Researchers Disclose iPhone and iPad Location-Tracking Privacy Issues

A pair of security researchers today announced that they are sounding the privacy warning bell about the capability of iOS 4 to track the location of an iPhone or iPad on an ongoing basis, storing the data to a hidden file known as "consolidated.db" in the form of latitude and longitude and a timestamp for each point.

All iPhones appear to log your location to a file called "consolidated.db." This contains latitude-longitude coordinates along with a timestamp. The coordinates aren't always exact, but they are pretty detailed. There can be tens of thousands of data points in this file, and it appears the collection started with iOS 4, so there's typically around a year's worth of information at this point. Our best guess is that the location is determined by cell-tower triangulation, and the timing of the recording is erratic, with a widely varying frequency of updates that may be triggered by traveling between cells or activity on the phone itself.

While the consolidated.db file has been known for some time and has played a key role in forensic investigations of iOS devices by law enforcement agencies, the researchers note the data is available on the devices themselves and in backups in unencrypted and unprotected form, leading to significant privacy concerns. Once gathered, the data is saved in backups, restored to devices if necessary, and even migrated across devices, offering a lengthy history of a user's movement.


Data points pulled from iPhone backup

The researchers, Alasdair Allan and Pete Warden, have also put together a downloadable application that allows users to view the location data stored in backup files on their computers. Allan and Warden have reached out to Apple for comment but have yet to receive a response, and in the meantime recommend that users encrypt their iPhone and iPad backups for increased security.

Related Roundup: iPad
Buyer's Guide: iPad (Buy Now)
Related Forums: iPhone, iPad

Top Rated Comments

rans0m00 Avatar
136 months ago
With respect to all the "view with alarm" postings that will follow, this really doesn't mean anything. I leave my home at the same time every morning. The transponder in my car records my passage and debits my account with the state highway department. Traffic cameras record my license plate at several points during my journey. Once out of the car, my smiling phiz can be seen on any number of CCTVs en route to my office, whose door I open with a card that automatically records my entry. The IP address of this posting will reveal that I am sitting in my living room as I write. Even without the GPS turned on, my phone regularly initiates a conversation with the local cell tower. I can be found with almost pinpoint accuracy.

So I'm not exactly going to panic to learn that my computer and phone keep a record of my latitude and longitude that they don't share with anyone else.

The government already knows where I live, where I work, where I bank, and all kinds of other interesting information. It's how they collect their taxes and send me my mail.

If there were the slightest indication that liberals, atheists, and other enemies of the state were being tracked by their GPSes and rounded up, I'd be the first to the barricades. But there isn't. Our privacy is not based on "nobody knows", it's based on "nobody cares."
Glad I am not the only person that feels this way. I do not appreciate having another method I can be tracked but at no point I am truly untrackable. The devices in Michigan seem to be a much bigger issue than someone else knowing what time my last trip to subway was at.

I feel sad for people who think it's okay for corporations, governments, or any organization to track and log your every move. Even when they apparently don't even bother to protect this information.

If you feel it's okay to be tracked like a tagged animal, that's your right. If you don't value yourself enough to think your privacy is important, go right ahead and feel that way.

But for the rest of us who believe in basic human rights, please don't help erode what little right to privacy we have left. Just because you don't care personally doesn't mean it's not a valid concern. I want the option of not having my every location logged unencrypted on my phone, and from the sound of many posts on this thread, I am definitely not alone.
The idea of a person truly having privacy is almost a joke. This little bit that we have left I feel is more of an illusion than something we actually have. People seem to be more than willing to track their entire lives on the internet without even being asked to do so. If you want some privacy the closest you are going to get is moving out into the country without a phone, gas, or electricity and live off what you can grow or hunt. Otherwise you are already tracked beyond what anyone that thinks about it should probably be comfortable with. This will not change what you will do in the next little bit though. I am quite sure you are still going to at least continue to use your debit card.
Score: 1 Votes (Like | Disagree)
hobo.hopkins Avatar
136 months ago
so the program can not find the file. Does that mean my iPhone isnt tracking me?
I was just about to post the same thing; the application says that it couldn't find the consolidated.db file. I even tried syncing my iPhone once more and it still didn't help. An interesting note though - I own a Verizon iPhone. I wonder if that has anything to do with it.
Score: 1 Votes (Like | Disagree)
nightcap965 Avatar
136 months ago
Help! Help! The paranoids are after me!

