September 10, 2012 – CNET News reported today that BlueToad, a small mobile publishing company, was the source of a mass leak of Apple UDIDs, or unique device identifiers, on the Internet. The group of hackers that obtained access to these UDIDs claimed they found them in a laptop used by an FBI agent in March of 2012, though the FBI denied these allegations.
According to CNET, BlueToad now says the intrusion occurred within its own network – based on the discovery by David Schuetz, a computer security professional.
BlueToad provides products to publishers which allow them to convert content to a readable format on mobile devices. This can include converting PDF files to HTML files or iOS apps.
According to a similar article in TechNewsWorld, Apple claims the FBI never requested the UDIDs for any purpose. They also stated that these UDIDs will be banned in the newer version of the Apple operating system for its mobile phones, iOS 6.0.
Lee Cocking of Fixmo also told TechNewsWorld that the UDIDs could not give hackers access to personal information contained on a mobile phone. He went on to explain that they have been used in the past by social networking services to verify the identity of a user, though this is currently not possible when using newer devices.
There is still speculation among security advisors whether the obtained UDIDs are even legitimate, says TechNewsWorld.