Ikee iPhone worm hacker lands lucrative job

Malware + no remorse = easy street

The hacker who created the Ikee iPhone worm because 'he was bored', may be smarter than he first appeared. Ashley Towns may have expressed no regrets over writing the bug, but he has subsequently landed a job with an Australian company that develops legitimate iPhone apps: mogeneration.

Towns' worm, known as Ikee, threatens iPhone users who have jaibroken their phones to let them run unauthorised software. The iPhone malware hit the headlines early this month.

Ikee doesn't do anything particularly bad - it changes the victim's wallpaper to a photograph of 80s singer Rick Astley and then seeks out other phones to infect.

The worm does not affect most iPhone users; only those with jailbroken iPhones that are running a Unix utility called SSH (Secure Shell) with the iPhone's default password, "alpine", still in use, but its arrival heralded a minor boom in iPhone malware, being closely followed by two other infestations.

The second piece of malware harvested personal data from iPhones, including user email, contacts, SMS messages, calendars and multimedia files. More recently, a much more serious worm has been targeting jailbroken iPhones and adding them to a mobile botnet. (See: Apple iPhones snared by mobile botnet.)

Towns is far from the first hacker to demonstrate his skill via nuisance malware and then turn legitimate, landing a lucrative job. But the move is sure to generate publicity and controversy (which may be the point).

Indeed, Sophos' Graham Cluley was typically quick to tell BBC News: "It leaves a nasty taste that he has been rewarded like this, yet has not even expressed regret for his actions."

More about: Apple, BBC, Sophos, SSH
References show all

Comments

1

Anonymous

Mon 30/11/2009 - 08:31

well that's one company I will be boycotting

2

John

Mon 30/11/2009 - 10:12

He exploited other peoples stupidity. If you're dumb enough to keep with default passwords on ANY system, you deserve what you get.

If you were dumb enough to leave a default password on after installing SSH then you shouldn't have installed it.

3

Beau

Mon 30/11/2009 - 18:34

If the article is true that the worm didnt really do anything bad, whats the big deal. If anything he fired a warming shot so people will think about their security a bit more and tighten it up before a REAL bad person sends a worm out.

It's almost a service that he provided.

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the Computerworld comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: hacker, Ikee, iphone worm, security
Whitepapers
All whitepapers
Sign up now to get free exclusive access to reports, research and invitation only events.
Featured Download
/downloads/product/150/handbrake/

HandBrake

HandBrake is an opensource tool that allows you to backup your DVDs so that you can store and watch them on your computer. Features include: ...

Computerworld newsletter

Join the most dedicated community for IT managers, leaders and professionals in Australia