With respect to all the "view with alarm" postings that will follow, this really doesn't mean anything. I leave my home at the same time every morning. The transponder in my car records my passage and debits my account with the state highway department. Traffic cameras record my license plate at several points during my journey. Once out of the car, my smiling phiz can be seen on any number of CCTVs en route to my office, whose door I open with a card that automatically records my entry. The IP address of this posting will reveal that I am sitting in my living room as I write. Even without the GPS turned on, my phone regularly initiates a conversation with the local cell tower. I can be found with almost pinpoint accuracy.

So I'm not exactly going to panic to learn that my computer and phone keep a record of my latitude and longitude that they don't share with anyone else.

The government already knows where I live, where I work, where I bank, and all kinds of other interesting information. It's how they collect their taxes and send me my mail.

If there were the slightest indication that liberals, atheists, and other enemies of the state were being tracked by their GPSes and rounded up, I'd be the first to the barricades. But there isn't. Our privacy is not based on "nobody knows", it's based on "nobody cares."
Score: 1 Votes (Like | Disagree)
Trauma1 Avatar
136 months ago
I love all the dopes quoting various disclosures in agreements that we've agreed to. Just because something is written into terms of an agreement, does not make it lawful. Apple could put in their T&Cs you agree to allow Apple to shoot you dead if you jailbreak your iPhone. Do you think that would be OK too since you agreed to allow it?

Well now we know you're not an attorney, or at least a good one.
Score: 0 Votes (Like | Disagree)
KnightWRX Avatar
136 months ago
The granted patent describes exactly what is stored in the db... Instead of hysteria people should think a little more before becoming Jawas.
They have simply developed a method of accurately triangulating the devices position based upon (probably 4) towers.
And both my points has nothing to do with what is in the DB, it has to do with the lifetime of this content in the database. I know what is in there, I just don't want it to be kept indefinitely, nor do I want it in the backups on my Mac, as probably a lot of the people that aren't happy this in thread want.

I also want it to be disabled if I ask it to.

After all the press this is generating, I'm sure Apple will tone done the logging/lifetime to acceptable parameters and then we'll be able to all Move Along and be happy with our shiny toys once again.
Score: 0 Votes (Like | Disagree)

Top Stories

calculatorapp

iOS 11 Bug: Typing 1+2+3 Quickly in the Calculator App Won't Get You 6

Tuesday October 24, 2017 2:03 pm PDT by
A bug in the built-in Calculator app in iOS 11 is getting some major attention this week, despite the fact that it's been around since iOS 11 was in beta testing. At issue is a calculator animation that causes some symbols to be ignored when calculations are entered in rapid succession. You can try it for yourself: Type 1+2+3 and then the equals sign into the Calculator app quickly. Due to...
gradiente iphone white

Brazilian Electronics Company Revives Long-Running iPhone Trademark Dispute

Tuesday May 19, 2020 1:06 pm PDT by
Apple has been involved in a long-running iPhone trademark dispute in Brazil, which was revived today by IGB Electronica, a Brazilian consumer electronics company that originally registered the "iPhone" name in 2000. IGB Electronica fought a multi-year battle with Apple in an attempt to get exclusive rights to the "iPhone" trademark, but ultimately lost, and now the case has been brought to...
original iphone

Phil Schiller Says iPhone Was 'Earth-Shattering' Ten Years Ago and Remains 'Unmatched' Today

