5 Comments

Summary:

The FBI says it didn’t have them, and now Apple says it also never handed over UDIDs to any organization. This leads to plenty more questions about where the list of 1 million Apple device IDs came from that was posted on the web Tuesday.

Image 1 for post Location Based Services on first-gen iPhone working( 2008-07-10 15:48:44)

First, the FBI denied possessing 12 million unique device IDs (UDIDs) tied to Apple iOS devices that hacking group Anonymous says it stole from an FBI agent’s computer. Now Apple is denying any knowledge or transmission of those UDIDs to the law enforcement agency as well. All of this calls into question the original story that the hackers told.

Here’s what Apple told AllThingsD on Wednesday about the millions of device IDs in question:

‘The FBI has not requested this information from Apple, nor have we provided it to the FBI or any organization. Additionally, with iOS 6 we introduced a new set of APIs meant to replace the use of the UDID and will soon be banning the use of UDID.’

To back up a bit: On Tuesday a group associated with Anonymous posted a file online that contained 1 million Apple UDIDs, or ID numbers assigned to 1 million iOS devices. In a long note posted with the download link to the file, the group claimed it stole a file with 12 million Apple UDIDs from the laptop of an FBI agent in March. The group says it chose to post just 1 million of those to start with.

Then, later Tuesday the FBI issued a statement that it hadn’t found any evidence to back up the hackers’ story: “At this time there is no evidence indicating that an F.B.I. laptop was compromised or that the F.B.I. either sought or obtained this data.”

Anonymous said part of the plan of releasing the list of UDIDs was to highlight the danger of letting companies and advertisers (or law enforcement) know the potential identity of whereabouts of a device and its owner.

But if Apple didn’t hand over the UDIDs and the FBI didn’t have them, where did they come from? The hacking group has some more explaining to do — which, doubtless, it will.

  1. An unactivated UDID would be of little value…

    Share
  2. That hackers got hold of 1 million Apple UDIDs is telling of Apple’s security incompetence. Maybe Apple drank too much of its kool-aid, believing that Apple devices are secure. Well, not magically secure at all.

    Share
  3. What is depressing is that Anonymous has more credibility than the FBI. I think they are simy lying, and they did have the UUIDs and got them illegally, hence the denial.

    Share
  4. Okay, reality check. Would FBI admit? Never. It’s against policy. How did FBI get it? For people that don’t read tech.. It may be a surprise to learn that all major Internet nodes are populated with FBI/NSA sleepers. That means in English that they can stream anything they want. Why would FBI want UUIDs – simple, apple watermarks every app you download (or cross matches your uuid before download). So made-in-the middle(FBI in the middle) would permit modded apps to be loaded by user unknowingly. Why? Recon.

    Share
  5. I spent several hours on the phone talking with apple corporate and an apple store, trying to report fraud. I was met with indifference. They did not seem to care that someone was stealing from them. Fraud costs all of us and they do not care.

    Share

Comments have been disabled for this post