My iPhone is jailbroken - is it insecure?
There has been a lot of attention given to some recent iPhone hacks that potentially affect users of jailbroken iPhones, especially now that a malicious attack has been discovered. If you've jailbroken your phone, and you are worried about whether you are potentially vulnerable, here's a simple answer:
If you have not installed OpenSSH (or any other SSH package), you are not vulnerable to the current attacks.
To check this, go into the Cydia installer app on your jailbroken iPhone, tap the Manage button, tap the Packages button, and scroll alphabetically through the list of installed packages looking for OpenSSH. If it's not there, you're good, you can relax. If you're using an alternative installer like Rock the steps will be much the same.
If OpenSSH is there, you can follow this guide from our friends over at TUAW to change your iPhone's root and mobile passwords.