Greg's bite: Apple iNSECURE for business use
TweetFollow Us on Twitter

Greg's bite: Apple iNSECURE for business use

By Greg Mills

This is important news, Apple Mac, iPhone and iPad are not suitable for business use.

While Apple has been pushing for respect from the business community due to increased security features found on Mac computers, iPhone and iPad, it seems they were at the same time secretly gathering location data from unsuspecting users. Apple intentionally created a permanent cache on iPhones and iPad that records its users locations with date stamps.  

This cache is persistently and insecurely backed up on the computer used to sync with the iOS device. This makes both iOS devices absolutely unsuitable for business use due to "location record insecurity."   

On Thursday, CNN broke the story on network TV regarding the surprising intentional insecurity of the Apple infrastructure regarding stored location information. This data was gathered without users opting in and without any way to opt out. The disclosure regarding "location services" found in the iTunes agreement you must agree with to load the software is completely inadequate to inform Apple devices what Apple actually intends to do.

"Apple and our partners and licensees may collect, use, and share precise location data, including the real-time geographic location of your Apple computer or device. This location data is collected anonymously in a form that does not personally identify you and is used by Apple and our partners and licensees to provide and improve location-based products and services. For example, we may share geographic location with application providers when you opt in to their location services."

I suggest some additional information they ought to added to the iTunes disclosure:

APPLE intends to track the detailed movements of your iPhone and iPad for our own business purposes using any means at our disposal, GPS, tower locations, WiFi signals or any combination of thereof and make a permanent record of your movements with location time stamped files stored in both the iOS Device and backup that detailed location record on your computer. We will upload that data regularly, at our discretion, to our servers and you will never know we are doing it. Apple doesn't plan to identify you from the location records we upload, but should your computer be lost or stolen your detailed location records and identity will be fully accessible to the thief or who ever finds your Apple device. Further, should someone have physical access to your computer for a little as five minutes they could copy the "Backups" file in your system library and use that file to compromise your detailed and time stamped location data, from the first day you used the device. Apple iOS devices are an open book to computer forensic experts and you may not encrypt or use passwords to make your devices meaningfully secure. Apple will not guarantee that hackers might not be able to remotely gain access to your computer and compromise your location and identity information.  

I am of the opinion a class action lawsuit naming Apple for violation of privacy laws, breech of contract and damages is in absolutely in order. I will personally join as a plaintiff.

Inherent in the iTunes app is programing that automatically sucks location data out of iPhones and iPads when synced to a computer. In Macs the system stores the location data at: Users/Library/Application Support/MobileSync/Backups/ . The data is very specific and time coded. If you have your iPhone or iPad GPS on all the time, there are records of your every move since you loaded iOS 4.0 or turned the device on for the first time.  

This is not an accident. Reports giving Apple the benefit of the doubt that this is not an intentional act are uneducated and don't understand the sophistication of Apple's engineers. Let there be no mistake: Apple did this on purpose for selfish monetary gain.  

Even with locations services turned off, your iOS devices were still tracking you and still reporting back regularly to Apple. This is clearly without adequate notification or permission of the purchasers of the Apple devices.  

Businesses should certainly consider this intentional breech of user security seriously before buying Mac computers, iPhones and iPads. How long does it take to wake up a sleeping MacBook, insert a blank CD, open the hard drive, select the home file, go to Library/Application Support/MobileSync/Backups, drag and drop the Backups file to the CD logo, select "burn disk"? In less than five minutes you have copied the entire location data files for all the iPhones and iPads that ever sync with that computer.

Next, insert the CD into another Mac and then drag and drop the Backups file into the Mobile Sync file of that Mac. Then run the "iPhoneTracker.app and a map pops up divulging the detailed location tracking information of the person you stole the data from.  http://petewarden.github.com/iPhoneTracker/ . Actually, the map is just the conglomeration of all the data. The exact GPS and time stamp can also be accessed with the Backups file.

"So what?" you may ask. Imagine I am dressed as a plumber, but I am really working as an industrial spy for Google. I gain entry to Steve Jobs' hotel room and spot his MacBook Pro sitting on the bedside table. In less than five minutes I am out the door with a detailed location record of Mr. Jobs' travel over the last year on a CD. I can then figure out every place of business he went for the previous year, where he lives, eats out  and most worrisome, deduce which other businesses he was doing business with. Google might thus gain insight into Apple's business plans. 

In another scenario, I am the top salesman for a company with serious competition in my industry. The competitors would dearly love to develop a complete list of my clients. They send in a spy as above and gather the Backups file from the salesman's Apple computer and then use that detailed location information to develop a list of his clients. What company would like to see that happen?

Apples devices are sold all over the world. What if a Chinese dissident was caught with an iPhone? What about other legal backwater jurisdictions in the world where police can search a smartphone without a warrant, such as Libya, Saudi Arabia, the Ninth US Circuit Court District, (which includes California, Oregon, Washington State, Alaska, Arizona, Hawaii, Idaho, Montana and Nevada). To get location information in those privacy deprived places police upon their discretion can copy the entire contents of a smartphone without a warrant or probable cause.  This does not exclude business owned smartphones or iPads.  

That is a problem I call "location insecurity." No business will want to risk that sort of private information getting into the hands of the competition. Apple has just shot itself in the foot in gaining traction in the enterprise market. I strongly advise business users to carefully consider Apple's apparent disregard for location security when making the decision to support iPad and iPhones for business use. These devices are location insecure. 

Apple has violated my trust and I am angry about it. I had a conversation with an Apple Genius at my local Apple store yesterday. I told him who I was and he was aware of MacNews. He told me that even Apple Geniuses were unaware that Apple was storing detailed location services on iOS devices and that he understood my anger and frustration with Apple's behavior. He advised me to email the software engineers who were directly involved with the iOS platform.   

I suggest that a flood of angry email from users and especially iOS developers expressing anger regarding this breech of our trust, that might move Apple to fix the problem quickly.  Go to and tell them what you think.

Trust is earned and betrayal is also earned. I suggest that to restore my trust Apple take the following steps:

1. Admit they were intentionally tracking iOS device owners for Apples location based advertising plans or other selfish purpose without adequate notification to consumers or providing a viable ability to opt out.

2. Quickly provide software updates that will allow users to completely remove all location files on both iOS and Mac devices.

3. Provide information regarding "location files" hidden on computers.

4. Provide a GPS logo in the home screen of iPhones and iPads indicating GPS/Locations services are on

5. Publicly state that Apple will never track its customers again without explicated permission in the future.

Today's Greg's Bite is out of the big Apple

(Greg Mills is currently a graphic and Faux Wall Artist in Kansas City. Formerly a new product R&D man for the paint sundry market, he holds 11 US patents. Greg is an Extra Class Ham Radio Operator, AB6SF, iOS developer and web site designer. He's also working on a solar energy startup using a patent pending process for turning waste dual pane glass window units into thermal solar panels used to heat water see: www.CottageIndustySolar.com Married, with one daughter, Greg writes for intellectual property web sites and on Mac/Tech related issues. See Greg's art web site at http://www.gregmills.info He can be emailed at gregmills@mac.com )

 

Community Search:
MacTech Search:

Software Updates via MacUpdate

Civilization VI 1.0.1 - Next iteration o...
Sid Meier’s Civilization VI is the next entry in the popular Civilization franchise. Originally created by legendary game designer Sid Meier, Civilization is a strategy game in which you attempt to... Read more
Chromium 55.0.2883.75 - Fast and stable...
Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all Internet users to experience the web. Version 55.0.2883.75: Security fixes: High CVE-2016... Read more
Google Chrome 55.0.2883.75 - Modern and...
Google Chrome is a Web browser by Google, created to be a modern platform for Web pages and applications. It utilizes very fast loading of Web pages and has a V8 engine, which is a custom built... Read more
VirtualBox 5.1.10 - x86 virtualization s...
VirtualBox is a family of powerful x86 virtualization products for enterprise as well as home use. Not only is VirtualBox an extremely feature rich, high performance product for enterprise customers... Read more
Pixa 1.1.9 - Quickly and easily organize...
Pixa is an image-organizing application. The new app functions well, is easy to use, and helps people organize their images quickly and easily on their computers. For those who prefer not to use the... Read more
VirtualBox 5.1.10 - x86 virtualization s...
VirtualBox is a family of powerful x86 virtualization products for enterprise as well as home use. Not only is VirtualBox an extremely feature rich, high performance product for enterprise customers... Read more
Pixa 1.1.9 - Quickly and easily organize...
Pixa is an image-organizing application. The new app functions well, is easy to use, and helps people organize their images quickly and easily on their computers. For those who prefer not to use the... Read more
Civilization VI 1.0.1 - Next iteration o...
Sid Meier’s Civilization VI is the next entry in the popular Civilization franchise. Originally created by legendary game designer Sid Meier, Civilization is a strategy game in which you attempt to... Read more
Google Chrome 55.0.2883.75 - Modern and...
Google Chrome is a Web browser by Google, created to be a modern platform for Web pages and applications. It utilizes very fast loading of Web pages and has a V8 engine, which is a custom built... Read more
Chromium 55.0.2883.75 - Fast and stable...
Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all Internet users to experience the web. Version 55.0.2883.75: Security fixes: High CVE-2016... Read more

Latest Forum Discussions

See All

Amateur Surgeon 4 Guide: Become the worl...
It's time to wield your trusty pizza cutter again, as Amateur Surgeon has returned with a whole fresh set of challenges (and some old, familiar ones, too). Starting anew isn't easy, especially when all you have at your disposal is a lighter, the... | Read more »
Le Parker: Sous Chef Extraordinaire (Ga...
Le Parker: Sous Chef Extraordinaire 1.0 Device: iOS Universal Category: Games Price: $2.99, Version: 1.0 (iTunes) Description: | Read more »
Telltale Games really is working on a Gu...
Telltale Games' next episodic adventure is indeed Guardians of the Galaxy. A document tied to the voice actors strike suggested that the project was in the work, but now we have direct confirmation following an announcement at the Game Awards that... | Read more »
Amateur Surgeon returns to iOS and Andro...
Amateur Surgeon and its two sequels disappeared from the App Store some time and it was sad days for all. But now, just in time for the holidays, the Adult Swim favorite makes its joyous return in the shape of Amateur Surgeon 4, a remake with... | Read more »
The best board games on mobile
Sometimes you need to ditch all of the high speed, high action games in favor of something a little more traditional. If you don't feel like parting ways from your mobile device, though, there are still plenty of ways to get that old-school fix.... | Read more »
The best Facebook Messenger Instant Game...
Facebook's new Instant Games is now here, meaning you can play games with your friends directly via Facebook. It's a fun new way to connect with friends, of course, but it's also proving to be a solid gaming experience in its own right, with a... | Read more »
You can now play game's on Facebook...
Facebook launched its new Instant Games platform in an exciting new attempt to engage its user base. As a result, you can now play a number of different games directly through Facebook Messenger. All of these games run with HTML5, meaning you play... | Read more »
Apollo Justice Ace Attorney (Games)
Apollo Justice Ace Attorney 1.00.00 Device: iOS Universal Category: Games Price: $.99, Version: 1.00.00 (iTunes) Description: Court Is Back In Session Star as rookie defense attorney, Apollo Justice, as he visits crime scenes,... | Read more »
KORG iWAVESTATION (Music)
KORG iWAVESTATION 1.0 Device: iOS Universal Category: Music Price: $19.99, Version: 1.0 (iTunes) Description: A revolutionary new world of sound.The Wave Sequence Synthesizer for iPad - KORG iWAVESTATION | Read more »
Don't Grind Guide: Tips for becomin...
Don’t Grind is a surprising, derpy little one touch game with fun hand-drawn graphics. The goal is simple -- get the high score without being chopped to bits. That can be tough when you’re not used to the game, and that’s compounded by the fact... | Read more »

