For the last few days, some jailbroken iPhone users have found their home screen background a little different than they remembered. A hacker, going by the name "ikee," created a worm that changes the home screen background on jailbroken iPhones whose owners failed to change the default password after installing SSH. Simply jailbreaking your iPhone will not make you vulnerable to this sort of hack. The iPhone OS, in general, is also immune to this hack. Still confused? Let's back up a bit.

On jailbroken iPhones, SSH is installable with a package from Cydia that allows you to connect to your phone and make changes to the filesystem. It does this by logging into the root user with the password "alpine." After installing SSH, it is always recommended that you change "alpine" to the password of your choosing. This hack can only affect people who chose not to change that password -- no one else.

This hack originated in Australia, the home country of ikee, and has possibly spread to other iPhones in other countries, but we've been unable to verify that. A gentleman by the name of JD held an interview with the hacker over IRC and posted it to his blog. In ikee's own words, here's how the worm has spread:

...The code itself is set to firstly scan the 3G IP range the phone is on, then Optus/Vodafone/Telstra's IP Ranges (I think the reason Optus got hit so hard is because the other 2 are NAT'd) then a random 20 IP ranges. I'm guessing a few phones hit a range that another vulnerable phone was on.

Basically, once your phone is infected, the worm starts looking for other iPhones on the cellular network that use the root:alpine combination. Once it finds another vulnerable iPhone, it installs itself and begins the process again... and again... and again.

Luckily for the jailbreakers in the audience who may have been affected, there's really no harm done -- at least not with this version of the worm. According to the hacker, this was more of an experiment than anything else. The worm changes your background and then disables inbound SSH, which is a good thing. If SSH was left turned on, a similar worm could follow along but conceivably do much more damage. For instructions on how to delete this worm, read JD's interview with ikee. I would recommend reading the interview just for the information it presents; I found it pretty interesting. If you've got a jailbroken iPhone or iPod touch and you've never changed the default device password, now's the time. Here's how, if you are using terminal:

Type: ssh root@(iPhone IP address)
When prompted for the password type: alpine
Now you're connected the phone...
type: passwd
It should then prompt your for a new password -- type one that you'll remember. There's no easy way to reset it if you forget it.

That's it. Please remember to be responsibly secure with your devices. Hackers like ikee are troublesome, but this could have been much worse. While I don't personally condone his actions, he's prevented a lot of people from being vulnerable to more malicious attacks later down the road.

Thanks, James!

Several readers have urged me to try the Gokivo Navigator for the iPhone [iTunes link], so today is the day. The app is U.S. $4.99, but that only provides you with GPS navigation for 30 days. After that, the app costs $4.99 monthly or you can purchase a year of service for $39.99. That's quite a bit less that the AT&T nav solution [iTunes link], and makes the Gokivo app quite competitive. The app includes a Traffic Tracking Center, text to speech so street names are announced as you drive, and it has iPod controls so you don't have to leave the app to change your music.

Like the AT&T app, if you are out of range of the data network, you won't get maps. And like most of the competition, Gokivo gives you an estimated time of arrival, distance to your destination, and your current speed.

The map doesn't work in landscape view, which I consider a strong negative. It's easy to navigate to your addresses in your Contacts app, and the feature is nicely integrated.

Want an iPhone app business without all the boring hassle of actually programming and releasing iPhone apps? Boy, does Brice Milliorn have a deal for you! He's auctioning off his iPhone app business, which he says has 87 different apps for sale, over on eBay.

Milliorn says he started out developing apps on his own, but the business is just too big for him to keep up so he's selling all of the apps and their rights, all of the source code, and technical support for two months to transition everything over to the new owner. He doesn't specifically say that he'll transfer the developer account on Apple's App Store to your name (he says he'll send over a DVD with the source code and transfer "the whole kit and caboodle" to you), but we presume that's what will happen -- of course if you go for it, you're doing this at your own risk.

What will a burgeoning App Store business, complete with apps like iSexyRef and Swine Flu cost you? Just a cool $100 grand. That's the starting bid in the eBay auction, which has just over a week left and no bids as of this writing. There are certainly less expensive ways to get started selling apps on the store. It only costs $100 to register in Apple's Developer Program for a year, and then you just need to find a developer you can pay -- or even do it yourself with a helper service).

