverage, active discussions across popular Dutch IT forums, and the timely shut down of his PayPal account, the opportunistic and unethical pen-tester quickly changed his attitude and posted an apology followed by step-by-step guide on changing the default SSH password, which he was originally offering for a fee.

Why is this automatic exploitation not a surprise?

The exploitability of the default SSH root login combined with the ease of OS fingerprinting an iPhone’s, and the descriptive and well known 3G IP ranges for certain service providers, has already been discussed as an opportunity for automatically exploiting jailbroken iPhones running the SSH daemon with default passwords.

Dancho DanchevDancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, malware and cybercrime incident response. He's been an active security blogger since 2007, and maintains a popular security blog. See his full profile and disclosure of his industry affiliations.

Email Dancho Danchev

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 265 Talkback(s)
iamanerd - careful with the legal opinions
Under the law, merely leaving a door open to your house is NOT a public invitation to enter.

Anyone who enters through that open door without the owner's personal permission can still be prose... (Read the rest)
Posted by: dwightmoody Posted on: 11/17/09 You are currently: a Guest | | Terms of Use
... WHAT?  Ceridan | 11/03/09
I'm pretty sure it takes advantage of..  AzuMao | 11/03/09
My understanding is  Real World | 11/03/09
I see  Ceridan | 11/03/09
Glad to read that.  No More Microsoft Software Ever! | 11/03/09
HUH?!?!  mr.zachcoffman@... | 11/04/09
I''M considering a Jail-Broken phone  nevthaman | 11/04/09
Good for you!  mr.zachcoffman@... | 11/04/09
Unbelievable  frabjous | 11/07/09
Extortion?  AzuMao | 11/08/09
Huh.  AzuMao | 11/04/09
Again...  mr.zachcoffman@... | 11/04/09
If that's the case, you aren't affected by this.  AzuMao | 11/05/09
But any iProduct is completely impregnable  kaninelupus | 11/05/09
Of course  rm.squires@... | 11/05/09
ever heard of the command 'passwd'?  Richie086 | 11/05/09
Just one question...  nick.holmes | 11/03/09
True  gnesterenko | 11/03/09
Old news.  Intellihence | 11/03/09
I for one  seaniepie | 11/03/09
True!  Intellihence | 11/03/09
What exactly is "unethical" about it?  croberts | 11/03/09
Nothing unethical..  AzuMao | 11/03/09
Only in idiot world  blueskip | 11/03/09
Are we reading the same article, blueskip?  AzuMao | 11/03/09
Lock the door  blueskip | 11/03/09
Sorry, misunderstood your post.  AzuMao | 11/03/09
So when Microsoft  blueskip | 11/03/09
That's easy,  lazerousz | 11/03/09
I'm fairly sure that in the iPhone EULA..  AzuMao | 11/04/09
I didn't agree to  blueskip | 11/04/09
Extortion  CobraA1 | 11/03/09
Extortion?  AzuMao | 11/03/09
The defacement was the coercion  nick.holmes | 11/03/09
Wrong  blueskip | 11/03/09
Meh  AzuMao | 11/03/09
amen  ggossett001 | 11/03/09
Semantics  GoodNewOnly | 11/03/09
I disagree  blueskip | 11/03/09
BS!... the difference is...  dominigan | 11/04/09
I doubt it ...  charrisgw | 11/04/09
not Semantics  iamanerd | 11/03/09
That's a bad comparison  AzuMao | 11/03/09
I don't think it's against the LAW to jailbreak your iPhone.  No More Microsoft Software Ever! | 11/03/09
Maybe  AzuMao | 11/04/09
Trespassing...  tim@... | 11/04/09
Since when does sending something mail  AzuMao | 11/04/09
iamanerd - careful with the legal opinions  dwightmoody | 11/17/09
Have to agree  TheLandYacht | 11/04/09
Not so sure  voska1 | 11/05/09
I agree!!  blueskip | 11/03/09
That's EXACTLY right!  blueskip | 11/03/09
Boring...  AzuMao | 11/03/09
LOL  blueskip | 11/04/09
Extortion???  nimrod666 | 11/03/09
....  Badgered | 11/05/09
You need permission to do something nice?  sillygirl982 | 11/03/09
No. The kid was using MS tactics. Being unethical is not cool.  No More Microsoft Software Ever! | 11/03/09
