For the last few days, some jailbroken iPhone users have found their home screen background a little different than they remembered. A hacker, going by the name "ikee," created a worm that changes the home screen background on jailbroken iPhones whose owners failed to change the default password after installing SSH. Simply jailbreaking your iPhone will not make you vulnerable to this sort of hack. The iPhone OS, in general, is also immune to this hack. Still confused? Let's back up a bit.

On jailbroken iPhones, SSH is installable with a package from Cydia that allows you to connect to your phone and make changes to the filesystem. It does this by logging into the root user with the password "alpine." After installing SSH, it is always recommended that you change "alpine" to the password of your choosing. This hack can only affect people who chose not to change that password -- no one else.

This hack originated in Australia, the home country of ikee, and has possibly spread to other iPhones in other countries, but we've been unable to verify that. A gentleman by the name of JD held an interview with the hacker over IRC and posted it to his blog. In ikee's own words, here's how the worm has spread:

...The code itself is set to firstly scan the 3G IP range the phone is on, then Optus/Vodafone/Telstra's IP Ranges (I think the reason Optus got hit so hard is because the other 2 are NAT'd) then a random 20 IP ranges. I'm guessing a few phones hit a range that another vulnerable phone was on.

Basically, once your phone is infected, the worm starts looking for other iPhones on the cellular network that use the root:alpine combination. Once it finds another vulnerable iPhone, it installs itself and begins the process again... and again... and again.

Luckily for the jailbreakers in the audience who may have been affected, there's really no harm done -- at least not with this version of the worm. According to the hacker, this was more of an experiment than anything else. The worm changes your background and then disables inbound SSH, which is a good thing. If SSH was left turned on, a similar worm could follow along but conceivably do much more damage. For instructions on how to delete this worm, read JD's interview with ikee. I would recommend reading the interview just for the information it presents; I found it pretty interesting. If you've got a jailbroken iPhone or iPod touch and you've never changed the default device password, now's the time. Here's how, if you are using terminal:

Type: ssh root@(iPhone IP address)
When prompted for the password type: alpine
Now you're connected the phone...
type: passwd
It should then prompt your for a new password -- type one that you'll remember. There's no easy way to reset it if you forget it.

That's it. Please remember to be responsibly secure with your devices. Hackers like ikee are troublesome, but this could have been much worse. While I don't personally condone his actions, he's prevented a lot of people from being vulnerable to more malicious attacks later down the road.

Thanks, James!

There's an exciting announcement at All Tech Related this week that has us saying, "We can't wait!"

ZodTDD, the developer behind GpSPhone (a Nintendo Gameboy Advance emulator for the iPhone and iPod Touch), announced the development of an N64 emulator for the iPhone and iPod touch. Zodttd believes that the current generation iPhone and iPod touch have the graphic CPU horsepower necessary to run those games. "...I can't promise it will run games top notch just yet, as things are too early to say. There's hope though, with a 3D accelerated graphics plugin, as well as an ARM dynarec."

As iPhone Savior points out, the toughest challenge could be fitting the controls onto the screen in an unobtrusive yet usable way. That was my main complaint about Resident Evil for iPhone [iTunes link] -- my hand is often in the way of what I'm trying to see.

Note that this will require an jailbroken iPhone or iPod touch.

[Via iPhone Savior]

For the last several months, anyone who had updated to iPhone OS 3.1 or greater without following a pre-update procedure lost the unlock on their iPhones due to new software in the modem firmware or the baseband. Using the at+xemn crash as an injection point, iPhone hacker Geohot (of the original hardware unlock) was able to unlock the latest firmware on any iPhone.

What does this mean? The iPhone can be unlocked for any GSM carrier, allowing you to use it on more than your country's authorized carrier or other carriers as you're traveling abroad.

Geohot suggests that you update to a fresh copy of iPhone OS 3.1.2 directly from Apple before performing his unlock. He has all the instructions available on his site.

