Slashdot Mirror

← Back to Stories (view on slashdot.org)

A Proof-of-Concept Virus for iPods Running Linux

Posted by CowboyNeal on from the fish-in-a-barrel dept.

An anonymous reader writes "Although antivirus companies will probably create a hype saying that iPods are prone to infections, a virus called 'Podloso' is a newly found virus that is just a proof of concept code that can infect iPods running Linux. Once launched, the virus scans the device's hard disk and infects all executable .elf format files. Any attempt to launch these files will cause the virus to display a message on the screen which says, 'You are infected with Oslo the first iPodLinux Virus.'"

22 of 170 comments (clear)

  1. Hear that? by despik · · Score: 4, Funny

    It's the sound of all the real virus authors collectively spinning in their coffins/cells/cubicles.

    --
    "I seem to have mastered a certain amount of control over physical reality."
    1. Re:Hear that? by Anonymous Coward · · Score: 4, Funny

      Let's see... To infect your ipod with this virus, you first you have to install Linux. Then you have to install the virus. Then you have to run the virus.

      Oo. I'm scared.

      Now, if you really want to cause panic and terror among ipod users, come up with something that will either replace the DRM on unprotected tracks after they start selling them or something that recodes all your tunes into WMA format.

  2. I know! I know! by that+this+is+not+und · · Score: 5, Funny

    Next, I will write a 'virus' that attacks Macintosh SE/30's running NetBSD!

  3. ...another "social engineering" virus by hcmtnbiker · · Score: 5, Interesting

    FTA: Podloso cannot be launched automatically without user involvement.

    I always find it amusing when a virus that requires the user to activate it is considered news. By definition it's more social engineering then a vulnerability. If people weren't so stupid I assume nearly 100% of all computer virus' wouldn't exist, or wouldn't be a problem.

    --
    If i had one dollar for every brain you dont have, i would have $1.
    1. Re:...another "social engineering" virus by Tim+C · · Score: 4, Informative

      The vast majority of viruses require user intervention to run and infect a machine, and aren't considered news (or at least, not individually). I assume that this one is because it's the first for this particular platform.

      --
      It's official. Most of you are morons.
    2. Re:...another "social engineering" virus by H3g3m0n · · Score: 4, Informative

      Technically these are considered worms, as they actively self propagate, they seek out vulnerabilities in other systems and infect them. Viruses on the other hand attach to similar files and require the user to transfer the file and execute it on another system having a passive attack vector. I'm not sure i would count the iPod Linux virus as a virus as it would have to be able to infect other iPods somehow, if it can't infect other iPods then its really just malicious code. Granted you can take the binary files from one iPod and put it on another but thats not likely to happen meaning it has basically no self propagation.

      --
      cat /dev/urandom > .sig
    3. Re:...another "social engineering" virus by sootman · · Score: 5, Interesting

      But it shouldn't be news. Anything that can run code, can run malicious code. It's only worth mentioning if there's a chance that a user will a) obtain and b) run the code without knowing it's malicious. If the virus were hidden in a song and could be executed just by being played, that would be news.

      Oh, and look: it was discovered by a company that makes antivirus software. Wow, what are the odds that an antivirus company would be the first to discover and publicize a virus that runs on what might be called the least-adopted platform ever in history? I'd bet my next paycheck that somewhere there's a connection between an employee of that company and the author of this "virus"--and not just a six-degrees kind of link, I mean a real, substantial link.

      Antivirus exec: "Well, in six years, we haven't been able to convince anyone that OS X is insecure. Despite our efforts, there hasn't been a single in-the-wild, self-replicating virus for that platform. What should we try next?"
      Underling: "Maybe try spreading FUD about iPods?"
      Antivirus exec: "Brilliant!"

      --
      Dear Slashdot: next time you want to mess with the site, add a rich-text editor for comments.
  4. Depends on antivirus company by Ilgaz · · Score: 4, Informative

    ""Although antivirus companies will probably create a hype saying that iPods are prone to infections"

    Well, (Eugene) Kaspersky says at viruslist.com blog (http://www.viruslist.com/en/weblog?weblogid=20818 7356):

    "Overall, I don't think iViruses will cause serious problems in the future. The iPod world is very different from the PC and smartphone world. Users aren't constantly installing new software and downloading a wide range of files, so that cuts down on the possible infection vectors. And what's there to steal from an iPod? Multimedia files, and that's about all.

