Linked by Thom Holwerda on Tue 4th Sep 2012 09:00 UTC
Apple This could be big - although just how big remains unclear. "There you have. 1,000,001 Apple Devices UDIDs linking to their users and their APNS tokens. The original file contained around 12,000,000 devices. We decided a million would be enough to release. We trimmed out other personal data as, full names, cell numbers, addresses, zipcodes, etc." How did AntiSec get this data (they claim)? From an FBI laptop. Why an FBI laptop would have a file with personal information on 12 million iOS users, we don't know - especially since 10000 of them are Dutch/Belgian, and last I checked, those do not fall under FBI jurisdiction. Did the FBI obtain it from an application developer, or from Apple itself? Then again - 12 million users? From a single iOS developer? I find that hard to believe.
Permalink for comment 533791
To read all comments associated with this story, please click here.
Member since:

Apparently the published list is 130 MB. If it's a twelfth of the total the complete file would be about 1.5 GB.

It's kind of hard to believe that a FBI laptop with a Java vulnerability get spotted by some automated scan and somehow "they" managed to locate a file and download 1.5 GB of data.

They couldn't have know it was a FBI laptop, what was on it and where it was located.

Of course they could just have grabbed the biggest file around, but there is a real risk the connection is dropped before it completes considering the time it would take. Besides, large files often are pirated movies you could download anyway without needing to hack a laptop.

Another possibility is that the laptop got discovered by an automated scan and a human sniffed around after that, but that's also a low probability option also because having a file with 12 million UDIDs is very rare.

Discovering and hacking a FBI laptop and finding a 12 million UDID entries file and downloading it probably has a probability that's smaller than one in twelve million.

Reply Parent Score: 1