Running a jailbroken iPhone has its risks, as a Dutch hacker has demonstrated. Specifically, he used a bit of port scanning to find jailbroken phones with SSH running in his native Netherlands. From there, he sent unsuspecting users a message that reads, "Your iPhone's been hacked because it's really insecure! Please visit doiop.com/iHacked and secure your iPhone right now! Right now, I can access all your files."

The URL directs the users to Paypal and requests €5 in exchange for instructions that explain how to remove the hack. But how did he get in? By relying on users' forgetfulness. All iPhones have a default root password. Those who forget to change it are vulnerable to this very kind of attack.

Asking for money is kind of a bummer but much less obnoxious that other things he could have done. The moral of the story is pay attention and be thorough when jailbreaking your iPhone.

[Via Ars Technica]

Oh, so tempting. Engadget and Slashgear link to this video from our friend Steven Troughton-Smith: Exposé-style app management running on a jailbroken iPhone. No, you can't download it anywhere yet; no, we don't know when it will be ready for prime time and available on the Cydia repo; no, we don't expect Apple to have anything similar in the pipeline for vanilla iPhone use.

But wouldn't it be nice?

Why didn't Apple think of this? SmartScreen lets you add widgets to your iPhone lock screen, providing an interactive dashboard experience whenever you wake up your device. The software is jailbreak-only (as you'd probably expect, given its standard system-defying functionality) and will be launched in November 2009. Widget developers are currently being accepted to an invitation-only beta program. Details for the beta program and the SmartScreen product are available at the media-phone web site.

Yes, this isn't the only lock-screen information system out there. Intelliscreen and LockInfo provide calendar and email updates. At the same time, SmartScreen offers a fresh new approach that's a worthy alternative. I really like the visual flair and paged presentation, and the ability to move widgets around via direct interaction.

[Thanks, pytey and Steve Streza]

The legendary Dev-Team has done it again. It just released the new version of the Pwnage Tool, a desktop application that's used to create custom firmware packages to jailbreak iPhones and iPod touches.

Jailbreaking is the act of modifying the official firmware in order to run applications not approved by Apple. Chief among those applications, at least for the iPhone crowd, is the SIM unlock that allows the phone to be used on unofficial cell phone service providers.

The Dev-Team has found holes in previous versions of the iPhone OS that allow this code modification and has developed tools to make exploitation easier for the average user to accomplish. Once implemented, the jailbreak process installs an app that acts an unofficial App Store of sorts. The iPhone or iPod touch user can browse and install games, utilities, themes, and general applications. Cydia, one of these installer apps, even has a store with applications for sale.

Traditionally, when Apple releases a new iPhone OS version, that software upgrade breaks any jailbreak and SIM unlock present on the device. And so, you end up with the cat-and-mouse game that Steve Jobs alluded to shortly after the first firmware loophole was exploited and the original iPhone was unlocked.

Well, the mouse has stolen the cheese once again, and the Pwnage Tool released today will jailbreak the latest firmware, version 3.1.*

The big asterisk at the end of that previous sentence is that the Tool will only work on about half of the devices that use the iPhone OS -- only the original iPhone, original iPod touch, and iPhone 3G. The iPod touch line just released, as well as the 2nd generation iPod touch and the iPhone 3GS, cannot be jailbroken at this time. That means if you've already upgraded to 3.1 on your 3GS, you still won't be able to SIM unlock it as of the time of this post.

So, if you want to SIM unlock your iPhone 3G or the original model, Pwnage Tool 3.1 should do the trick. On the 3G, you'll need to use Icy or Cydia to also install the ultrasn0w app that actually performs the software unlock; however the original iPhone should be unlocked without this additional step.

You will need a Mac to run Pwnage Tool 3.1, but a Windows version is expected in the near future. Also expected soon is redsn0w, for both Mac and Windows, that further simplifies the jailbreak process by avoiding the need to create a custom firmware package.