Re; Texting costs some folks 50 cents.  hkommedal | 11/03/09
And neither are you.  mustangj36@... | 11/04/09
Apple in the real world... ouch.  cquirke | 11/03/09
I say ignore. You jailbreak it, you take ALL responsibility! (NT)  No More Microsoft Software Ever! | 11/03/09
They will spin it...  mr.zachcoffman@... | 11/05/09
LOL! You're kidding....right?  eMJayy | 11/03/09
I agree I can't even believe he asked the question...nt  USTechHead | 11/03/09
Just so I understand you  croberts | 11/03/09
There is a difference between these  cholzwarth | 11/03/09
You're right  blueskip | 11/03/09
Valid argument...  dominigan | 11/04/09
@dominigan  JM1981 | 11/04/09
not really......  iamanerd | 11/03/09
I can write a law you can't breathe  blueskip | 11/03/09
Nope. Not illegal to jailbreak. Just unwise. Warranty void. (NT)  No More Microsoft Software Ever! | 11/03/09
Thing is, you don't own the software nowadays, you rent it.  AzuMao | 11/03/09
So you leave your front door open, a salesman walks in  USTechHead | 11/03/09
He sent a message  blueskip | 11/03/09
sending messages are not illegal  iamanerd | 11/03/09
Well, sending messages without permission SHOULD be illegal.  No More Microsoft Software Ever! | 11/03/09
@ No More__: This was in Europe. Only SENDER pays the SMS.  hkommedal | 11/03/09
Nope...  dominigan | 11/04/09
No More Microsoft Software Ever!  JM1981 | 11/04/09
Dam and other structures that hold **** ......  iamanerd | 11/03/09
Epic fail. Your comparison is wrong on SO many levels.  AzuMao | 11/03/09
Epic fail Part 2, so are your assumptions.  LeeC | 11/03/09
Part 2 discontinued. Try again.  AzuMao | 11/03/09
jailbreaker = pirate = BIG YES!  No More Microsoft Software Ever! | 11/03/09
On the contrary..  AzuMao | 11/03/09
@No More Microsoft  athynz | 11/04/09
This would be true if...  mr.zachcoffman@... | 11/05/09
To your second post...( locked )  mr.zachcoffman@... | 11/05/09
On the contrary... NO YOU ARE WRONG AGAIN  mr.zachcoffman@... | 11/05/09
@last three angry comments in a row  AzuMao | 11/05/09
Let's put it this way:  athynz | 11/03/09
OK  blueskip | 11/03/09
The law is not for outlaws.  AzuMao | 11/03/09
Re; To get rid of this message. NO. Not so.  hkommedal | 11/03/09
Apple's Jail is a nice safe...  arminw | 11/03/09
lol  AzuMao | 11/03/09
Not quite. More like bying WIn7 Home and 'breaking it' to work as Pro. (NT)  No More Microsoft Software Ever! | 11/03/09
The point is  AzuMao | 11/04/09
And if you did just that, MS could have  JM1981 | 11/04/09
At least I have a comfy bed & breakfast suite.  No More Microsoft Software Ever! | 11/03/09
True!  lauralang | 11/03/09
OR-it may be unethical to send text mssg advertizing! (NT)  No More Microsoft Software Ever! | 11/03/09
iPhone Text-Marketing....  Rezinunts | 11/05/09
This is...  pwn0tr0n | 11/04/09
Nothing on your list....  Rezinunts | 11/05/09
Defacement of private property.  nick.holmes | 11/03/09
above is reply to croberts. (NT)  nick.holmes | 11/03/09
So if you had a choice..  AzuMao | 11/03/09
Doesn't matter.  CobraA1 | 11/03/09
Pretend?  AzuMao | 11/03/09
So that would make ok  bigsibling | 11/03/09
Nope  AzuMao | 11/03/09
That's not what he did  blueskip | 11/03/09
Lemme put it this way:  CobraA1 | 11/03/09
I'm sure if his code did anything else  AzuMao | 11/03/09
That's exactly right  blueskip | 11/03/09
heh, no it wouldn't . . .  CobraA1 | 11/03/09
CobraA1, you would be an idiot then.  AzuMao | 11/03/09
So do it already.  CobraA1 | 11/03/09
Okay  AzuMao | 11/03/09
Well we have religous people that get taken  JM1981 | 11/04/09
Paying him to tell you how to fix it was also voluntary.  AzuMao | 11/05/09
Thank you!  blueskip | 11/03/09
Its a protection racket.  nick.holmes | 11/03/09
A Dutch teenager  perronne | 11/03/09
There is a process to the law, even when leniency is shown.  nick.holmes | 11/03/09
