White Collar Handyman
In-Home and In-Office Technology Concierge Services
Lessons & Tutoring • Repair • Troubleshooting • Upgrades & Installation
Fast Response • Reasonable Rates • In Your Home or Office • Same Day Service Available
(781) 989-2373
Hey! We've moved to a new URL to better reflect who we are and what we do! Please visit Rob Falk Technology Concierge Services at http://robfalk.net and update your bookmarks.

Thursday, September 6, 2012

UDID what?

A hacker group known as AntiSec claims to have hacked into an FBI agent's laptop and downloaded a database containing 12,000,000 UDID's along with other personal information attached to those IDs.

A UDID is the Unique Device Identifier for your Apple iOS device (iPhone, iPad, iPod Touch.) It's kind of like DNA trace, only digital. And just like DNA trace, if someone has merely that alone, it doesn't do them much good. But if that UDID gets into a database (like CODIS, perhaps?) with your name, and other personal data, it becomes a very powerful tool for identity theft, or privacy invasion. And AntiSec says the FBI and other entities are working on just such a database. Some may find that troubling. (The rest are brain-dead.)

While the FBI has denied that it was the source of the leak, it hasn't actually denied having the information.

There's a more detailed explanation of the whole thing available at TechCrunch.

And, there's a good way to find out if your UDID is one of the million published. Here's how:

  1. Plug your iDevice into iTunes.
  2. Click on your iDevice in the Devices part of the window.
  3. Click Summary in the Main window.
  4. Click on the Serial Number area. It changes to your UDID.
  5. Make note of that string of characters
  6. Browse to LastPass.com
  7. Just enter the first 5 of those characters and see if it thinks you've been leaked.

If it comes back with your whole number, it's been leaked. Otherwise, you're not one of the million, but there are 11 million more where those came from. :-(

This is a good reminder to make sure that you have taken all the security measures you can with regard to your iDevices, your computer, and all your various Internet accounts like Facebook, Twitter, Amazon, your bank and credit cards, and all those other places that really only have a few keystrokes between the bad guys and all of your stuff.

If you are still using the same user name and password at more than one site...
If you are still using passwords like fluffy1994...
If you are not already using 1Password or LastPass or some thing like them...

Now is the time to take a security inventory and step up your guard. I'm here to help if you need me.

For now, whether your UDID has been leaked or not, there's not much more to do. Except maybe join the EFF.

No comments:

Post a Comment