1 / 5

Securing your Jail broken IPhone

Securing your Jail broken IPhone. iPhone Worm. An iPhone worm has started jumping between jailbroken devices, taking advantage of users who have replaced the phone's software but failed to create a new root password

ura
Télécharger la présentation

Securing your Jail broken IPhone

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Securing your Jail broken IPhone

  2. iPhone Worm • An iPhone worm has started jumping between jailbroken devices, taking advantage of users who have replaced the phone's software but failed to create a new root password • The worm, dubbed “Ikee,” replaces the phone's wallpaper with a picture of Rick Astley • Currently there are four known variants of this worm in the wild. None to date that are considered to be “extremely nefarious”

  3. How it works…. • When an iPhone’s default OS is jailbroken an SSH service is started on the phone and is continuously running. • Knowing the IP address range for ATT an attacker can scan the net block for the open SSH port and then try and connect using the known default username and password. • Username: root • Password: alpine • One of the IP address blocks for ATT: • AS20057 AT&T Wireless Service • 166.128.0.0 - 166.255.255.255 • The “Ikee” worm by default scans the known netblock for the SSH service and then attempts to login to the device and change the background.

  4. How to Secure your JailbrokeniPhone • Grab your favorite SSH program • SSH to your phone • Note If you haven't SSH to your phone before it may take a while, after the wait there might be a warning about a key fingerprint just accept and Login using username "root" and password "alpine"…. If your lost here grab a hammer and smack your self over the head. • You should now be at terminal screen where you need to change your passwd to do so type passwd and you will be prompted to change it. DO IT DO IT…..

  5. What a “Rickrolled” Phone looks like

More Related