Register for an account

X

Enter your name and email address below.

Your email address is used to log in and will not be shared or sold. Read our privacy policy.

X

Website access code

Enter your access code into the form field below.

If you are a Zinio, Nook, Kindle, Apple, or Google Play subscriber, you can enter your website access code to gain subscriber access. Your website access code is located in the upper right corner of the Table of Contents page of your digital edition.

Technology

iPhone Worms Move From Harmless (Rickroll) to Nasty (Stolen Bank Info)

iphone-web1.gif

Newsletter

Sign up for our email newsletter for the latest science news

It started off innocently enough, with a Rickroll—when the first iPhone worm turned up in Australia two weeks ago, it changed its victim's wallpaper to a portrait of "Never Gonna Give You Up" signer/Internet sensation Rick Astley. But now iPhone worms have turned malicious. But by this week, some iPhones were victimized by the "Duh" worm, which steals personal banking info. Like the rickrolling original, the new malicious code targets only jailbroken iPhones—those on which that the owner has circumvented the Apple operating system to hack the phone.

It is specifically targeting people in the Netherlands who are using their iPhones for internet banking with Dutch online bank ING. It redirects the bank's customers to a lookalike site with a log-in screen [BBC News]

. An iPhone could spread the worm to others that use the same wi-fi hotspot. As for Apple's response to the growing iPhone threats? Don't hack your phone, genius. Apple spokesperson Natalie Harrison says,

“As we’ve said before, the vast majority of customers do not jailbreak their iPhones, and for good reason. These hacks not only violate the warranty, they will also cause the iPhone to become unstable and not work reliably" [The Loop]

. Only a small percentage of iPhone users hack the device, so relatively few people are susceptible to this latest attack.

Yet some researchers say the worm confirms that attacks against mobile users are evolving, and that cybercriminals are targeting the personal and financial information kept on portable devices. The ability to communicate with a central command-and-control server--a characteristic more commonly associated with hijacked PCs--also makes such software more dangerous [Technology Review]

. Related Content: 80beats: Sorry, Australian iPhone Users: You've Been Rickrolled 80beats: AT&T and Verizon Wireless Take Their Cat Fight to Court Discoblog: Weird iPhone Apps, our compendium of the strangest things to do with your smartphone.

Image: flickr / William Hook

2 Free Articles Left

Want it all? Get unlimited access when you subscribe.

Subscribe

Already a subscriber? Register or Log In

Want unlimited access?

Subscribe today and save 75%

Subscribe

Already a subscriber? Register or Log In