Greg's bite: Apple iNSECURE for business use
TweetFollow Us on Twitter

Greg's bite: Apple iNSECURE for business use

By Greg Mills

This is important news, Apple Mac, iPhone and iPad are not suitable for business use.

While Apple has been pushing for respect from the business community due to increased security features found on Mac computers, iPhone and iPad, it seems they were at the same time secretly gathering location data from unsuspecting users. Apple intentionally created a permanent cache on iPhones and iPad that records its users locations with date stamps.  

This cache is persistently and insecurely backed up on the computer used to sync with the iOS device. This makes both iOS devices absolutely unsuitable for business use due to "location record insecurity."   

On Thursday, CNN broke the story on network TV regarding the surprising intentional insecurity of the Apple infrastructure regarding stored location information. This data was gathered without users opting in and without any way to opt out. The disclosure regarding "location services" found in the iTunes agreement you must agree with to load the software is completely inadequate to inform Apple devices what Apple actually intends to do.

"Apple and our partners and licensees may collect, use, and share precise location data, including the real-time geographic location of your Apple computer or device. This location data is collected anonymously in a form that does not personally identify you and is used by Apple and our partners and licensees to provide and improve location-based products and services. For example, we may share geographic location with application providers when you opt in to their location services."

I suggest some additional information they ought to added to the iTunes disclosure:

APPLE intends to track the detailed movements of your iPhone and iPad for our own business purposes using any means at our disposal, GPS, tower locations, WiFi signals or any combination of thereof and make a permanent record of your movements with location time stamped files stored in both the iOS Device and backup that detailed location record on your computer. We will upload that data regularly, at our discretion, to our servers and you will never know we are doing it. Apple doesn't plan to identify you from the location records we upload, but should your computer be lost or stolen your detailed location records and identity will be fully accessible to the thief or who ever finds your Apple device. Further, should someone have physical access to your computer for a little as five minutes they could copy the "Backups" file in your system library and use that file to compromise your detailed and time stamped location data, from the first day you used the device. Apple iOS devices are an open book to computer forensic experts and you may not encrypt or use passwords to make your devices meaningfully secure. Apple will not guarantee that hackers might not be able to remotely gain access to your computer and compromise your location and identity information.  

I am of the opinion a class action lawsuit naming Apple for violation of privacy laws, breech of contract and damages is in absolutely in order. I will personally join as a plaintiff.

Inherent in the iTunes app is programing that automatically sucks location data out of iPhones and iPads when synced to a computer. In Macs the system stores the location data at: Users/Library/Application Support/MobileSync/Backups/ . The data is very specific and time coded. If you have your iPhone or iPad GPS on all the time, there are records of your every move since you loaded iOS 4.0 or turned the device on for the first time.  

This is not an accident. Reports giving Apple the benefit of the doubt that this is not an intentional act are uneducated and don't understand the sophistication of Apple's engineers. Let there be no mistake: Apple did this on purpose for selfish monetary gain.  

Even with locations services turned off, your iOS devices were still tracking you and still reporting back regularly to Apple. This is clearly without adequate notification or permission of the purchasers of the Apple devices.  

Businesses should certainly consider this intentional breech of user security seriously before buying Mac computers, iPhones and iPads. How long does it take to wake up a sleeping MacBook, insert a blank CD, open the hard drive, select the home file, go to Library/Application Support/MobileSync/Backups, drag and drop the Backups file to the CD logo, select "burn disk"? In less than five minutes you have copied the entire location data files for all the iPhones and iPads that ever sync with that computer.

Next, insert the CD into another Mac and then drag and drop the Backups file into the Mobile Sync file of that Mac. Then run the "iPhoneTracker.app and a map pops up divulging the detailed location tracking information of the person you stole the data from.  http://petewarden.github.com/iPhoneTracker/ . Actually, the map is just the conglomeration of all the data. The exact GPS and time stamp can also be accessed with the Backups file.

