November 24th, 2009 by Arjan Olsder Posted in 1 | No Comments »
What is the perfect way to scare people out of jailbreaking their iPhones? Suggesting they might lose their money! Today, the Dutch ING bank found out that hackers are using jailbroken phones to steal bank accounts.
It turns out there is a worm that adapts the browsers to lead consumers to the hacker’s website when consumers try to access their bank accounts (yes, phishing!). Next to letting consumers insert their login data, it will also capture SMS messages that hold a so called ‘TAN’ code. That code is needed to authorize any transactions.
The worm is spread via the Open SSH backdoor which was first documented here, in The Netherlands.