Apple saves iPhone call history to iCloud, but barely mentions it

Modern smartphones make it easy to back up all your data to the cloud so you can keep it synced across devices, or download it to a new phone. That can have unfortunate consequences, however—especially when phones are syncing sensitive information that users aren’t explicitly aware of, and then a company famous for developing smartphone cracking software finds out.

Moscow-based Elcomsoft recently added a feature to its Phone Breaker software that the company says can retrieve an iPhone user’s call history data via iCloud. To use its software to crack an iCloud account, an attacker would need your login data or a login token from one of your devices.

Apple saves up to four months of a user’s call history whenever they are using iCloud Drive, according to Elcomsoft. The call history saved to iCloud keeps detailed information including phone numbers, dates, times of day the calls were made or received, and duration of calls, as first reported by the Intercept. Data for missed and ignored calls is also synced. In iOS 10, this synced data includes call data from VoIP apps that use Apple’s new CallKit framework.

In response to Elcomsoft’s announcement, Apple told iMore that it supports “call history syncing as a convenience to our customers so that they can return calls from any of their devices.”

Why this matters: The problem isn’t so much that Apple is syncing call logs. It’s how it’s implemented. Call log syncing is a nice convenience for those who want it, which is why Apple did it in the first place. But for those who don’t want to sync their call logs, or weren’t expecting to, it’s a huge problem.

What’s missing? Consent and control

For starters, this call history data is the same information the National Security Agency was so interested in obtaining, which the public discovered during the initial Snowden leaks in 2013. As the Intercept points out, four months of data records is twice as long as mobile carriers maintain that same information. Privacy-conscious users would not like this data easily accessible to law enforcement regardless of their proclivity for criminal activity.

The second issue is that there’s no explicit way to turn call syncing on or off. You can stop it by shutting down iCloud Drive, but that means you lose every other convenience of that service.

Apple also did a terrible job of disclosing this information. Call log syncing is mentioned in Apple’s security white paper released in May, a PDF document that few users would ever read.

Leave a Reply