antisec Hacker claims FBI has a list of over 12 million Apple UDID

A group of hackers is claiming that the FBI has a list of several million Apple Unique Device Identifiers (UDID).  If that’s the case then people’s privacy are at risk, or as the hacker blatantly puts it, “F***ing FBI is using your device info for a tracking people project or some s**t.”

A group of hackers is claiming that the FBI has a list of several million Apple Unique Device Identifiers (UDID).  If that’s the case then people’s privacy are at risk, or as the hacker blatantly puts it, “F***ing FBI is using your device info for a tracking people project or some s**t.”

appleudid(1) Hacker claims FBI has a list of over 12 million Apple UDID

According to a post on Pastebin, the hackers were able to infiltrate an FBI agent’s laptop to download the csv file containing a list of 12,367,232 UDIDs, among other personal information.

A segment of the post states the following:

“During the second week of March 2012, a Dell Vostro notebook, used by Supervisor Special Agent Christopher K. Stangl from FBI Regional Cyber Action Team and New York FBI Office Evidence Response Team was breached using the AtomicReferenceArray vulnerability on Java, during the shell session some files were downloaded from his Desktop folder one of them with the name of "NCFTA_iOS_devices_intel.csv" turned to be a list of 12,367,232 Apple iOS devices including Unique Device Identifiers (UDID), user names, name of device, type of device, Apple Push Notification Service tokens, zipcodes, cellphone numbers, addresses, etc. the personal details fields referring to people appears many times empty leaving the whole list incompleted on many parts. no other file on the same folder makes mention about this list or its purpose.”

Both Apple and the FBI have released statements, with the FBI denying that their agent’s laptop was compromised, and Apple saying that it had never handed over any UDIDs to the FBI.

In a statement to All Things D, the FBI rep wrote:

“The FBI is aware of published reports alleging that an FBI laptop was compromised and private data regarding Apple UDIDs was exposed. At this time there is no evidence indicating that an FBI laptop was compromised or that the FBI either sought or obtained this data.”

And Apple had this to say:

“The FBI has not requested this information from Apple, nor have we provided it to the FBI or any organization. Additionally, with iOS 6 we introduced a new set of APIs meant to replace the use of the UDID and will soon be banning the use of UDID.”

In the FBI’s statement to All Things D, the intelligence agency neither admitted nor denied the existence of such a UDID list.  The agency’s rep simply stated that “there is no evidence indicating” any type of compromise to their agent’s laptop.  If you’re reading in between the line on this, you might think the hackers’ claim is true.

Apple on the other hand flat out said it had no connections to the FBI’s supposed list of Apple UDIDs.

The hackers have also been trolling the press by demanding that Gawker’s Adrian Chen post a picture of himself in a tutu with a shoe on his head before they release more details regarding the FBI’s list of UDIDs. 

xlarge Hacker claims FBI has a list of over 12 million Apple UDID

Chen, a true blue journalist, complied with the request, but up until now the anonymous hackers have yet to release more information.