A new iPhone worm has found its way out that have malicious traits as opposed to the Rickroll worm found two weeks ago. The worm identified as “Duh” or “Ikee.B” uses the same modus operandi as the rickroll worm, effectively putting only jailbroken users with default SSH password at risk.

The first sign came from a Dutch ISP who recorded unusual data transfers from affected iPhone devices. Apparently, the worm connects to a Lithuanian server to upload user’s compromised data and allow the hacker to control the device the remotely.

The only way to get away with this is to change the SSH root password from the default “alpine” to something else. The worm sets “ohshit” as the new password on attacked iPhones.

[Sophos via Mashable]

iPhone users in Australia encountered what is said to be the world’s first iPhone worm. The worm took advantage of jailbroken iPhones (and iPod Touch) with SSH installed and using the default user/pass. The worm was created by a hacker known as ikee and replaces the screenlock wallpaper with 1980s popstar Rick Astley with a text “ikee is never going to give you up”. Analysing the worm code reveals lots of comments that apparently proves, ikee’s intent is not to gain undue advantage but show as a proof of concept.

This worm basically attacks iPhones with SSH using the default “alpine” password. A way to save yourself from this type of attack is to change the SSH password. Here’s a quick little guide to change the default SSH password to something of your choice.

[Via Sophos]