Apple's mobile devices contain bookmarks - hidden mechanisms for collecting user information security services. It is reported Cnews to a report by an expert in the field of computer security, Jonathan Zdziarski, he had prepared for the conference Hackers On Planet Earth in New York.
Zdziarski, also known as NerveGas, took an active part in developing the first jailbreak for the iPhone models and the author of several books on developing applications for iOS.According to him, 600 million mobile devices, Apple, are in operation worldwide, contain "undocumented services running in the background" and "suspicious omissions in the design of iOS, which facilitate the collection of data." The presentation, in particular, referred to the service and com.apple.pcapd com.apple.mobile.file_relay.
Service com.apple.pcapd when the iOS-device immediately starts library libpcap, designed to capture network packets. Zdziarski indicates that the service is designed for network traffic analysis, but wonders why this debugging feature works by default on all iOS-devices in a row, does not signal its presence and does not require activation debug mode.
The second service - com.apple.mobile.file_relay (File Relay), - according to experts, causing even more problems. "This service is placed in the iOS with the explicit intent to retrieve data from the device on request" - writes Zdziarski.
The expert points out that the service is able to retrieve the data without going through data encryption on iOS-device designed to protect user-generated content. Finally, in the most recent version of iOS - iOS 7 - service facilities were greatly expanded, he said.
If previous versions of the sources File Relay applications were AppleSupport, Network, WiFi, UserDatabases, CrashReporter and SystemConfiguration, then iOS 7 list already includes 43 sources, including Accounts, AddressBook, Caches, CoreLocation, FindMyiPhone, MapsLogs, Photos, Voicemail etc.
Accounts stores information about each user account entered into the device (including Twitter, iCloud, Facebook, etc); AddressBook - file copy SQLite database user's contact book (including deleted contacts that can be recovered); Caches - custom cache folder containing unnecessary screenshots, multiple images obtained on the web, offline content, etc., CoreLocation - Magazines GPS, and Photos - dump all the images stored on the device.
Emphasis Jonathan Zdziarski deserved source called HFSMeta, which appeared in iOS 7 for the first time. It contains a time of change, the name, size and date of each file on the iOS-device, including the names of all user files to Dropbox, etc.
"For what reason sniffer running on 600 million personal iOS-devices?", "Why in the device running undocumented services that bypass the encryption function and retrieve user data from memory massive amounts of personal data?" - These and other issues on According to Zdziarski, Apple did not want to answer him, leaving him unattended requests.