Your smartphone knows everything about you, and it tells tales

May 1, 2011 By Patrick May and Troy Wolverton

In the sexy but increasingly scary world of smartphone forensics, insiders have a name for all the personal information purposely or unknowingly stored inside that iPhone or Android or Blackberry in your pocket. They call it your "digital fingerprints."

With the right tools and physical access to your smartphone, anyone can tap into the private details of your life: texts, photos, tweets, Facebook ramblings, doctor's appointments, favorite hiking trails, and maybe even what you had for dinner last night at that little French bistro on the corner.

"You can find out everything about someone from their smartphone," said Amber Schroader, owner of Paraben of Pleasant Grove, Utah, which makes forensic software for investigators and the general public. "You can see their YouTube videos, the websites they've surfed, their pictures. People are addicted to their cell phones, so this is the freshest and most valuable information available about someone."

While wireless companies and others have long been able to track the locations of phones remotely, it's unclear what other information they may be able to access remotely. But forensics investigators have long known that a treasure trove of biographical data can be gleaned when they have physical access to handheld devices. Even before discovery of the location tracking file that researchers this week disclosed had been found on the , investigators had been collecting data from the Apple smartphone.

"We've been analyzing iPhones since they came out," said Christopher Vance, a digital forensics specialist at Marshall University's Forensics Science Center, which works with state and local in West Virginia.

Data that Vance and his lab have helped harvest from iPhones include call logs, map search results from the device's app, graphics stored in the browsers' cache, even logs of what's been typed into the iPhone's virtual keyboard.

"There's tons of great information on the iPhone," he said.

Not everyone's thrilled about how easy it is to get a smartphone to cough up its secrets. Apple has ignored repeated requests for comment on the tracking file, even as members of Congress have started asking questions of Apple about why it's tracking its phone users and what it's doing with the information. And privacy advocates warn that harvesting data from anyone's phone without their permission is another step down an already troubling path.

"These aren't smartphones - they are spy phones," said John M. Simpson, director of Consumer Watchdog's Privacy Project. "Consumers must have the right to control whether their data is gathered and how it is used.

"People don't realize the absolute gold mine of data about their life that exists inside their smartphone," he added. "There really needs to be an educational process started so that people will begin to understand that."

Privacy advocates say the disclosure of the iPhone tracking file highlights the need for new laws and regulations to govern the type and amount of information that mobile devices can collect. In addition to the iPhone tracking file, it has been revealed that Apple's iPhones and Google's Android phones regularly transmit location data back to those two companies.

"I see a slippery slope," said Sharon Goott Nissim, consumer privacy counsel at the Electronic Privacy Information Center, a consumer advocacy group. "Once the collection of data has been done already, it's harder to stop law enforcement from getting access to it. The way to stop this is to stop the collection in the first place."

For years now, investigators have had a much better idea than the phones' owners of what data they can legally harvest from consumers' phones. The iPhone's location-tracking file "has been flying under the radar for a while," said Sean Morrissey, CEO of Katana Forensics. "For forensics (investigators), that's a good thing. You don't want to tell the bad guy" that you can get this off their phone.

"We know most of data is going to go mobile," he said.

Forensics investigators have long been able to pull lists of contacts, call records and text messages from cellphones. But smartphones such as the iPhone have greatly increased the amount of data at their disposal. Part of that has to do with consumers' growing use of such devices and the growing number of applications available for them.

Schroader, whose firm offers a forensic mining tool for $199 called iRecovery, said while investigators have been able to explore the innards of cellphones for years, the growth in smartphone capacity has meant a sea change in the amount of personal data now easily retrievable.

"We've made these tools that support iPhone and Windows Mobile and Android for years, but it's the storage that's changed everything," she said. "Your old-school phone had a couple of megabytes of storage. Now we're at gigabytes, and eventually we'll be at terabytes. And when we're working with law enforcement, that translates into a lot more evidence, which makes us all very happy."


-Androids and iPhones: Both smartphones regularly transmit location data back to Google and Apple respectively.

-On iPhones: A tracking file stores the latitude and longitude of cellphone towers and Wi-Fi access points with which the phone has interacted. Experts may also harvest call logs, map search results from the device's Google Maps app and logs of what's been typed into the iPhone's virtual keyboard from the phone.

-All smartphones: "You can find out everything about someone from their smartphone. You can see their YouTube videos, the websites they've surfed, their pictures."

Explore further: Apple: IPhone not tracking users, will get update (Update 2)


Related Stories

Apple slammed over iPhone, iPad location tracking

April 21, 2011

(AP) -- Privacy watchdogs are demanding answers from Apple Inc. about why iPhones and iPads are secretly collecting location data on users - records that cellular service providers routinely keep but require a court order ...

Q-and-A: Smartphone location tracking

April 24, 2011

The revelation this past week that Apple Inc.'s popular iPhone and iPad devices keep files of users' location data raises legal and ethical questions.

Your Phone, Yourself: When is tracking too much?

April 24, 2011

(AP) -- If you're worried about privacy, you can turn off the function on your smartphone that tracks where you go. But that means giving up the services that probably made you want a smartphone in the first place. After ...

Apple, Google asked to testify on mobile privacy

April 26, 2011

US lawmakers have invited Apple and Google to attend a hearing on privacy next month following claims the iPhone and Android devices regularly track a user's location and stores the data.

S. Korea probes Apple about tracking feature

April 25, 2011

South Korea's telecoms regulator said Monday it had launched an inquiry into Apple to see whether the US giant's collection of location data from its iPhone and iPad users violates privacy rules.

Recommended for you

Enhancing solar power with diatoms

October 20, 2017

Diatoms, a kind of algae that reproduces prodigiously, have been called "the jewels of the sea" for their ability to manipulate light. Now, researchers hope to harness that property to boost solar technology.

1 comment

Adjust slider to filter visible comments by rank

Display comments: newest first

not rated yet May 03, 2011
Buy an I-phone??? Not me. Nor an Anderoid.

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.