If you'd rather start off with a bunch of marginal to silly 99-cent apps and happen to have an extra $100,000 lying around to spend (maybe for a nice holiday gift?), here's your opportunity.

If you're tired of dropped calls and dead zones, and pondering the merits of turning in your iPhone for a DROID... hold on there, champ. AppleInsider says it's received a copy of a report by OTR Global, claiming that Apple has signed contracts to produce a UMTS / CDMA hybrid iPhone to be released in the third quarter of 2010.

The hybrid handset, built around a dual-system chip from Qualcomm, would allow the iPhone to run on virtually any GSM/UTMS cellular network worldwide -- and also on the CDMA2000 networks of US carriers like Verizon and Sprint. In particular, Verizon is cited in the report as the target carrier for the new devices.

The report states that Foxconn, the Taiwan-based sole-source provider of iPhone hardware at this time, will not build the new device. Instead, a subsidiary of Asustek known as Pegatron has been selected to kick off manufacturing. It's also rumored that the hybrid device uses a 2.8" screen, making the handset smaller than the current model which uses a 3.5" display.

Photos of the smaller display were first featured on iLounge in June of 2008 (see photo at right), sparking widespread rumors at the time that an "iPhone nano" was on the way. Over a year later, neither the smaller iPhone nor a Verizon model are available. However, if the leaked report is any indication, 2010 could be yet another year of incredible growth for the iPhone economy.

After a long wait, Squarespace customers finally have an iPhone app of their own. Squarespace is a hosted blogging/CMS service that competes with the likes of WordPress.com and Typepad. Having used all three, I can say that interacting with Squarespace (posting, changing your site's look and feel, etc.) is unlike the others. Instead of a separate control panel/dashboard, Squarespace previews changes in real time on the same screen. It's really nice.

The iPhone app [iTunes link] seems to be an extension of its browser-based sibling. For example, check out the live preview mode pictured at right. You can also manage multiple accounts, post, upload multiple images at once (awesome) view stats and more. The UI looks nice as well.

While bloggers on other platforms have had compatible apps in the App Store for a while now, this is Squarespace's first solution. We're eager to play around with it. Squarespace for iPhone is free and requires a paid Squarespace account.

We're seeing a lot of updates to navigation applications, and the latest is for the CoPilot Live app [iTunes link] for the iPhone. As promised, the company has updated the map data to fix mistakes or omissions that were reported by users. The latest update also adds iPod controls within the app, which many users were requesting.

The update fixes a reported address search issue, improves GPS reception and makes some improvements to the user interface.

The previous version of the U.S. $34.99 app added text to speech and a better method of text entry.

As we've mentioned before, the competition in nav apps is going to get very interesting if Apple allows the Google nav app into the app store. It will be free, and has a host of features that are not currently available in the paid apps that are shipping for the iPhone now.

With the FCC watching the relationship between Google and Apple, I'm thinking Apple will have to let the app in, but Apple has surprised me before, and not always in a positive way.

Photo courtesy of flickr: Thijs Jacobs

Back in April 2009, TUAW's Dave Caolo posted a video showing off the potential (and some of the potential annoyances as well) and possibilities of an RFID-enabled iPhone world via an iPhone RFID prototype by Near Field. And, according to a Near Field Communications blog posting, Apple is said to have equipped prototypes of the next-generation iPhone with RFID readers.

How awesome would it be if, instead of using my Mobil Speedpass, I could turn to my iPhone and swipe that against the gas pumping station to pay for gas? And, because there may eventually be "an app for that," I may also be able to view my current balance and fuel economy statistics. Or, instead of needing to put a FasTrak transponder atop my windshield (which is annoying), I could simply put my iPhone on the dashboard as I cross the toll road. I could then view my balance, as well as fill up my credits on the fly. These are just some examples of RFID applications in use today.

Boy Genius Report is claiming that two separate sources have told them that AT&T is looking to sell an 8GB iPhone 3GS for $99 US before Christmas. While this news wouldn't come as a shock, it would certainly take more than AT&T to make it happen. As most of you know, Apple doesn't make an 8GB iPhone 3GS and it would probably mean the discontinuation of the iPhone 3G in general.

