Security probe shows 68% of iPhone apps send UDID

Security probe shows 68% of iPhone apps send UDID
The UDID, or Unique Device Identifier, is the identity of your iOS device. A study by Eric Smith of Bucknell University shows that 68% of the 'Most Popular' and 'Top Free' apps transmit this UDID. This could constitute a security risk, as network hackers could have easy access to your information and activities.

Smith wrote that "Most application vendors are collecting and remotely storing UDID data, and some of these vendors also have the ability to correlate UDID to a real-world identity." Some applications which transmit this personal data are from Amazon, Chase Bank, Target, and Sam's Club. The CBS News app goes even further, sending the user's device name, which further enables hackers to deduce your identity.

Smith likened the situation to the Processor Serial Number on the Pentium 3 chip, which sparked privacy concerns over similar user identification. Perhaps we are now more complacent about our e-security, or perhaps we trust companies like Apple to handle the situation.

Apple has attempted to safeguard privacy by requiring user approval to operate GPS or access the users' contacts. What is truly concerning is what less regulated apps are doing with our private information. If an app market like Apple's is so pervasively 'compromised', then what of other less stringent markets?

source: Engadget via AppleInsider



1. clevername

Posts: 1436; Member since: Jul 11, 2008

Known about this for awhile never had a problem with it. Then again that may be because there's not much I can do if I did, or largely because hey use the udid to determine the user. A way of logging in so to speak. It's in apple Sri terms they can use it this way. Sure a hacker can use this info for more but if u don't have your device jailbroken they still can't access it. No big here.

2. Pings

Posts: 304; Member since: Dec 19, 2008

I read something like this but for Android (selling info), and the iPhone fanboys were going crazy. Not even a week later its seams to be a bigger problem for the iPhone. I think this kind of thing sucks big time, but if you want any smart phone it looks like we have no choice. I think these private information kind of things this should be illegal to do on any phone, app, and or network. "What is truly concerning is what less regulated apps are doing with our private information." Really PA/AppleInsider? Really? They are selling it, what else would they do with it...

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit for samples and additional information.