Dutch Hacker holds Jailbroken iPhones Users for a 5€/7$ ransom
Advertisements
Did you jailbreak your iPhone? If you did, chances are, your iPhone is hackable. As shown in the screenshot below, a Dutch hacker was able to enter a jailbroken iPhone via SSH. This incident highlights the fact that jailbreaking removes the security layer for the iPhone.
While he apparantly didnt acually swipe personal information or cause any damage he intially demanded 5 euros for a fix but later change this and posted the information for free.
The detailed step by step fix is available below:
- Get an SSH program like putty for windows.
- SSH to your iPhone. (If you haven’t done that before it may take a while, and after that there might come a warning about a key fingerprint. You can just accept that). Login using username “root” and password “alpine”. (this is the default password)
- There’s a few commands you have to execute, best is to just copy them:
- rm /System/Library/LaunchDaemons/com.apple.syslog.plist
- chown mobile /private/var/mobile/Library/LockBackground.jpg
- chmod 666 /private/var/mobile/Library/LockBackground.jpg
- mv /private/var/mobile/Documents/LockBackground.backup.jpg /private/var/mobile/Library/LockBackground.jpg
4. That’s everything to remove my stuff. Now there’s one command left to make sure this won’t happen again! Again in putty or any ssh client type: “passwd”. You’ll then be asked for a new password, you can change this into anything you want. The safer the better of course (:
The reason you have to change this password is that it’s default is alpine at ALL iPhones. So if anyone knows that (and all hackers do) they can access your iPhone. Now you’ve changed it this isn’t possible anymore!
Guide how to change your root password on any iPhone:
- install mobile terminal fro Cydia
- after finish install please home button to go back to Home screen
- look for mobile terminal then open
- type “su” (without quote)
- then password “alpine” (without quote)
- now you are logging as root
- type “passwd” (without quote)
- type your new password
- retype your new password
Advertisements