Keep in mind, if you've been waiting for a jailbreak solution before upgrading to the latest firmware, many users have had fairly substantial issues with iPhone 3.1. My fellow TUAW blogger, Josh Carr, has reported that lots of iPhones and iPod touches are working poorly after upgrading. You may wish to hold off and stick with 3.0 or 3.0.1 until a solution is found, either by Apple or some other group of smart people.

But, if you're so inclined, you may find links to download Pwnage Tool 3.1 on the Dev-Team's official blog. Make sure to read the instructions thoroughly, and take heed of all of the warnings. They are there for a reason.

There's no shortage of Twitter apps in the App Store. Even more surprising is the number of GOOD apps that connect to the popular microblogging platform. I like each for a different reason: Tweetie has a clean user interface, TweetDeck offers multiple columns that sync with its desktop counterpart, and TwitterFon has ReadItLater integration. There are countless others that have unique features, and many of us end up with at least a couple on our iDevices.

But I have a new favorite, qTweeter, developed by the folks at Efiko Software. You won't find it in the App Store, though, because this app requires a jailbroken device. Multitasking isn't officially allowed (yet?) on the iPhone OS, yet qTweeter relies on this capability to perform its best trick.

Say you're checking the weather and want to tell everyone of the approaching hurricane. Normally, you would close your weather application, swipe through pages of apps, tap on and wait for your favorite Twitter client to open and load all of the tweets that you really don't care about right now, and finally type your warning to get the heck out of town. By the time you do all of that, the highway is going to be grid-locked with fleeing residents and you'll be stuck boarding up windows and sweeping up the debris!

Instead, you could have just "pulled" qTweeter down from the status bar, typed your tweet, and went back to the app still running in the background.

In fact, per the recent trend, you could have also posted that same message to your Facebook status with just a tap of a checkbox. It's a much quicker way to get your message out of your head and onto the Net, a fact that you'll appreciate as you get older and those thoughts become more fleeting.

Over the past week, some T-Mobile iPhone customers noticed that their data service suddenly stopped working. Users with unlocked iPhones had been paying $1 a day for unlimited data and text messaging using the Sidekick data plan. It was a great value.

Customers who contacted T-Mobile support received mixed answers. Representatives stated that service was down in their area or that they needed to upgrade to their normal data plan.

Yesterday, T-Mobile sent a tweet on their official Twitter account that they would no longer service iPhone customers using the prepaid Sidekick plan. So just like AT&T cutting off prepaid GoPhone service to iPhone customers, T-Mobile has now eliminated an affordable data option for unlocked iPhones. At this time, it appears that Android-specific data plans remain unaffected.

TUAW has contacted T-Mobile for an official statement on the matter but we have not heard anything back yet.

Thanks Gabe for the tip!

After writing about the GV Mobile situation on TUAW the other day, a helpful TUAW reader sent me a Google Voice invite (thanks Ian M! You rock!). I set up my account, hopped over to a jailbroken 3.0 iPod touch and downloaded a copy of the software via Cydia. I then copied it off the touch via sftp, signed it with my developer credentials and installed it through iTunes on a non-jailbroken iPhone to see what I'd been missing.

GV Mobile offers a pretty nice feature set. You can use it to set your Google Voice preferences, such as your preferred phone, so that when calls come through the right phone rings. That's an awesome feature on-the-go. Yes, the same option is available at the Voice website, but I really like the simple interface GV Mobile offers to switch that number with just a couple of taps.

You can dial directly from the app out to other phones. You still use your AT&T minutes but you avoid having to navigate through the Google Voice command interface. When the call is over, you return to the application.

The SMS and voicemail features are also very nice, each offering a dedicated screen and easy to use interfaces. A lot of design thought went into the program and it shows, especially in these two options.

Unfortunately, since the application was ported for a jailbreak install, it would no longer remember my user credentials between sessions. Be aware this approach works fine for review but isn't meant for a day-to-day bypass of the App Store, unless your Google username and password are trivial to type over and over again.

