One million Apple device IDs with personal information allegedly stolen from FBI laptop

A file reportedly containing 1,000,001 iPhone and iPad identification numbers has been posted on Pastebin, with hackers claiming to have stolen the data from a laptop belonging to an FBI agent. The poster claims to be in possession of a full file containing 12 million unique device identifiers (UDIDs), as well as personal data including "full names, cell numbers, addresses, zipcodes," though this information was redacted in the released sample. The data was posted under the Operation AntiSec banner, associated with hacktivist groups such as Anonymous and LulzSec.

According to the Pastebin post, the file was originally taken from a Dell Vostro laptop owned by Supervisory Special Agent Christopher K. Stangl — the attackers reportedly used a vulnerability in Java to gain access to the machine. The supposed name of the file in question, "NCFTA_iOS_devices_intel.csv," indicates a connection with the National Cyber-Forensics & Training Alliance, an intelligence-sharing organization dedicated to tackling cybercrime. The apparent incompleteness of the information suggests that it came from an app developer, or group of developers, rather than Apple itself.

The Next Web has put up a tool allowing users to check whether or not their UDID was included in the dump. As investigation into the incident continues, it will be intriguing to see if any correlations emerge between users — particularly, whether any link can be identified between using a particular app and appearing on the list. We'll update this post with any further information as it comes in.

Source: http://www.theverge.com/2012/9/4/3290789/antisec-fbi-udid-breach-iphone-ipad-apple


The UDID leak is a privacy catastrophe - http://corte.si/posts/security/udid-leak.html


So here we go again, this is why we should not trust the government in keeping any of our data safe.

The argument is, should they even have the data in the first place

The argument is, should they even have the data in the first place

thats what i thought tbh

thats what i thought tbh

Yeah, FBI Has obviously gone behind someones back (*Cough* Apple) to get the data anyway.

Yeah, FBI Has obviously gone behind someones back (*Cough* Apple) to get the data anyway.

I should think Apple complied/accepted whatever the FBI wanted, I doubt they went behind their back (an no, I'm not saying this just because it's Apple).

Here we go again...

I should think Apple complied/accepted whatever the FBI wanted, I doubt they went behind their back (an no, I'm not saying this just because it's Apple).

Here we go again...

I honestly don't think Apple would give out ALL of that kind of information though, the whole thing is covered in fish.

Why would Apple give FBI the data?
Why would the FBI need that data?
What would the FBI be doing with that data?

Says 12 million on this site aha
http://www.forbes.com/sites/parmyolson/2012/09/04/fbi-agents-laptop-hacked-to-grab-12-million-apple-ids-anonymous-claims/

Says 12 million on this site aha
http://www.forbes.com/sites/parmyolson/2012/09/04/fbi-agents-laptop-hacked-to-grab-12-million-apple-ids-anonymous-claims/

Yeah they got 12million but only released 1 million.

Apple:


“The FBI has not requested this information from Apple, nor have we provided it to the FBI or any organization. Additionally, with iOS 6 we introduced a new set of APIs meant to replace the use of the UDID and will soon be banning the use of UDID,” Apple spokesperson Natalie Kerris told AllThingsD.

FBI:

An FBI computer was claimed by the hackers to be the source of the information, but the FBI has denied any involvement in the situation.

So if the FBI does have such information and obtained it without Apple's permission, then Apple have grounds to take the FBI to court for breach of privacy on behalf of their customers, whether or not the UDID is being fazed out anyway. You'd think the FBI would be up to more important things, unless there's some dodgy dealings Apple and the FBI are up to behind close doors, but that seems a bit too far-fetched.

Apple:



FBI:

An FBI computer was claimed by the hackers to be the source of the information, but the FBI has denied any involvement in the situation.

I highly doubt this sort of news is even true tbh.

I couldn't care if my details go missing, sometimes I hope they do and I lose stuff just so I can claim back more.

Insurance fraud? Naaah ;)


Sent from my iPhone using Tapatalk

I saw this, I wonder if they have my information on record. It wouldn't surprise me if they did because:

A) If the FBI was (for some arbitrary reason) interested in collecting this (seemingly useless) data, the Canadian government lets the American government walk all over us when it comes to tracking us, and when it comes to enforcing American laws (http://www.cbc.ca/news/canada/story/2012/07/10/cross-border-policing-integration-sovereignty.html) which I personally do not give a damn about.

B) It's possible AntiSec just collected the data themselves and they didn't just stop (http://news.cnet.com/8301-13579_3-57507165-37/why-the-apple-fbi-and-antisec-udid-debacle-wont-go-away/) at collecting Americans' information.

Update on this:


Leaked Apple device IDs likely stolen from digital publishing company, not FBI


App development company Blue Toad has come forward as the likely source of Apple unique device IDs (UDIDs) leaked by hackers last week. In an interview with NBC News, Blue Toad's CEO Paul DeHart says that the company checked the million UDIDs that AntiSec posted against its own database, comparing IDs and other metadata like device names. The correlation was strong enough for a "100 percent confidence level," he says. "It's our data." DeHart declined to specify how the data was taken, citing an ongoing investigation, but he did say it had likely happened in the past two weeks. AntiSec's version of events, by contrast, has the UDIDs taken from an FBI agent's laptop back in March.

Read the full article by going to:

http://www.theverge.com/2012/9/10/3308076/apple-udids-stolen-from-blue-toad-not-fbi

Update on this:



Read the full article by going to:

http://www.theverge.com/2012/9/10/3308076/apple-udids-stolen-from-blue-toad-not-fbi

Atleast they're honest about it I guess.

You would think we would have learnt by now that AntiSec wouldn't know honesty if it was doing a fan dance using a lettuce leaf in front of them. They are better off ignored. The only thing you should ever do when Anonymous and AntiSec are mentioned is to fix the apparent problem and never quote anything they've said, it's usually tripe that's been materialised out of thin air.