Statement from BlueToad regarding the cyber attack suffered in the recent case of stolen Apple UDIDs

Written by Paul DeHart, CEO and President

A little more than a week ago, BlueToad was the victim of a criminal cyber attack, which resulted in the theft of Apple UDIDs from our systems.  Shortly thereafter, an unknown group posted these UDIDs on the Internet.

At BlueToad, we understand the importance of protecting the safety and security of information contained on our systems.

Although we successfully defend against thousands of cyber attacks each day, this determined criminal attack ultimately resulted in a breach to a portion of our systems.

When we discovered that we were the likely source of the information in question, we immediately reached out to law enforcement to inform them and to cooperate with their ongoing criminal investigation of the parties responsible for the criminal attack and the posting of the stolen information.

We have fixed the vulnerability and are working around the clock to ensure that a security breach doesn’t happen again.  In doing so, we have engaged an independent and nationally-recognized security assurance company to assist in our ongoing efforts.

We sincerely apologize to our partners, clients, publishers, employees and users of our apps.  We take information security very seriously and have great respect and appreciation for the public’s concern surrounding app and information privacy.

BlueToad does not collect, nor have we ever collected, highly sensitive personal information like credit cards, social security numbers or medical information.  The illegally obtained information primarily consisted of Apple device names and UDIDs – information that was reported and stored pursuant to commercial industry development practices.

Upon Apple’s recommendation several months ago, we modified our code base to discontinue the practice of reporting UDIDs.  We have now also discontinued storing any UDID information sent to our servers by apps that have not yet been updated to the new code base.

We understand and respect the privacy concerns surrounding the data that was stolen from our system.  BlueToad believes the risk that the stolen data can be used to harm app users is very low.  But that certainly doesn’t lessen our resolve to ensure that all data is protected and kept from those who seek to illegally obtain it.

We will continue to monitor this situation and cooperate with law enforcement in the investigation of the parties responsible for this crime.

About BlueToad Inc.

BlueToad, Inc. is a software company providing digital content solutions and apps to publishers and content creators worldwide. BlueToad supports thousands of titles and hundreds of apps and is easily one of the largest digital software providers in the world.
This entry was posted in Apps, BlueToad Updates, iOS, iPad, iPhone. Bookmark the permalink.

122 Responses to Statement from BlueToad regarding the cyber attack suffered in the recent case of stolen Apple UDIDs

  1. Pingback: App Store app publishing company comes forward as source of leaked Apple device UDIDs | 9to5Mac

  2. Pingback: Blue Toad Publishing Company Admits Stolen ‘FBI’ UDIDs Came From Them | Iphone Quickies - Iphone 5 News

  3. Pingback: Blue Toad Publishing Company Admits Stolen ‘FBI’ UDIDs Came From Them

  4. Pingback: App Store app publishing company comes forward as source of leaked Apple device UDIDs | iPhone, iPad and MAC iAppDevice.com

  5. Pingback: Blue Toad Publishing Company Admits Stolen ‘FBI’ UDIDs Came From Them | ELECTRONIC SPHERE

  6. Pingback: UDID leak source ID’d: BlueToad mobile firm says it was hacked | Dubai News|Dubai Hotels|Dubai Business

  7. Pingback: Blue Toad Publishing Company Admits Stolen ‘FBI’ UDIDs Came From Them | CodeBlue Technology

  8. Pingback: Leaked Apple device IDs likely stolen from digital publishing company, not FBI | Woblia

  9. Pingback: UDID leak source ID’d: BlueToad mobile firm says it was hacked « News Flash

  10. What apps use your code? Is there a way for users to check which frameworks or ad systems an app uses? And in good faith, why don’t you clean your systems of all ancient UDID data? I am one of those whose UDID is in the million record list released by the hackers.

  11. Pingback: Florida Company Reveals Anonymous Stole Apple UDIDs from their Servers, Not from FBI | iPhone in Canada Blog - Canada's #1 iPhone Resource

  12. Pingback: Blue Toad Publishing Company Admits Stolen 'FBI' UDIDs Came From Them

  13. Rave says:

    Nicely said. Kudos for trying to get out ahead of this.

  14. Pingback: Blue Toad: "The Stolen 'FBI' UDIDs Came From Us" | MacTrast

  15. Pingback: Source of 1 million hacked Apple Device ID's revealed - TEKCORE UK

  16. Pingback: Red-Faced Blue Toad Says It’s the Source of Leaked Apple UDIDs - John Paczkowski - News - AllThingsD

  17. Pingback: Apple Device ID Leak Traced To BlueToad – InformationWeek | The Time of Press

  18. Pingback: App Store app publishing company comes forward as source of leaked Apple device UDIDs | JeRosOn'S CoMMuniTy : R.W.S. & T.