Despite the excellent number setting, SMS, and Voicemail features, I felt that most of the application features really needed to be integrated at the OS level, which they presumably will be in Google Chrome or Android. Apple provides its own OS-level telephony system and using this app for outgoing calls really felt more like work than time savings. Yes, the outgoing International rates are superb on Google Voice and the connection quality far exceeds that of Fring's SIP-based services or Skype's iPhone app. That said, I think the application could have benefited from a greater focus on the SMS/voicemail features with the telephone portion being pushed back in prominence.

The program does exhibit a few minor quirks. For example, when I tap on the call history tab, I'd prefer that it gave me a button to load that history from Google Voice rather than do so automatically and trap me, especially when I meant to hit another tab.

All said, I really did enjoy using GV Mobile. I think it has good functionality and must have been a really good App Store offering, while it was there. If you do have a jailbroken iPhone system to test it on, it's certainly worth a spin. And if you find you use it, the application is donationware.

Update 7/22: AOL has responded to the reports of misdirected push notifications, and has confirmed that the issue is due to the use of a workaround for push notifications on unlocked phones.

--

If you want to have a hot and steamy exchange with your sweetheart via AIM on the iPhone, you might want to think again -- if you have an unlocked or jailbroken phone.

CrunchGear reports that Till Schadde with Equinux has discovered an iPhone bug where AIM messages could be sent to random people without you even knowing it. Schadde discovered this when he was notified that a message he had sent to his iPhone version of AIM got intercepted by someone else. That person proceeded to contact Schaddle, sharing the screenshot shown at right with him. Schadde posted the screenshot and detailed the bug on Twitter after testing it once more from his computer.

The bug is being blamed on iPhone 3.0's push notification and seems to be limited to unlocked/jailbroken iPhones at the moment.

Edit (12:20 PT): Schadde has tweeted that he was contacted by AOL via phone this morning, and they are currently investigating the issue.

[Via CrunchGear]

Looks like Stack for Jailbreak has some new improvements. For those of you unfamiliar with the application, Stack adds a quick-launch menu directly to your iPhone dock, letting you expand your dock space to hold all your favorite apps. With it you can add 16 items (using grid view) or 5 items (in fan view) for easy access in each stack. And stacks are not just limited to the dock. You can add stacks anywhere in the home screen as well.

As this video shows, you can now rename your stacks as well as use drag and drop editing. So you can create a 'Games' stack, an 'Internet' stack, and so forth. Removing items from a stack is just as easy as adding them. Just drag them out from the stack for an Apple-standard "puff of smoke" animation.

Stack, which is developed by iPhone expert Steven Troughton-Smith is donor-ware. Although not ready for public release, he has regularly been seeding early alpha builds to people who have donated to the project. But as you can see, it's making great progress.

Stack is a jailbreak-only product as Apple does not permit this kind of OS-based enhancement in App Store. That's a pity, because the relative difficulty and fear of jailbreaking keeps this kind of groundbreaking software away from the general public. It's an enhancement that Apple really should have built into the iPhone -- and hopefully someday will.

Gizmodo recently posted this video, which is beautiful to any PSX-era gamers: it's Final Fantasy VII running right on the iPhone, like buttah thanks to the 3GS hardware. How is this possible? Through the magic of emulation -- ever since computers got powerful enough to pretend to be other computers, people have resurrected old consoles and hardware by writing code that makes old games and software think its right at home in the computer it belongs in (an old NES system, a Genesis, or even a Playstation or Nintendo 64). As a result, by loading up ROMs into an emulator program, you can play old games you can't find (at least working) in the store any more.