I think I would start  blueskip | 11/03/09
Law  AzuMao | 11/03/09
Again you are also oblivious to the law  blueskip | 11/03/09
Why in the world...????  dominigan | 11/04/09
Then that would  blueskip | 11/04/09
Yes but . . .  sillygirl982 | 11/03/09
The problem is...  arminw | 11/03/09
So go in Mr. Roberts house, because he left  USTechHead | 11/03/09
He said pay me or don't I don't care...  JM1981 | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  Fridolyn | 11/03/09
Don't blame the victims!  nick.holmes | 11/03/09
Victims?  Oregon_Polar | 11/03/09
Victims?  oncall | 11/03/09
Horrible analogy.  AzuMao | 11/03/09
Last time I checked  oncall | 11/03/09
Not nearly as much of a dumb-- as  AzuMao | 11/03/09
Where is the Malicious intent in this case?  JM1981 | 11/04/09
Did you mother never tell you - two wrongs dont make a right  nick.holmes | 11/03/09
Didn't you mother ever tell you...  blueskip | 11/03/09
Two wrongs? There is only one wrong here.  AzuMao | 11/03/09
On what planet  oncall | 11/03/09
Hacking? The only hacking that occurred was by the pirates  AzuMao | 11/03/09
"Victim"?  AzuMao | 11/03/09
@AzuMao  athynz | 11/04/09
If you're smart enough to come up with all those reasons  AzuMao | 11/05/09
I dont blame the victims - well not realy  Fridolyn | 11/03/09
Totally agree  trefire | 11/04/09
Repeating your illogical assertion makes it no less illogical! - NT  raycote | 11/03/09
legally did he do anything wrong?  ca1ic0cat | 11/03/09
With just this story to go by, I'd guess the kid will go free.  softwareFlunky | 11/03/09
What do you want for free? Your money back?  griffariff | 11/03/09
Are you aware of exactly what jailbreaking is?  athynz | 11/03/09
In the same way all warez/pirating/file-sharing does.  AzuMao | 11/03/09
You could make the same argument  oncall | 11/03/09
Could make the same argument? I just did.  AzuMao | 11/03/09
Okay  athynz | 11/04/09
Jailbreaking  griffariff | 11/04/09
You've got it wrong, and here's why;  AzuMao | 11/03/09
According to the story...  griffariff | 11/04/09
Look at the screenshot. It's definitely text.  AzuMao | 11/04/09
Only solidifies reason for iPhone closed system  12grams | 11/03/09
Safe communication is beyond them?  cquirke | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  Loverock Davidson | 11/03/09
What's your IP and administrative password...  olePigeon | 11/03/09
Why do you even need that?  storm14k | 11/03/09
Why would you need his IP?  AzuMao | 11/03/09
So, using your logic...  msalzberg | 11/03/09
No  Loverock Davidson | 11/03/09
Then I guess you have no idea...  msalzberg | 11/03/09
Your statement was not nearly as ridiculous as his.  AzuMao | 11/03/09
Nope. Just another reason not to use warez.  AzuMao | 11/03/09
jailbroken my a%%  ggossett001 | 11/03/09
re: jailbroken my a%%  Mr. Byte | 11/03/09
Wrong.  AzuMao | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  docmurdock | 11/03/09
Alpine  magallanes | 11/03/09
re: alpine  Mr. Byte | 11/03/09
Illegal access to private property.  Narg | 11/03/09
LOL!  AzuMao | 11/03/09
I have to respond to you continual use  steeleblue_cactus | 11/03/09
Following that logic  AzuMao | 11/04/09
no, you just don't get it  athynz | 11/04/09
If I logged in using a default user name and  JM1981 | 11/04/09
missing comments  argon0 | 11/03/09
re: missing comments  Mr. Byte | 11/03/09
Simple  AzuMao | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  samofdetroit | 11/03/09
BZZZZT! Try again!  AzuMao | 11/03/09
This is quite funny ... on more than one level.  Been_Done_Before | 11/03/09
Ya. They say stop hacking your phones with illegal warez.  AzuMao | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  Mr. Byte | 11/03/09
Legality question is not quite so simple  jgpeters | 11/03/09
Yes, it would have been more ethical to simply  AzuMao | 11/03/09