Monday January 9, 2017 7:15 am PST by
To commemorate the tenth anniversary of the iPhone, Apple marketing chief Phil Schiller sat down with tech journalist Steven Levy for a wide-ranging interview about the smartphone's past, present, and future. The report first reflects upon the iPhone's lack of support for third-party apps in its first year. The argument inside Apple was split between whether the iPhone should be a closed...
iphone 12 colors 2021

iPhone 12 Colors: Deciding on The Right Color

Thursday November 5, 2020 8:35 am PST by
The iPhone 12 and iPhone 12 Pro arrived last October in a range of color options, with entirely new hues available on both devices, as well as some popular classics. The 12 and 12 Pro have different color choices, so if you have your heart set on a particular shade, you might not be able to get your preferred model in that color. iPhone 12 mini and iPhone 12 The iPhone 12 mini and iPhone 12...
iPhone 13 Dummy Thumbnail 2

Full iPhone 13 Feature Breakdown: Everything Rumors Say We Can Expect

Tuesday August 31, 2021 7:50 am PDT by
With the launch of Apple's iPhone 13 lineup believed to be just a few weeks away, we have compiled all of the coherent rumors from our coverage over the past year to build a full picture of the features and upgrades coming to the company's new smartphones. For clarity, only explicit improvements, upgrades, and new features compared to the iPhone 12 lineup are listed. It is worth noting that...
omg lightning cable comparison

Security Researcher Develops Lightning Cable With Hidden Chip to Steal Passwords

Thursday September 2, 2021 6:59 am PDT by
A normal-looking Lightning cable that can used to steal data like passwords and send it to a hacker has been developed, Vice reports. The "OMG Cable" compared to Apple's Lightning to USB cable. The "OMG Cable" works exactly like a normal Lightning to USB cable and can log keystrokes from connected Mac keyboards, iPads, and iPhones, and then send this data to a bad actor who could be over a...
macbook air deals

Deals: Amazon Drops Price of 256GB M1 MacBook Air to New Low of $849.99 ($149 Off)

Friday August 27, 2021 6:16 am PDT by
Amazon today introduced new low prices on the M1 MacBook Air for both 256GB and 512GB storage options. To start, you can get the 256GB model for $849.99, down from an original price of $999.00. Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. Only Silver and Gold are...
maxresdefault

New MacBook Pro Models Coming at WWDC, Suggests Leaker

Monday May 24, 2021 1:27 pm PDT by
New MacBook Pro models are coming at WWDC, according to leaker Jon Prosser who has a mixed track record when it comes to predicting Apple's plans. Subscribe to the MacRumors YouTube channel for more videos. Prosser provided no additional information, but there are new 14 and 16-inch MacBook Pro models in the works. The new MacBook Pros will feature the most radical redesign to the MacBook Pro ...
M1X MBP Feature

Leaker: Upcoming MacBook Pro to See Price Hike Over Current Model, Equal Performance Across 14 and 16-Inch Sizes

Tuesday August 24, 2021 5:28 am PDT by
The upcoming 14-inch MacBook Pro is set to be more expensive than the current 13-inch MacBook Pro and both the 14 and 16-inch models will offer the same performance, according to the leaker known as "Dylandkt." The leaker shared the information on Twitter, explaining that both of the upcoming MacBook Pro models, expected to come in 14 and 16-inch sizes, will feature the same performance due...
iPhone 13 Dummy Thumbnail 2

Kuo: iPhone 13 to Feature LEO Satellite Communications to Make Calls and Texts Without Cellular Coverage

Sunday August 29, 2021 7:39 am PDT by
The iPhone 13 will feature low earth orbit (LEO) satellite communication connectivity to allow users to make calls and send messages in areas without 4G or 5G coverage, according to the reliable analyst Ming-Chi Kuo. In a note to investors, seen by MacRumors, Kuo explained that the iPhone 13 lineup will feature hardware that is able to connect to LEO satellites. If enabled with the relevant...