But the problem, as it usually does, lies in the legality. Even though those games are hard to find, companies still often own the copyrights on them (Square, for example, just released FFVII in an official emulator on the PSP, and they wouldn't be very happy with someone else releasing it on the iPhone). So while it's very easy for someone to write software that pretends to be an old NES (and there are lots of jailbroken apps around that will do just that), it's not easy to get all the rights and legal sign-offs to make it legit. Legit enough for Apple to keep it in the App Store, anyway. And while the video Gizmodo shows is awesome, and is possible on a jailbroken phone, it's not likely we'll ever see that app make it through Apple's approval. Not to mention that even when people jump through the legal hoops, Apple isn't happy with running other systems' code on their hardware anyway. Lame.

That doesn't mean that the old games are gone forever -- there are certainly emulators of open-sourced or expired hardware on the App Store (here's one for Chip-8), and obviously there's a commercial reason for companies who do own the copyrights on popular games to bring them into the App Store officially. But as great as it would be to have a GBA emulator that automatically played any GBA game ROMs you loaded into it, that kind of stuff will have to stay in the jailbreak underground for now.

As the night follows the day, surely an updated Pwnage tool must follow the release of a new iPhone operating system. True to form, the dedicated hackers of the iPhone Dev Team have posted a blog entry detailing the steps needed to jailbreak (and, in some cases, unlock) iPhones running the new software.

There are quite a few caveats and qualifications with this stage of the tool release; in particular, it won't work with 2nd-gen iPod touch devices, nor with the new 3G S phones. If you have unlocked your phone using the yellowsn0w tools, you are advised not to use this version of Pwnage as your phone will relock back to the original carrier assignment.

It should go without saying, but we'll say it: jailbreaking or unlocking your phone is done at your own risk.

Sure, the transparent email and the yet-another-dialer brigade are all well and good, but there are a few things the iPhone doesn't do that I really wish it would. Here's a pair of app suggestions that are probably outside the bounds of the SDK and prime fodder for jailbreak developers, but if someone came up with a way to do them that would make it onto the App Store, I can guarantee you at least one customer.

WiFi Master: If you use your iPhone in a major metropolitan area, you've probably encountered the problem I have in New York City -- scores of access points named 'linksys,' 'netgear' or 'default' or a Starbucks broadcasting AT&T's WiFi network on every corner. Join one, just once, and your iPhone insists on hopping aboard whenever it's in range, whether or not the named network is the one you meant to use or whether you've signed into the web portal for the WLAN (leaving you starved for connectivity, as the 3G connection is superceded by the WiFi link).

Tweaking the network settings is generally a no-no for non-Apple apps, but we need help. Give me a quick way to turn WiFi on and off from the home screen, a way to exclude or include access points by MAC address instead of just by SSID (locking out the rogue 'linksys' networks), and instant display of my assigned DHCP address without diving four screens down into the Settings app. Granted, the Devicescape sign-on automation apps are a good start towards this goal (the Easy WiFi for AT&T iPhones app is worth the $0.99 in aggravation reduction) but I need more active WiFi control in this network-dense environment.

As noted in the comments, the jailbreak app SBSettings covers a lot of these use cases; if you're in a WiFi hot zone and you can't take any more, it might be the tool that pushes you to jailbreak your phone.

GotThis?: One of the favored activities of appoholics, when meeting in their secret underground lairs, is comparing screenfuls of cool iPhone apps to see what they might want to download next. It would be easier if these phone-waving sessions could be automated with -- of course -- an app that would compare your installed suite with that of your neighbor's, point out what he's got that you don't and vice versa, show you most-run statistics and then perhaps link you to the App Store if you've gotta have one of those apps right away.

The problem is that the roster of installed apps is not accessible to a sandboxed app running on the phone, at least not under SDK rules; one way to do this would be to scrape the installed app profile from iTunes and then store it, with the user's permission, on an external website (leveraging the existing iUseThis for iPhone, perhaps). Give this app the interface and location awareness of contact sharer & billionth-app Bump, let users tap iPhones to compare installation profiles, and you'd have a fun social networking tool plus an appoholic enabler of devastating proportions.

What's on your app wishlist? Have you seen apps like these, either in the App Store or in the Cydia Store? Let us know below.