A dutch hacker has come up with a cunning plan on how to make some extra euros using his hacking skills. What he does it take over you iPhone and then demand a €5 donation and then he will give you iPhone back under your control.
He’s done it by scanning for all the iPhone users who had SSH enabled on their phones and then changed some files in the system making the following message come up on their phone:
Your iPhone’s been hacked because it’s really insecure! Please visit doiop.com/iHacked and secure your iPhone right now! Right now, I can access all your files.
The link (taken down now) brought you to his Paypal account were he asked for €5 in return for instructions on how to fix and ’secure’ your device once again.
If you don’t pay, it’s fine by me, but remember, the way I got access to your iPhone can be used by thousands of others-they can send text messages from your number (like I did), use it to call or record your calls, and actually whatever they want, even use it for their hacking activities! I can assure you, I have no intention of harming you or whatever, but, some hackers do! It’s just my advice to secure your phone.
The website has now been taken down and he is offering the intructions for free. Here are the instructions for anyone who was affected by this:
Ok plan’s changed. Here’s what to do, good luck and contact me if you have any questions
1. Get an SSH program like putty for windows.
2. SSH to your iPhone. (If you haven’t done that before it may take a while, and after that there might come a warning about a key fingerprint. You can just accept that). Login using username “root” and password “alpine”. (this is the default password)
3. There’s a few commands you have to execute, best is to just copy them:
rm /System/Library/LaunchDaemons/com.apple.syslog.plist
chown mobile /private/var/mobile/Library/LockBackground.jpg
chmod 666 /private/var/mobile/Library/LockBackground.jpg
mv /private/var/mobile/Documents/LockBackground.backup.jpg /private/var/mobile/Library/LockBackground.jpg
4. That’s everything to remove my stuff. Now there’s one command left to make sure this won’t happen again! (-; Again in putty or any ssh client type: “passwd”. You’ll then be asked for a new password, you can change this into anything you want. The safer the better of course (:The reason you have to change this password is that it’s default is alpine at ALL iPhones. So if anyone knows that (and all hackers do) they can access your iPhone. Now you’ve changed it this isn’t possible anymore!
If you have any questions or something, mail me and I’ll try to answer them!
PureInfinity92@mailinator.com (oh and btw the program is designed to remove itself so you should already be clear)
The best way to stay safe from a problem like this is to change your SSH password away from the default one. To learn how to click HERE.
Well that’s a scare.
[...] of the SSH Problem Posted by admin November – 8 – 2009 – Sunday After news of the Dutch hacker changing your background making it as if he has taken over your device and demands 5 eu…, more people have decided to take advantage of this hole is jailbroken devices and spreading worms [...]