AntiSec has leaked 1,000,001 Apple Device UDIDs from a file of over 12 million obtained from the FBI.
there you have. 1,000,001 Apple Devices UDIDs linking to their users and their APNS tokens. the original file contained around 12,000,000 devices. we decided a million would be enough to release. we trimmed out other personal data as, full names, cell numbers, addresses, zipcodes, etc. not all devices have the same amount of personal data linked. some devices contained lot of info. others no more than zipcodes or almost anything. we left those main columns we consider enough to help a significant amount of users to look if their devices are listed there or not. the DevTokens are included for those mobile hackers who could figure out some use from the dataset.
The Apple UDID is a unique device identifier used by developers. It was used by game networks, ad networks, and other apps that needed to identify users. In iOS 5 Apple began phasing out the id for privacy reasons.
Here's how the ids were obtained:
---
During the second week of March 2012, a Dell Vostro notebook, used by Supervisor Special Agent Christopher K. Stangl from FBI Regional Cyber Action Team and New York FBI Office Evidence Response Team was breached using the AtomicReferenceArray vulnerability on Java, during the shell session some files were downloaded from his Desktop folder one of them with the name of "NCFTA_iOS_devices_intel.csv" turned to be a list of 12,367,232 Apple iOS devices including Unique Device Identifiers (UDID), user names, name of device, type of device, Apple Push Notification Service tokens, zipcodes, cellphone numbers, addresses, etc. the personal details fields referring to people appears many times empty leaving the whole list incompleted on many parts. no other file on the same folder makes mention about this list or its purpose.
---
The UDIDs have been published along with minimal user data to make people aware that the FBI may be tracking citizens using that information.
You can check if your UDID is in the leaked list using a tool created by TNW. Or you can find instructions on how to download the list at the link below.
Read More
No comments:
Post a Comment