If you think back to the time of the first generation iPhone (it was so long ago now), you'll probably remember that Apple quickly discontinued the 4GB iPhone after realizing that most people were opting for the larger capacity. Not too long after that, Apple introduced the 16GB version and discounted the price of the 8GB. Now that the iPhones themselves are subsidized by the wireless carrier, the game is a little different.

I doubt that we'll see AT&T discount the 16GB iPhone 3GS to $99 US, even though it would be a huge strategic move before the holiday season, but I have a hard time believing that Apple would be willing to manufacture an 8GB iPhone 3GS. It's one thing for them to continue with the 8GB iPhone 3G because they already have the manufacturing in place, but for Apple to start manufacturing another iPhone 3GS at a capacity less than its current models -- that just seems out of place.

I've found it disappointing that the iPhone (a professional device) has had a smaller capacity than that of its sister, the iPod touch. Currently, the iPod touch is shipping at a top capacity of 64GB and the iPhone only 32GB. Here's the point: if AT&T and Apple could work together and release the 16GB iPhone 3GS at $99 then that could potentially allow for the 32GB at $199 and a 64GB model at $299. That would be a killer plan for the two companies just before the holiday season.

While this may be far-fetched, I don't think it's impossible: Apple did release a bump in storage to the 16GB iPhone in early 2008 without any warning. Here's hoping that they do that again.

When the latest G-Map app covering navigation in the U.S. and Canada was updated with text to speech, it didn't make owners of the older East and West [iTunes store links for each] versions too happy. Now that has been corrected, and both iterations of the U.S. $24.99 app have text to speech, iTunes integration, and the ability to resume navigation automatically after a call.

Traffic will be added soon to both apps as an in-app paid update.

Meanwhile, the U.S. and Canada version has been pulled from the app store. According to the company:

'we found a critical issue in the new update of G-Map US & Canada. In order to protect our current users, we have no choice but to temporarily pull the app from the App Store. We already corrected the problem and re-submitted the G-Map US & Canada for approval. Please allow us a few more weeks to serve you. We will do our best to minimize any inconveniences that might occur to you.'

All the G-Map apps have been reasonably priced, but a bit buggy which has not pleased buyers. I'm working on a holiday buyers guide for nav software for the iPhone, but the whole landscape will change radically if Apple approves the free Google nav app with turn by turn directions and photo realistic rendering of routes. The app is shipping in the new Android 2.0 phones, starting with the Verizon Droid, which is scheduled for release tomorrow.

Most American television viewers have been treated recently to endless reruns of Verizon's "iDon't" advertisements. These ads attack the iPhone, playing music that's similar to that played in iPhone ads while displaying a series of messages stating such brilliant and cutting phrases as "iDon't have a real keyboard," "iDon't run simultaneous apps," and so on.

Mac fan and Chicago Sun-Times writer Andy Ihnatko was apparently as fed up with the ads as most of us here at TUAW, so he took Verizon to task in a Wednesday column. In the column, he takes on Verizon's claims and for the most part finds them lacking or at least overblown.In describing the faults of the ad campaign, Ihnatko says "Its claims about the limitations of the iPhone are baloney (Mostly.)"

Andy has been testing the new Motorola Droid phone for an upcoming review, and he does like the phone -- a lot. But his take on the ad campaign is right on the mark: "Verizon's 'iDon't' is a terrible commercial. It provokes experienced iPhone users like me to get all Tyra Banks on the phone and the Android 2.0 OS. That can't possibly be good for business."

Don't mess with us iPhone fans, Verizon...

[via Chicago Sun-Times]

My beloved fiancé,

It is with great sadness that I write you at home to your Gmail account to inform you that I am intending to sell your ring on Ebay and we will part ways. You see, ours was a mixed relationship to begin with. You have your Windows 7, your Linux, your original Android phone from T-Mobile in the UK. I have my iPhone, my iMac and everything good that's Apple (and even a few pieces that aren't).

That's why I know it'll never work out between us. According to a recent study from Retrevo, iPhone owners believe that a "cool gadget" makes a person far more attractive than the measly doctorate you've spent years studying for. Every time we are together, I can't help but shudder over the fact that your Android phone is not of the latest generation.

So forget the four years of history between us, the months of separation due to our being in two different countries, and the fact that you are a wonderful, kind, sweet, and intelligent man with a bright future ahead of you. I have someone else I think the world of, and it is my iPhone. Now if you'll excuse me, I must go watch adult material and post up an ad at Match.com for someone with a 3GS.