So he was providing a public service? HA HA!  jgpeters | 11/03/09
Yes, very funny.  AzuMao | 11/03/09
I can see your point, but...  jgpeters | 11/03/09
If it's freely available, there's really no problem.  AzuMao | 11/03/09
There is free information on how to install and OS  JM1981 | 11/04/09
Macs and Iphones are invulnerable... period  ckl_88 | 11/03/09
Exactly. So don't try to illegally hack your iPhone to install warez on it.  AzuMao | 11/03/09
Why exactly is an SSH daemon running?  Michael Kelly | 11/03/09
Hmm  Real World | 11/03/09
Not on by default, and not even required after jailbreaking.  AzuMao | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  blueskip | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  blueskip | 11/03/09
This is what happens when you let others raise your children.  Stan57 | 11/03/09
Before running your mouth off like that..  AzuMao | 11/03/09
Before YOU go running off at the mouth like that...  athynz | 11/04/09
Oops.  AzuMao | 11/05/09
The digital world is more complicated than that  jgpeters | 11/03/09
So who brought up Sony?  cquirke | 11/03/09
Sony, right?  AzuMao | 11/05/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  iamanerd | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  djmik | 11/03/09
Did you read the article?  AzuMao | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  Droid101 | 11/03/09
Opinions - everybody has one and can't wait to share it  EricP_KY | 11/03/09
Yes quite a dramatic change indeed!  AzuMao | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  lauralang | 11/03/09
Amazing  jragosta | 11/03/09
But..  AzuMao | 11/04/09
I agree... Amazingly, you didn't read the story!  dominigan | 11/04/09
ROFL!!!!  AzuMao | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  Intellihence | 11/03/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  ewelch | 11/03/09
How likely would it be  joe6pack_z | 11/03/09
0% chance  AzuMao | 11/04/09
You know how to use a screwdriver and some other tools...  Andrzej_Ladosz | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  Made28 | 11/04/09
Let me see...  docmurdock | 11/04/09
Read The Thread  stigg101 | 11/04/09
Change in terminology  AzuMao | 11/04/09
agree  Made28 | 11/04/09
pay the kid  ca1ic0cat | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  greetz@... | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  buddy@... | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  trefire | 11/04/09
Cydia tells you exactly how to secure when you install OpenSSH  kb244 | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  kb244 | 11/04/09
knock knock!!!...Whos there?...u been pwned! give me money!!  taiyurshu | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  Dirk6665 | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  azurehi | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  cowen80194 | 11/04/09
very funny trick played on the sheep  Opcom_ | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  TamPogo | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  blueskip | 11/04/09
Anyone considered that jailbreaks could be compromised?  aristotle_z | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  mr.zachcoffman@... | 11/04/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  mr.zachcoffman@... | 11/04/09
I've read every single comment...  progress76 | 11/04/09
Omg... Rofl...  mr.zachcoffman@... | 11/05/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  rm.squires@... | 11/05/09
Show us one law...  mr.zachcoffman@... | 11/05/09
Perfect  haz113k | 11/05/09
Apple (the owner of the iPhone and associated technology) seem to disagree.  AzuMao | 11/05/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  cbruner52@... | 11/06/09
RE: iHacked: jailbroken iPhones compromised, $5 ransom demanded  cbruner52@... | 11/06/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here