14 DAY TRIAL // It has been revealed that jailbroken users are susceptible to hacker attacks, should they open SSH access on their iPhone and not change their default password, after performing the jailbreak. According to reports posted by Ars Technica (long version) and 9to5Mac (short version), a hacker can log into one's iPhone (or even a user's iPod touch) and gain full control of the device.
According to the reports, a Dutch hacker has found a way to actually capitalize on this vulnerability, by sending an SMS popup to those who’ve insecurely jailbroken their devices, asking a €5 ransom in exchange for instructions on how to plug the hole. As both sites suggest, to save the €5, users can either restore their devices in iTunes, or simply not jailbreak.
Ars reveals in the long version of the story that the hacker relies on unchanged root passwords to hack into the phones. The SMS alert sent out to the hacked phones reads, "You[r] iPhone's been hacked because it's really insecure! Please visit doiop.com/iHacked and secure your iPhone right now! Right now, I can access all your files." As the unknowing user goes to the website, he / she is directed to send €5 to a PayPal account, with the promise that the hacker will e-mail instructions to remove the hack.
And, although the hacker doesn't appear to have bad intentions, according to Ars, the fact that they ask for cash to remove a hack they themselves exposed is not an act of good faith.
"If you don't pay, it's fine by me," the page mentioned in the message to the hacked iPhone owners reads. "But remember, the way I got access to your iPhone can be used by thousands of others—they can send text messages from your number (like I did), use it to call or record your calls, and actually whatever they want, even use it for their hacking activities! I can assure you, I have no intention of harming you or whatever, but, some hackers do! It's just my advice to secure your phone."
Ars suggests that jailbreaking is bad not only because it is not allowed by Apple, but because it overwrites the security mechanisms set in place by the Mac maker itself.
Softpedia doesn't condone jailbreaking / unlocking the iPhone / iPod touch or any other device. This article has a purely informational purpose and doesn't, in any way, suggest that you should hack your Apple device. Using hacks may render your device unusable, or may reduce the quality of your experience employing the respective device. If you choose to download and install jailbreak tools, you will do so at your own risk. Unlocking / jailbreaking your iPhone / iPod touch may violate your warranty or the EULA with Apple and / or your cellular-service provider.