backtop


Print 38 comment(s) - last by tastyratz.. on Sep 6 at 8:19 AM

AntiSec hacked an FBI laptop back in March, and is just now revealing its loot

AntiSec is up to its usual antics again, and this time the hacker group managed to score a wealth of information on users of Apple iOS-based devices. The group claims to have hacked an FBI laptop and obtained over 12 million Apple UDIDs were.
 
A UDID (unique device identifier) is a 40-character code that is tied to a single device, be it an iPhone, iPad, or iPod touch. The UDID is normally used by app developers for tracking purposes, and Apple uses the UDID when authenticating Siri queries on the iPhone 4S.
 
In its rather long, rant-filled manifesto, AntiSec describes how it obtained the information:
 
During the second week of March 2012, a Dell Vostro notebook, used by Supervisor Special Agent Christopher K. Stangl from FBI Regional Cyber Action Team and New York FBI Office Evidence Response Team was breached using the AtomicReferenceArray vulnerability on Java, during the shell session some files were downloaded from his Desktop folder one of them with the name of "NCFTA_iOS_devices_intel.csv" turned to be a list of 12,367,232 Apple iOS devices including Unique Device Identifiers (UDID), user names, name of device, type of device, Apple Push Notification Service tokens, zipcodes, cellphone numbers, addresses, etc. the personal details fields referring to people appears many times empty leaving the whole list incompleted on many parts. no other file on the same folder makes mention about this list or its purpose.
 
While over 12 million UDIDs were obtained during the attack on the FBI laptop, AntiSec has “only” released 1,000,001 UDIDs to the public. The group has thankfully removed personal information (names, address, cell phone numbers, etc) from list, but searching for your own UDID is rather simple using the following tool. The site allows you to search the list for your UDID using a partial string instead of divulging all 40 characters.

 You can view your UDID from within iTunes or via an app directly from your iPhone or iPad.

It's worth noting that the NCFTA reference in the filename is likely pointing to National Cyber-Forensics & Training Alliance. The group describes itself a "Non-profit corporation, evolved from one of the nation’s first High Tech Task Forces and, since 1997, has established an expansive alliance between subject matter experts (SMEs) in the public and private sectors (more than 500 worldwide) with the goal of addressing complex and often internationally-spawned cyber crimes."
 
Regardless of the motives behind AntiSec's latest antics, there are many questions that arise from this breach. Why does the FBI have 12 million Apple UDIDs on a laptop? Did a developer willingly hand over the UDIDs to the FBI? Did Apple itself play any part in divulging the information to the FBI upon request?
 
Only time will tell as we learn more from this “big reveal”.

Sources: The Next Web, Pastebin, UDID Checker



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

And why is this a suprise?
By GotThumbs on 9/4/2012 11:44:28 AM , Rating: 2
It just amazinse me how naieve so many people are these days.

Data of any kind, is a hot commodity....Facebook tracks all its followers and sells that information to interested marketers. How else could they operate? You know FB users will not pay to support the infrastructure.

The FBI would be full if idots if it failed to look at what kind of helpful data it can gleam from certain users phone data. GPS location data would be key when tracking known criminals intent on things such as US terrorest attacks. Each and every phone or web device can be used as a tracking device.

If you didn't already know that....Your ignorance is not an excuse for surprise.

Say you are involved in a car accident (its really just a collision)...know that your phone activity will be looked at to see if you were texting or talking on your cell at the time of the collision....you will then have contributed to the collision. You may not like it...but if your not doing anything wrong...then its not a big deal. You can whine all day about it...but everyone knows this fact.




"This week I got an iPhone. This weekend I got four chargers so I can keep it charged everywhere I go and a land line so I can actually make phone calls." -- Facebook CEO Mark Zuckerberg














botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki