Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.
Thread: iFiasco is a Forensic Gold Mine
04-21-2011, 04:32 PM #1
iFiasco is a Forensic Gold Mine
In all of the fervor surrounding the latest iFiasco a small detail seems to be lost on most of the reporting public, including myself: the discovery of the tracking file is old hat. Sean Morrissey and Alex Levinson, two specialists in the field of forensics wrote a book “iOS Forensic Analysis,” wherein they describe how to view the consolidated.db file. The book was published December 5th, 2010.
Levinson has posted a long response to the findings on his Wordpress blog. He raises three main points in his blog: 1. Apple is not collecting the data. 2. The file is neither new nor secret. 3. The discovery was published months ago.
Levinson originally discovered the same information stored in the consolidated.db file in pre-iOS4 devices as the h-cell.plist file. The only differences between the two are multitasking and background location services, according to Levinson. These simple changes in iOS devices running iOS 4 allowed for the data to be easily acquired through extremely simple forensic techniques.
Levinson does a fantastic job explaining what exactly the files are doing and it is somewhat revelatory in exactly how much information can be mined off an iOS device using a simple forensic program. “Third party application data including user names, passwords, and interpersonal communication data” are available according to Levinson. If all of this information has been available in a book for the last five months why is the alarm only being sounded now? Most individuals would gasp at the idea of such sensitive information being so easily available.
However, Levinson and his peers are not most individuals. They specialize in forensics, being able to uncover information not obvious to the naked eye. Levinson now and at the time of the discovery worked for Katana Forensics. KF sells their forensic mining software (Lantern 2.0) to law enforcement, government and corporate examiners. This discovery quite possibly equated to a data gold mine for KF and its customer base. Levinson and his boss at KF, Morrissey, were not about to let the public know they found a rather profitable loophole around which they programmed their software.
This is not to say what Levinson and Morrissey does is illegal, rather they have a legitimate and legal business. However, ethical and moral questions can be raised. If someone who was in a not-for-profit position discovered iOS devices were keeping track of locations and other information their response would not have been so mute. Even if the data is not being transmitted to apple or third parties, the simple fact it exists in such an easily attainable form would have been cause for alarm. The public outcries since the announcement yesterday of the discovery is proof enough.
All this shows is there is a little truth to the saying “there is two sides to every coin.” And as it usually is, those sides were travesty and treasure.
The Following User Says Thank You to Phillip Swanson For This Useful Post:
04-21-2011, 04:34 PM #2
with just glancing at this i thought i was on the wrong site for a second...lmao you know what i mean.... 4:20
04-21-2011, 04:54 PM #3
The Following User Says Thank You to Jastra For This Useful Post:
04-21-2011, 05:54 PM #4
We've sold a forensic tool to law enforcement offering this ability for more than 2 years now. Funny how it's big news when it's posted on Slashdot and then hits other sites but when we tried to publicize it over a year ago, no one seemed to care (slashdot and others didn't even print the story when contacted about it).
04-21-2011, 06:00 PM #5
You're forgetting that this file would be more valuable to some people over others. Like the Chinese govt, for one example.
Americans are the easiest people in the world to find. This file would be the last thing checked. Google twitter Facebook aim yelp etc. Americans post their location everywhere.
04-21-2011, 06:15 PM #6
04-21-2011, 06:34 PM #7
Hm, my old classmate Alex is making news. Interesting. I should be meeting him up in San Fran this summer. f anyone wants me to do a interview with him let me know.
04-21-2011, 07:07 PM #8
Man Idk why I thought this was gonna be about Lupe fiasco
But yea what's the point of getting mad with them knowing where everyone is it's not surprising in the least
04-21-2011, 09:19 PM #9
The Following User Says Thank You to TheDude1120 For This Useful Post:
04-21-2011, 09:31 PM #10
i would smoke that thing, no doubtit's just a plant. Thats all it is. And if you happen to set it on fire...there are some effects...
The Following User Says Thank You to iStoner For This Useful Post:
04-21-2011, 09:38 PM #11
The Following User Says Thank You to vantheman169 For This Useful Post:
04-21-2011, 09:53 PM #12
04-21-2011, 10:47 PM #13
04-21-2011, 11:38 PM #14
I think a lot of people are overreacting. We know a lot of companies (Google included) collect information to find patterns and trends in consumer life. This information is ultimately used in an effort to create more effective advertising. People jump to Big Brother, over harmless data collection.
Stories like this just fuel the paranoia of guys living in their parent's basement.
I will be leaving consolidated.db intact to do what it pleases. I might even post a copy on my Facebook.
If you're still freaking out, read this.
Last edited by trentmorris; 04-21-2011 at 11:42 PM.
04-22-2011, 01:43 AM #15
04-22-2011, 01:56 AM #16
If all of this information has been available in a book for the last five months why is the alarm only being sounded now
The Following User Says Thank You to one1 For This Useful Post:
04-22-2011, 02:30 AM #17
I'm actually heedin
04-22-2011, 02:32 AM #18
actually you are not overreacting.
There have been quite some topics on this forum about data collection in apps and ios that are being send to the developer or apple.
and i will say the same here on what i had to say then.
we should NOT want this.
also there should be a option enabling or disabling any data collection in ios that will be standard off.
we had people reply like people reply now everyone collects data blablabla and that makes it alright.
does it ? maybe you don't care but i care that marketing agencies collect this data like Iad's
I am happy to see more people start to care old news or not my hope is one day we can go to settings and turn off data collection without losing any real functionality.
04-22-2011, 03:19 AM #19
is there an app so i can see where ive been on this file????
04-22-2011, 03:31 AM #20
If you have issue with it, just download the fix from Cydia. We have more pressing issues in the country and we only thing that causes us to stand up is when we find out our cell phone keeps track of the tower we are closest to.Still a bit fresh at this...and will evolve to FRESH in a Bel Air type of way!