"So what?" you may ask. Imagine I am dressed as a plumber, but I am really working as an industrial spy for Google. I gain entry to Steve Jobs' hotel room and spot his MacBook Pro sitting on the bedside table. In less than five minutes I am out the door with a detailed location record of Mr. Jobs' travel over the last year on a CD. I can then figure out every place of business he went for the previous year, where he lives, eats out  and most worrisome, deduce which other businesses he was doing business with. Google might thus gain insight into Apple's business plans. 

In another scenario, I am the top salesman for a company with serious competition in my industry. The competitors would dearly love to develop a complete list of my clients. They send in a spy as above and gather the Backups file from the salesman's Apple computer and then use that detailed location information to develop a list of his clients. What company would like to see that happen?

Apples devices are sold all over the world. What if a Chinese dissident was caught with an iPhone? What about other legal backwater jurisdictions in the world where police can search a smartphone without a warrant, such as Libya, Saudi Arabia, the Ninth US Circuit Court District, (which includes California, Oregon, Washington State, Alaska, Arizona, Hawaii, Idaho, Montana and Nevada). To get location information in those privacy deprived places police upon their discretion can copy the entire contents of a smartphone without a warrant or probable cause.  This does not exclude business owned smartphones or iPads.  

That is a problem I call "location insecurity." No business will want to risk that sort of private information getting into the hands of the competition. Apple has just shot itself in the foot in gaining traction in the enterprise market. I strongly advise business users to carefully consider Apple's apparent disregard for location security when making the decision to support iPad and iPhones for business use. These devices are location insecure. 

Apple has violated my trust and I am angry about it. I had a conversation with an Apple Genius at my local Apple store yesterday. I told him who I was and he was aware of MacNews. He told me that even Apple Geniuses were unaware that Apple was storing detailed location services on iOS devices and that he understood my anger and frustration with Apple's behavior. He advised me to email the software engineers who were directly involved with the iOS platform.   

I suggest that a flood of angry email from users and especially iOS developers expressing anger regarding this breech of our trust, that might move Apple to fix the problem quickly.  Go to and tell them what you think.

Trust is earned and betrayal is also earned. I suggest that to restore my trust Apple take the following steps:

1. Admit they were intentionally tracking iOS device owners for Apples location based advertising plans or other selfish purpose without adequate notification to consumers or providing a viable ability to opt out.

2. Quickly provide software updates that will allow users to completely remove all location files on both iOS and Mac devices.

3. Provide information regarding "location files" hidden on computers.

4. Provide a GPS logo in the home screen of iPhones and iPads indicating GPS/Locations services are on

5. Publicly state that Apple will never track its customers again without explicated permission in the future.

Today's Greg's Bite is out of the big Apple

(Greg Mills is currently a graphic and Faux Wall Artist in Kansas City. Formerly a new product R&D man for the paint sundry market, he holds 11 US patents. Greg is an Extra Class Ham Radio Operator, AB6SF, iOS developer and web site designer. He's also working on a solar energy startup using a patent pending process for turning waste dual pane glass window units into thermal solar panels used to heat water see: www.CottageIndustySolar.com Married, with one daughter, Greg writes for intellectual property web sites and on Mac/Tech related issues. See Greg's art web site at http://www.gregmills.info He can be emailed at gregmills@mac.com )

 
AAPL
$117.60
Apple Inc.
-1.03
MSFT
$47.47
Microsoft Corpora
-0.12
GOOG
$541.08
Google Inc.
+1.81

MacTech Search:
Community Search:

Software Updates via MacUpdate

MacUpdate Desktop 6.0.3 - Discover and i...
MacUpdate Desktop 6 brings seamless 1-click installs and version updates to your Mac. With a free MacUpdate account and MacUpdate Desktop 6, Mac users can now install almost any Mac app on macupdate.... Read more
SteerMouse 4.2.2 - Powerful third-party...
SteerMouse is an advanced driver for USB and Bluetooth mice. It also supports Apple Mighty Mouse very well. SteerMouse can assign various functions to buttons that Apple's software does not allow,... Read more
iMazing 1.1 - Complete iOS device manage...
iMazing (was DiskAid) is the ultimate iOS device manager with capabilities far beyond what iTunes offers. With iMazing and your iOS device (iPhone, iPad, or iPod), you can: Copy music to and from... Read more
PopChar X 7.0 - Floating window shows av...
PopChar X helps you get the most out of your font collection. With its crystal-clear interface, PopChar X provides a frustration-free way to access any font's special characters. Expanded... Read more
Carbon Copy Cloner 4.0.3 - Easy-to-use b...
Carbon Copy Cloner backups are better than ordinary backups. Suppose the unthinkable happens while you're under deadline to finish a project: your Mac is unresponsive and all you hear is an ominous,... Read more
ForeverSave 2.1.3 - Universal auto-save...
ForeverSave auto-saves all documents you're working on while simultaneously doing backup versioning in the background. Lost data can be quickly restored at any time. Losing data, caused by... Read more
Voila 3.8.1 - Capture, annotate, organiz...
Voila is a screen-capture, recording, and annotation tool that is a full-featured replacement for Mac's screen-capture and screen-recording capabilities. It has a large and robust set of editing,... Read more
SyncTwoFolders 2.0.6 - Syncs two user-sp...
SyncTwoFolders simply synchronizes two folders. It supports synchronization across mounted network drives and it is a possibility to run a simulation showing in a log what will be done. Please visit... Read more
Duplicate Annihilator 5.1.1 - Find and d...
Duplicate Annihilator takes on the time-consuming task of comparing the images in your iPhoto library using effective algorithms to make sure that no duplicate escapes. Duplicate Annihilator detects... Read more
HandBrake 0.10.0 - Versatile video encod...
HandBrake is a tool for converting video from nearly any format to a selection of modern, widely supported codecs. Supported Sources: VIDEO_TS folder, DVD image or real DVD (unencrypted -- CSS is... Read more

Latest Forum Discussions

See All

Screeny (Utilities)
Screeny 1.0 Device: iOS iPhone Category: Utilities Price: $.99, Version: 1.0 (iTunes) Description: Screeny is an utility app that helps you save space consumed by screenshots. It screens your camera roll and helps you to filter and... | Read more »
Tilt to Live Bundle Set to Arrive This T...
Tilt to Live Bundle Set to Arrive This Thanksgiving Posted by Ellis Spice on November 25th, 2014 [ permalink ] One Man Left has unveiled an upcoming Tilt to Live bundle, allowing players to get the series for a di | Read more »
BattleLore: Command (Entertainment)
BattleLore: Command 1.0 Device: iOS Universal Category: Entertainment Price: $9.99, Version: 1.0 (iTunes) Description: ***NOTE: Compatible with iPad 2/iPad mini, iPod touch 5 and up and iPhone 4S and up – WILL NOT RUN ON EARLIER... | Read more »
Weather Or Not Review
Weather Or Not Review By Jennifer Allen on November 25th, 2014 Our Rating: :: STYLISH WEATHER REPORTINGiPhone App - Designed for the iPhone, compatible with the iPad Check the weather quickly and conveniently with Weather or Not... | Read more »
The All-New Football Manager Handheld 20...
The All-New Football Manager Handheld 2015 is Available Now Posted by Jessica Fisher on November 25th, 2014 [ permalink ] Universal App - Designed for iPhone and iPad | Read more »
Six iOS Games to Get You Ready for Thank...
Image Source: Friends Wiki At this point in the month, you or at least a few people you know are probably getting ready to scramble around (or are already scrambling around) for Thanksgiving Dinner. It’s a hectic day of precise oven utilization, but... | Read more »
Call of Duty: Heroes: Tips, Tricks, and...
Hello Heroes: What’d we think of Call of Duty‘s take on Clash of Clans? Check out our Call of Duty: Heroes review to find out! Just downloaded Call of Duty: Heroes and need some handy tips and tricks on how to get ahead of the rest? As we often do,... | Read more »
Call of Duty: Heroes Review
Call of Duty: Heroes Review By Jennifer Allen on November 25th, 2014 Our Rating: :: CLASH OF FRANCHISESUniversal App - Designed for iPhone and iPad Mix Clash of Clans with Call of Duty, and this is what you get.   | Read more »
Slider Review
Slider Review By Jordan Minor on November 25th, 2014 Our Rating: :: SLIDE TO PLAYUniversal App - Designed for iPhone and iPad Slider has all the excitement of unlocking your phone screen.   | Read more »
oh my giraffe (Games)
oh my giraffe 1.0.0 Device: iOS Universal Category: Games Price: $1.99, Version: 1.0.0 (iTunes) Description: Eat fruits while being chased by lions. Cut the vines to send fruit plummeting onto the lions. Don't worry, your flexible... | Read more »