  19. Pingback: Leaked Apple device IDs likely stolen from digital publishing company, not FBI - Phone News – Find One For You

  20. CyborgSam says:

    Kudos for taking the high road and doing the right thing in a bad situation. Business ethics classes say to tell the truth is the best policy in the long run, yet so few companies follow that advice. The list of companies I’m boycotting for lying is getting too long…

  21. Pingback: GlassTV – App publisher takes blame for massive Apple ID hack

  22. Pingback: App publisher takes blame for massive Apple ID hack |

  23. Pingback: Anonymous didn’t hack FBI laptop, says hacked web publisher | Tech News

  24. Pingback: Anonymous didn’t hack FBI laptop, says hacked web publisher | Old News

  25. Pingback: Leaked Apple device IDs likely stolen from digital publishing company, not FBI | The Verge « An Ardent Apple Fan

  26. Pingback: Anonymous didn’t hack FBI laptop, says hacked web publisher | Technology News

  27. Pingback: BlueToad Takes Credit for All those Leaked iOS Device IDs « itsandlife

  28. Pingback: ste williams » E-publisher ‘fesses up: ‘Apple UDIDs were ours’

  29. Pingback: Anonymous didn’t hack FBI laptop, says hacked web publisher | Web Guru Guide

  30. Pingback: BlueToad Takes Credit for All those Leaked iOS Device IDs « Game News

  31. Joey Dean says:

    Never really thought about it like that dude. Makes sense.
    http://www.Anon-This.tk

  32. Pingback: The Wright Computer Services » Statement from BlueToad regarding the cyber attack suffered in the recent case of stolen Apple UDIDs (Paul DeHart/BlueToad)

  33. Pingback: App publisher admits it was source of UDID data breach - Macworld Australia

  34. Pingback: App Publisher Takes Responsibility for Apple ID Hack - Silicon Valley 411 | SV411

  35. Pingback: App publisher takes blame for Apple ID hack- @helmirofiq

  36. Pingback: Leaked UDIDs Stolen From BlueToad | iOSVlog

  37. anonymous says:

    Do you plan on apologizing for not encrypting the information sent back to your servers from your apps? Sloppy.

  38. Pingback: ‘Anonymous’ didn’t hack FBI laptop, says hacked web publisher | Dark PoliticksDark Politricks

  39. Pingback: Blue Toad Publishing Company Admits Stolen ‘FBI’ UDIDs Came From Them | iphone 4S issues

  40. Pingback: News | Ripple's Web » App publisher takes blame for Apple ID hack

  41. Pingback: Blue Toad Publishing Company Admits Stolen ‘FBI’ UDIDs Came From Them - The Source of Informations, Guides,... - Mac2Day

  42. Pingback: Leaked Apple UDIDs Were Stolen From Digital Publishing Firm | Tablet OS News and Info

  43. Pingback: Anonymous didn’t hack FBI laptop, says hacked web publisher | Just MusicTube

  44. Pingback: Blue Toad Publishing Company Admits Stolen ‘FBI’ UDIDs Came From Them | Apple Related

  45. Pingback: Anonymous didn’t hack FBI laptop, says hacked web publisher | IT Support London | SupportWizard.net

  46. Pingback: Apple ID Leaks Traced to Application Developer – eWeek | Daily News Pages

  47. Pingback: Apple ID Leaks Traced to Application Developer | Technology News Hub

  48. Pingback: Apple ID Leaks Traced to Application Developer - Fundamental Technology Partners Inc.

  49. Pingback: Blue Toad Publishing Company Admits Stolen ‘FBI’ UDIDs Came From Them | Compare Prices and Best Deals Online

  50. Pingback: Leaked Apple UDIDs were stolen from digital publishing firm | Geeklin

  51. Pingback: Antisec didn’t hack FBI, no one did | memeburn

  52. Pingback: App Store app publishing company comes forward as source of leaked Apple device UDIDs

  53. Martha says:

    This standard reaction raises more questions than it answers.
    # Which applications specifically (apparently those of BT clients) collected these UDIDs?
    # Have the users of those apps ever agreed to BT collecting this data, especially given that BT must be considered a third party when I download an app form publisher X who – without me knowing – is a BT client
    # What does BT note on the “lessons learned” list now? This posting gives no indication that BT will stop collecting or storing UDIDs that still come in from old app versions. Which would be the very least change that should be made in a timely manner.

    I get the feeling that BT just copypasted some random “we apologize for giving your personal data to the whole internet” posting as it can be found on company blogs everywhere these days. Kinda poor.

