NEWS FROM THE LAB - Sunday, November 22, 2009

Malicious iPhone Worm Posted by Mikko @ 11:38 GMT

We've received a sample of a malicious iPhone worm with botnet functionality.

Like the Ikee worm, it only affects Jailbroken iPhones which have SSH installed and have not changed the default password.

This one connects to a web-based command & control center running at in Lithuania.


The worm is not widespread, but it is much more serious than the first iPhone worm as it tries to steal information from the devices.

Thanks to Scott at XS4ALL for all the help!