Price Scanner via MacPrices.net

13-inch Silver Touch Bar MacBook Pro in stock...
Amazon has the new 2016 13″ 2.9GHz/256GB Silver Touch Bar MacBook Pro (MLVP2LL/A) in stock today and on sale for $1749 including free shipping. That’s $50 off MSRP, and it’s the lowest price... Read more
Parallels Toolbox 1.3 for Mac Offers 25 Singl...
Parallels has launched Parallels Toolbox 1.3 for Mac, an upgrade that adds five new utilities to the stand-alone application which was released in August and is available exclusively online at http... Read more
OWC Mercury Elite Pro Dual mini Ultra-Portabl...
OWC has introduced the new OWC Mercury Elite Pro Dual mini, a powerful yet ultra-portable dual-drive RAID solution. The new Mercury Elite Pro Dual mini packs phenomenal performance into a small... Read more
Clearance 13-inch Retina MacBook Pros availab...
B&H Photo has clearance 2015 13″ Retina Apple MacBook Pros available for up to $200 off original MSRP. Shipping is free, and B&H charges NY tax only: - 13″ 2.7GHz/128GB Retina MacBook Pro: $... Read more
Roundup of 2016 13-inch 2.0GHz MacBook Pro sa...
B&H has the non-Touch Bar 13″ MacBook Pros in stock today for $50-$100 off MSRP. Shipping is free, and B&H charges NY sales tax only: - 13″ 2.0GHz MacBook Pro Space Gray (MLL42LL/A): $1449 $... Read more
New 13-inch 2.0GHz Space Gray MacBook Pro in...
Adorama has the new 13″ 2.0GHz Space Gray MacBook Pro (non-Touch Bar, MLL42LL/A) in stock for $1499 including a free 3-year AppleCare Protection Plan. Shipping is free, and Adorama charges sales tax... Read more
Finnair Adopts iOS Enterprise iPad Apps from...
Finnair and IBM have announced a first-of-its-kind agreement to utilize iOS enterprise apps from IBM to support the airline’s overall digital transformation. Finnair is focused on Asia-Europe traffic... Read more
Tech21 Launches Evo Go iPhone 7 Case Availabl...
Tech21 has announced the launch of the Evo Go case for Apple iPhone 7 and iPhone 7 Plus, exclusively at T-Mobile. Available online and at participating T-Mobile stores nationwide, Evo Go cases start... Read more
Apple Turns (RED) with More Ways to Join the...
In recognition of World AIDS Day, Apple is offering more ways than ever for customers to join (RED) in its mission to create an AIDS-free generation. Apple is the worlds largest corporate contributor... Read more
Deals on new 15-inch Touch Bar MacBook Pros,...
B&H Photo has new 2016 Apple 15″ Touch Bar MacBook Pro models in stock today with some available for $50 off MSRP, each including free shipping plus NY sales tax only: - 15″ 2.7GHz Touch Bar... Read more

Jobs Board

*Apple* Brand Ambassador (Macy's) - The...
…(T-ROC), is proud of its unprecedented relationship with our partner and client, APPLE ,in bringing amazing" APPLE ADVOCATES"to "non" Apple store locations. Read more
US- *Apple* Store Leader Program - Apple (Un...
…Summary Learn and grow as you explore the art of leadership at the Apple Store. You'll master our retail business inside and out through training, hands-on Read more
*Apple* Retail - Multiple Positions- White P...
Sales Specialist - Retail Customer Service and Sales Transform Apple Store visitors into loyal Apple customers. When customers enter the store, you're also the Read more
Automotive Detailer - *Apple* Used Autos -...
We are currently conductinginterviews and will be accepting applications for a part-time detailer. Apple Used Autos is a great place to work andstart a career. We Read more
*Apple* Retail - Multiple Positions - Apple,...
Job Description: Sales Specialist - Retail Customer Service and Sales Transform Apple Store visitors into loyal Apple customers. When customers enter the store, Read more
All contents are Copyright 1984-2011 by Xplain Corporation. All rights reserved. Theme designed by Icreon.