  54. Pingback: Leaked Apple UDIDs were stolen from digital publishing firm - Magazine Design Layout

  55. from the basement of the science building says:

    Did the file come from a computer running MS Windows, Mac OSX, or something else?

  56. Pingback: Apple ID Leaks Traced to Application Developer – eWeek | Cichicean.Com

  57. Pingback: Leaked Apple UDIDs were stolen from digital publishing firm - Newspaper Software

  58. Pingback: Hacked Apple Device IDs Came From App Publisher, FBI Link Disputed | Exploit Archive

  59. alexcohn says:

    I think this statement should start with express gratitude to David Schuetz. The guy deserves public acknowledgement for his effort and for his discrete treatment of this case.

  60. alexcohn says:

    I believe this statement should open with express thanks to David Schuetz. The guy deserves public gratitude for his effort and for his discrete behavior.

  61. Pingback: UDID Apple pubblicati da hacker: rubati da BlueToad e non da FBI [FOTO]

  62. Pingback: Blue Toad Publishing Company Admits Stolen 'FBI' UDIDs Came From Them | JeRosOn'S CoMMuniTy : R.W.S. & T.

  63. Pingback: Apple ID Leaks Traced to Application Developer | CSO News Hub

  64. Pingback: Leaked Apple UDIDs were stolen from digital publishing firm | Computer Education Travel Automotive and Art

  65. Pingback: App Store app publishing company comes forward as source of leaked Apple device UDIDs | MobileAdmin

  66. Pingback: Red-Faced Blue Toad Says It’s the Source of Leaked Apple UDIDs | MobileAdmin

  67. Pingback: Digital publisher BlueToad claims to be source of leaked UDIDs | Digital Trends

  68. Pingback: Tech News Online » Apple ID code leak ‘source found’

  69. Pingback: Apple ID code leak ‘source found’ | How to Social Network Guide

  70. Pingback: Gli UDID rubati provengono da una software house | Ipad 3, Ipad, Informazioni ipad, uscita ipad 3 - iPadTouch.it

  71. Pingback: Blue Toad: "Gli UDID rubati provengono da noi"

  72. Pingback: Zero Factor Authentication - Kenneth G. Hartman, CISSP

  73. Pingback: About APNs tokens and duplicate UDIDs | Undsoversum GmbH

  74. Pingback: Apple ID code leak ‘source found’ | Social Web Guru Guide

  75. Pingback: App publisher takes blame for massive Apple ID hack – samuelandmichellefreelancewriting

  76. Pingback: Leaked Apple UDIDs were stolen from digital publishing firm - Independent Newspaper Articles

  77. Pingback: Apple ID code leak ‘source found’ | Best Web Consulting company in Nashik, India with Creative and Professional Website Design, Content Management Systems, Wordpress Experts, Ecommerce SEO, and more..

  78. Pingback: Antisec, PROVE Apple UDIDs came from FBI | COLLABGENIES

  79. And we thought poor FBI agent did all this.

  80. Pingback: Apple ID code leak ‘source found’ | PATRONIT

  81. Pingback: Apple UDIDs were stolen from BlueToad Not FBI agent’s computer « Tech Conference – Living In Future

  82. Pingback: Privacy Paranoia Fuels False News Reports « notiziario internet

  83. Fred Abel says:

    All you critics of this company need to chill. As I understand it, the technology allowing the collection of data tied in to a single subscriber’s iPhone never exposes the user to being identified by log-ins, passwords, physical addresses, email addresses, or credit card data. It was intended to collect useful information about publication readers’ preferences from within the publication reader app. Kudos to BlueToad’s Paul DeHart for ably handling this situation openly and honestly.

  84. Pingback: Apple ID code leak ‘source found’ | andybundy.com

  85. Pingback: Meet the guy who cracked the case of the stolen iPhone IDs - Latest Technology - News & Articles

  86. Pingback: Red-Faced Blue Toad Says It's the Source of Leaked Apple UDIDs - Quick Download free stuff - Quick Download

