The first known iPhone virus Rick rolls handsets.
It was bound to happen sooner or later. It would be foolish to think that with so many computer hackers and attackers in the world, the iPhone crowd would be spared. Fortunately for iPhoners, the first worm in Apple's golden apple isn't exactly malicious. Well, that probably depends on your definition of the word 'malicious,' but it's definitely not as bad as it could be, or as bad as smartphone viruses could be in the future.
Sure, designing a worm that will change the iPhone's wallpaper to a picture of Rick Astley is irritating for the user. However it seems it wasn't the developer's intent to do something malicious. The worm does nothing but change your screensaver and it only affects jailbroken iPhones -- and only if the user failed to change his or her default password for a secure shell (SSH) application that allows file transfers between smart phones.
A 21-year-old Australian hacker named Ashley Towns has since admitted to developing the worm. In the source code for the virus he writes, "People are stupid, and this is to prove it so" adding that iPhone users should read their manuals. "It's not that hard, guys," Towns writes. "But hey who cares its only your bank details at stake."
Towns spoke to ABC News Online and said that his aim was to wake people up and raise awareness, not to cause trouble.
"When people jailbreak their phone, it allows them to install a service on their phone called SSH," he told ABC. "Generally you should always change your password after setting up on the iPhone as all iPhones use the same password. This virus pretty much exploits people's laziness to change their password," the student continued, adding, "I think to raise awareness for one, somebody with more malicious intent could have done anything - read your SMSs, go through your emails, view your contacts, photos - anything. The virus itself is not malicious and is not out to hurt people. It's just poking fun and hoping waking people up a little."
Towns said the virus is relatively easy to remove. All users have to do is change the phone's password and delete a few files from the phone. You can check out the source code here.
Your default ringtone becomes "Chocolate Rain"...
Your default ringtone becomes "Chocolate Rain"...
The things I do to keep myself entertained on a Monday morning.
Jaaane... Jaane JAAAAAANE!
YOU NAUGHTY LITTLE RICKROLLIN' GIRL YOU!
At least link to the original!
I don't know if that is a possible attack vector, but I'd be surprised...
Anyway, this isn't an "Apple" vulnerability. It only affects those who have
1) Jailbroken their iPhone to remove Apple's security provisions
2) Installed SSH to allow remote access
3) Failed to change the default passwords, against the advice of the jailbreaking community.
In other words, the people that want their iPhone to be more like Windows are installing their own security holes...
This would be all well and good, however it infects only jail-broken phones and therefore is only an issue for people who have subverted all the securities put in place by Apple. Claiming that this is an OS X or Apple problem is ridiculous at best.
And give me a break about the Apple systems being so secure; the only way to make the iPhone more secure was to cripple it all around. Hell, if I unplug my broadband modem I am un-hackable, too!
"In other words, the people that want their iPhone to be more like Windows are installing their own security holes... "
see above; I will always prefer a fully functional system that I can secure and customize the way I want versus one that has been "proofed" for me by crippling manufacturer... All my phones have been unlocked and modded so far and never had an issue with them, I just enjoyed their full functionality.
They really did get Rick Rolled, lol
Like he said - its only your bank data that might be at stake...
This.
Also, remember to check where links go before you click on them. (I avoided the Rick Roll