Price Scanner via MacPrices.net

Early Black Friday MacBook Pro sale: 15-inch...
 Best Buy has posted early Black Friday prices on 15″ Retina MacBook Pros, with models on sale for $300 off MSRP on their online store for a limited time. Choose free local store pickup (if available... Read more
A9 Chips Already?
It’s barely more than a couple of months since Apple got the first A8 systems-on-chip into consumer hands, but rumor and news focus is already turning to the next-generation A9 SoC. Apple Daily... Read more
NewerTech Announces NuGuard KXs Impact X-Orbi...
NewerTech has announced updates to its family of Impact X-Orbing Screen Armor bringing military grade, triple layer protection to Apple’s new iPhone 6 and 6 Plus. Like all models in the NuGuard KXs... Read more
13-inch 1.4GHz MacBook Air on sale for $889,...
 B&H Photo has the 13″ 1.4GHz/128GB MacBook Air on sale for $889 including free shipping plus NY tax only. Their price is $110 off MSRP. B&H will also include free copies of Parallels Desktop... Read more
Save up to $300 on Macs and iPads with your A...
Purchase a new Mac or iPad at The Apple Store for Education and take up to $300 off MSRP. All teachers, students, and staff of any educational institution qualify for the discount. Shipping is free,... Read more
Apple refurbished Mac Pros available for up t...
The Apple Store is offering Apple Certified Refurbished Mac Pros for up to $600 off the cost of new models. An Apple one-year warranty is included with each Mac Pro, and shipping is free. The... Read more
Jumptuit Launches One-Tap Windows 8.1 iTunes...
Jumptuit has launched Windows 8.1 support for One-Tap iTunes Sync. with which Windows 8.1 users can now easily sync their iTunes libraries with Microsoft OneDrive. Jumptuit provides easy access from... Read more
Apple restocks refurbished 13-inch 2014 Retin...
The Apple Store has restocked Apple Certified Refurbished 2014 13″ 2.6GHz Retina MacBook Pros for up to $230 off the cost of new models. An Apple one-year warranty is included with each model, and... Read more
CEA Study Finds More People Recycling Electro...
A new study by the Consumer Electronics Association (CEA) finds that electronics recycling receives the continued and growing support of consumers. According to the CEA,s Recycling and Reuse Study,... Read more
15″ 2.2GHz Retina MacBook Pro on sale for $17...
 B&H Photo has the 2014 15″ 2.2GHz Retina MacBook Pro on sale today for $1749. Shipping is free, and B&H charges NY sales tax only. B&H will also include free copies of Parallels Desktop... Read more

Jobs Board

*Apple* Solutions Consultant (ASC) - Apple (...
**Job Summary** The ASC is an Apple employee who serves as an Apple brand ambassador and influencer in a Reseller's store. The ASC's role is to grow Apple Read more
Senior Event Manager, *Apple* Retail Market...
…This senior level position is responsible for leading and imagining the Apple Retail Team's global event strategy. Delivering an overarching brand story; in-store, Read more
*Apple* Retail - Multiple Positions (US) - A...
Sales Specialist - Retail Customer Service and Sales Transform Apple Store visitors into loyal Apple customers. When customers enter the store, you're also the Read more
*Apple* Solutions Consultant (ASC) - Apple (...
**Job Summary** The ASC is an Apple employee who serves as an Apple brand ambassador and influencer in a Reseller's store. The ASC's role is to grow Apple Read more
*Apple* Solutions Consultant (ASC) - Apple (...
**Job Summary** The ASC is an Apple employee who serves as an Apple brand ambassador and influencer in a Reseller's store. The ASC's role is to grow Apple Read more
All contents are Copyright 1984-2011 by Xplain Corporation. All rights reserved. Theme designed by Icreon.