Much love,
Your dear departed Megan

P.S. This letter is satire, I'm not dumping my fiance over his gadget preferences. Love you, honey!

There's an exciting announcement at All Tech Related this week that has us saying, "We can't wait!"

ZodTDD, the developer behind GpSPhone (a Nintendo Gameboy Advance emulator for the iPhone and iPod Touch), announced the development of an N64 emulator for the iPhone and iPod touch. Zodttd believes that the current generation iPhone and iPod touch have the graphic CPU horsepower necessary to run those games. "...I can't promise it will run games top notch just yet, as things are too early to say. There's hope though, with a 3D accelerated graphics plugin, as well as an ARM dynarec."

As iPhone Savior points out, the toughest challenge could be fitting the controls onto the screen in an unobtrusive yet usable way. That was my main complaint about Resident Evil for iPhone [iTunes link] -- my hand is often in the way of what I'm trying to see.

Note that this will require an jailbroken iPhone or iPod touch.

[Via iPhone Savior]

Let's file this under 'really bad ideas done poorly.' Sony would like to sell you 1,000 ringtones, sound effects, and comedy voices on a data DVD that's just oh so ready to import into iTunes. Sony doesn't seem to offer a comparable product for other cellphones, like maybe the Sony Ericsson brand, so I can only conclude this is a plot by Sony to make iPhone owners look dumb when a call comes in.

I listened to some of the samples on the Sony website, and the DVD seems to be a collection of bad and unmemorable production music, obnoxious sound effects, and jokey voices saying things like "Dude -- everybody keep your voice down, I think it's my Dad calling."

If you're lucky enough to have a Google Wave account, you may be familiar with Waveboard. I started out using Wave via a Fluid SSB, running Wave Growl for Growl notifications and Dock badges. Then I found Waveboard, and it made things smooth enough that I haven't looked at Wave any other way since. So, obviously, I'd been anticipating the iPhone version of Waveboard. It's here, and it's, well, moderately interesting.

The desktop app is essentially a Single Site Browser, like a Fluid app, but it adds handy, Mac-like keyboard shortcuts, Growl notifications, Dock and Menubar notifications, etc. The iPhone app is the same, a webkit browser showing what Google already provides, but there just wasn't as much potential integration to take advantage of on the iPhone. They took advantage of the shake gesture to reload or log out. Websites can be opened in the same browser or sent to Safari. Landscape mode is supported. And you can kind of get push notifications, by using Prowl (which Aron has mentioned before). Setup instructions are available on the Waveboard blog.

That's about it, for now. Google hasn't offered an API, which seriously hampers a developer's ability to do cool things. More features are reportedly in the works, so we'll see if it turns into a truly useful counterpart to its desktop cousin over time.

Waveboard for iPhone is available on the App Store iTunes link for $0.99US. Under a buck, and it might be worth a look for avid Wavers (which I would be, if enough of my clients and cohorts had accounts to make it truly useful).

[via TechCrunch]

Apple announced early this morning that there are now over 100,000 apps available to iPhone and iPod touch users in the the App Store. Customers of the App Store have purchased over two billion apps, and it is the world's most popular applications store.

In this morning's press release, Apple senior vice president for Worldwide Marketing Phil Schiller noted that "The App Store, now with over 100,000 applications available, is clearly a major differentiator for millions of iPhone and iPod touch customers around the world."

Schiller's statement was echoed by top executives from EA Mobile and Smule. EA Mobile's Travis Boatman, VP of Worldwide Studios, praised the App Store as an innovative marketplace to over 50 million iPhone and iPod touch owners, while Smule's CEO Jeff Smith took the perspective of a small, new development house that has skyrocketed to success. "With 10,000 downloads a day, worldwide customer response to our I Am T-Pain App has exceeded our wildest expectations," said Smith. "The App Store has given us a unique opportunity to create and grow a very successful business, and we're looking forward to an exciting future.

By comparison, the Google Android Market had just over 10,000 apps as of early September, almost 65% of which were free. An analysis of iPhone and Android app purchases shows that iPhone users are more likely to purchase apps, while users of Android-based smartphones appear to like getting their software for free. Developers for the most part will go where the money is, and at this time, that appears to be the App Store.

[via Engadget]