  87. Pingback: Episode 757 – Special Guest Ronin, Length Matters, BlueToad, Ankit Fadia, AutoResponse | InfoSec Daily

  88. Pingback: App Developer Says It — Not the FBI — Was the Victim of Hack That Leaked Apple IDs | News

  89. Pingback: IT Secure Site » Blog Archive » US publisher confesses to UDID leak

  90. Pingback: Quora

  91. Pingback: Quora

  92. Pingback: Apple ID code leak ‘source found’ | bc-news.co.cc

  93. Pingback: UDID leak source ID’d: BlueToad mobile firm says it was hacked | Exploit Archive

  94. Pingback: Anonymous stumbles, but hackers still hazardous | Exploit Archive

  95. Pingback: Anonymous stumbles, but hackers still hazardous | Tux Doc

  96. Pingback: Anonymous stumbles, but hackers still hazardous | Tech Toys For Big Boys

  97. Pingback: Anonymous stumbles, but hackers still hazardous | i-News.info

  98. Pingback: Enlaces de la SECmana – 140 | Desgobierno de Chile

  99. Pingback: Anonymous didn’t hack FBI laptop, says hacked web publisher – NEWS FRESH

  100. Pingback: Anonymous stumbles, but hackers still hazardous « Breaking News « Theory Report

  101. Pingback: Apple ID Leaks Traced to Application Developer | TechContentWatch

  102. Pingback: # 3 “Of Mice and Men” | AFK Tech Talk

  103. Pingback: All about information from internet » Post Topic » Anonymous stumbles, but hackers still hazardous

  104. Pingback: Fuite des UDID Apple : BlueToad endosse la responsabilité

  105. Hello there! Would you mind if I share your blog with my myspace group?
    There’s a lot of people that I think would really enjoy your content. Please let me know. Thank you

  106. Pingback: Anonymous didn’t hack FBI laptop, says hacked web publisher | News & Specials

  107. Pingback: Company Claims Responsibility for Apple UDID Leak - Online File Storage

  108. Greate article. Keep writing such kind of information
    on your site. Im really impressed by your blog.
    Hi there, You have performed an incredible job. I’ll certainly digg it and personally suggest to my friends. I’m confident they will be benefited from this
    website.

  109. Pingback: Νέα για τους κωδικούς της Apple

  110. Pingback: David Greenwood | Tracking Down the UDID Breach Source

  111. Pingback: Apple UDIDs leaked by Anonymous came from Florida firm, not FBI | Teckat - Technology blog

  112. Howdy! I just want to offer you a huge thumbs up for the great info you have got here on this post. I am coming back to your site for more soon.

  113. Pingback: Florida Digital Publisher Says It’s the Source of Apple UDID Leak | Threatpost

  114. Pretty component to content. I simply stumbled upon your website and in accession capital to claim that I acquire in fact enjoyed account your blog posts.
    Any way I will be subscribing on your feeds or even
    I fulfillment you get admission to consistently quickly.

  115. With havin so much content and articles do you
    ever run into any problems of plagorism or copyright violation?
    My website has a lot of completely unique content I’ve either created myself or outsourced but it appears a lot of it is popping it up all over the web without my agreement. Do you know any methods to help stop content from being stolen? I’d really appreciate it.

  116. Pingback: September 5, 2013Florida Company Reveals Anonymous Stole Apple UDIDs from their Servers, Not from FBI | RedHuck.Com

  117. Pingback: BlueToad pudo ser la fuente que filtró los UDIDs robados de cuentas Apple | iDA Movil

  118. Pingback: Florida Company Reveals Anonymous Stole Apple UDIDs from their Servers, Not from FBI | RedHuck.Com

  119. discount macrobid overnight ach
    how to get motrin 600mg in internet tabs fedex south carolina
    tretin 20g yearly cost renova lanka buy sri henna treatment acne
    online no prescription desogen cheap prices for desogen
    enalapril drug jcb saturday shipping
    acivir 400mg online order acyclovir 5 lancaster lupus
    allergic diuretic yoga treatment otc when furosemide 180 sale
    proventil help bronchitis does for cheap buy
    where to buy ilosone online paypal free shipping austria
    2002 renova daily discount mar statistics
    pharmacy nolvadex cost nolvadex free shipping generic priority
    mail
    generics tadacip
    buy cod estrace cream in internet store free shipping non usa
    germany sildenafil-vardenafil 20mg online cost
    7
    lamisil lawsuit joint pain
    can i buy defenac online jcb without prescription new york
    pharmacy glucovance mastercard discounts
    buy in online fluconazole visa ach internet
    to buy acyclovir otc order overnight delivery
    lipitor and ambien zocor
    beli online elken glucovance 2
    sales of desogen
    how to get provigil online – discount provigil online no perscription
    avamigran plus n online legendado 850 kaufen 1mg
    furosemide coupon fast malaysia
    mastercard aldactone paypal 2 gm cost
    low cost aldactone online visa fedex
    buy in online avamigran drug
    menstrual aldactone irregular europe drug hypertension
    buy brand revatio 120mg store want to buy

  120. Vitamin B8 Deficiency And Beneficial Vitamin B8 Adhere To Fitne and kwas hialuronowy cena
    zabiegu. Vitamin B8 Deficiency And Beneficial Vitamin B8 Adhere To Fitne

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s