    So - it was an interesting little puzzle, this proof of concept, but nothing more."

  5. Non-story by nevali · · Score: 5, Informative

    This is possibly the biggest waste of a story Slashdot's had in a while.

    Not only does it only 'infect' iPods running Linux, but it's not even able to replicate. To call it a virus is stretching the truth, to say the least; it's just a program that trashes your binaries.

    1. Re:Non-story by Curmudgeonlyoldbloke · · Score: 4, Funny

      It's an "honour system virus" - in the same way that sending a user a program that deletes all their files and telling them to run it is.

  6. Re:Legality? by Ilgaz · · Score: 4, Funny

    I bet RMS will go mad since it isn't called GNU-Podloso

  7. Re:Thank Goodness by J0nne · · Score: 5, Insightful

    It's for the same reason people install Linux on their iPods in the first place: because they can.

  8. Re:Thank Goodness by someone1234 · · Score: 4, Interesting

    Creating pseudo-life? Hell, 20 years ago i was very happy when my exe header virus first infected one of my files :) It was definitely more satisfying than hacking away on some j2ee shit.

    --
    Patents Drive Free Software as Hurricanes Drive Construction Industry
  9. Next gen Virus by ValiSystem · · Score: 5, Funny

    Hey, i made a multi platform virus that can infect almost any existing computer. And it's easy to spread : just compile following code : #include "stdio.h" int main (void) { printf("YOU ARE INFECTED BY ULTRAdOOM NExT gen, F3AR THE L0RD !!\n"); exit 0; } Launch and here you are ! (yes, i know, i should have posted that on my blog and write a story for Slashdot)

  10. This is going to spread like wildfire by DrXym · · Score: 4, Funny

    Amongst the 8 people running Linux on their iPods.

  11. Parts needed... by FinchWorld · · Score: 5, Funny
    iPod - £90 to £250

    iPod Linux - Free

    Knowledge and desire to install linux on your MP3 Player - Your social life

    Having been smart enough to install Linux on your iPod then go out of your way to install a virus - Priceless

    For everything else theres run of the mill idiots.

    --
    "I may be full of crap about this game, and I may be wrong, and that's fine." -Jack Thompson
  12. Question by Rogerborg · · Score: 5, Insightful

    What is the intersection between people who're smart enough to have installed Linux on their iPods, and people stupid enough to run a random executable?

    Would anyone in that set like to make themselves known? Anyone? Don't be shy; anyone at all?

    Didn't think so.

    --
    If you were blocking sigs, you wouldn't have to read this.
  13. It's not .elf it's *ELF* by cculianu · · Score: 4, Informative

    The file format is called ELF, the executable and linking format. Not .elf. It isn't a file extension. This isn't windows. Bah.

  14. From the J.R.R. Tolkien department ... by ScrewMaster · · Score: 4, Funny

    Once launched, the virus scans the device's hard disk and infects all executable .elf format files.

    As an Orc myself, I'd have to say that all Elves are considered executable.

    --
    The higher the technology, the sharper that two-edged sword.
  15. Re:Whatever happened to... by RDW · · Score: 5, Funny

    How about a Zune virus that strips the DRM from the tracks on the infected machine and 'squirts' itself to all the other Zunes within wireless range? Think about it, if such a virus were released today the number of infections could soar into double figures by the end of the decade!

  16. Re:Whatever happened to... by Anonymous Coward · · Score: 4, Insightful

    I think this raises the question of which group has larger numbers. Is it iPods with Linux on them or Zunes?

  17. Re:I know! I know! by Virgil+Tibbs · · Score: 4, Funny

    what about a virus for W32 systems which wipes the OS, saves the user files and proceeds to install ubuntu?

    I'd let it infect me over and over again...

    --
    www.tdobson.net #### Dare to Dream #### blog.tdobson.net