Blog Archives
Instagram Stores Geolocation Data in EVERY Photo without Users Knowledge
If Instagram asks you if it can use your current location, even only once, it will autmacticly store the locaction of EVERY photo taken, even though it didn’t tell you that it would do that! There is no setting to only use this for certain photos. The location wont be publicly visible (unless you select it to before you publish the photo), but it will be publicly available….
The scary thing is that this is not hard to get. All you have to do is go to ink361.com and sign in with your instagram account. Once you’ve signed in you can view all of your (and people you follow) photos. If you click on a photo it will have a little map at the botom which will tell you where the photo was taken.
Requirements
An Instagram account
Instagram is Allowed to Use Your Location (Check settings)
A Computer to Access ink361.com
Instructions
1. Go to ink361.com and sign in with your instagram account.
2. Once you’ve logged in you need to find a photo you want to geolocate. I am going to find the location of a photo on the popular page. Scroll to the bottom of the photo and you will see a little map. You can click on that map to see where the photo was taken. This does not give you an address or coordinates though, and it is hard to see street names. If you would like to see the coordinates read below.
Finding the Coordinates
1. You will need Chrome (you can do it with other browsers though). Right click on the little map and click “Inspect Element”
2. Now you should see a clump of text highlighted in blue. The coordinates will be after the part:
size:small%7C
It will be directly after the 7C
3. Now that you have the coordinates head over to Google Maps and paste the coordinates to see the address!
UPDATE: There is an easier way to find the coordinates. Go to the website http://hashgr.am/ It will give you the option to search for a user or just search instagram. Put in the user you want, click on the photo you want….And volla, the coordinates will be at the bottom of the page with a link to google maps!
Also you don’t have to be an instagram user to do this!!!
View All of the User’s Photos on a Map
1. If you would like to see all of the user’s photos on a map at once follow the instructions in the pics below
How to turn this Off
If you would like to have Instragm stop geotagging all of you photos just go into your Settings and un-allow instgram to use your location. The downside to this is that if you want to use the actual geolcation feature (the one that lets people see the location of the photo inside the actual app) You would have to re-allow instagram to use your location (and turn it off again when done). That could be a very time consuming process.
This can be scary because if you take a photo at your house, you probably didn’t relize that people now know the address of your house. Say you had a lot of followers, maybe one of them is………a stalker -_-
Tor: Hurry up and get Tor for iOS before Apple removes it…
TOR has been around for a long time, but untill recently only for desktops. TOR encrypts your computer traffic and completely anonymizes you on the web. You can also change the IP that shows up as often as you like!
Tor is free software and an open network that helps you defend against a form of network surveillance that threatens personal freedom and privacy, confidential business activities and relationships, and state security known as traffic analysis.
Tor sends your data through lots of servers to obscure your IP and encrypts your data so no one can see it. It is used by law enforcement, the military, normal people, journalists, activists and many others!
I may be wrong (hopefully) but I think someone accidentally let this slip Apples review processes. So hurry up and download this awesome app before Apple removes it!!!
Onion Browser | iTunes App Store
Hack: White Pages for Free Reverse Cell Phone!
White pages is a great free tool to find out who lives at an address. It also does reverse cell phone lookups (normally for $1.99) but if you own an iPhone (and its jailbroken) you can get do it as many times as you want for free!
Requirements
A Jailbroken iPhone
iAp Cracker (Get it from the repo cydia.xsellize.com)
Instructions
1. Download iAp Cracker from the repo “cydia.xsellize.com” (without the quotes 😛 )! Once you’ve downloaded iAp cracker open up the White Pages app.
2. Once you’ve opened up the white pages click on “Reverse Phone” and type in the mobile number you want to search. Click on “Get the name for (xxx) xxx-xxx $1.99 per match”. Don’t worry, it won’t actually charge you. IF it says “Confirm Your In-App Purchase” Click cancel (otherwise it WILL charge you). Open up SB Settings and make sure iAp Cracker is toggled on.Try it again and it should show you the name of the number now!
Check out “Hack Your Way: Free Background Checks on the iPhone” to get free background checks from BeenVerified!
New Facebook App Vulnerability Lets you Easily Hack into Peoples Accounts!
Recently, a security hole in the Facebook iPhone & Android App was discovered by Gareth Wright. Wright discovered this hole while poking around the Facebook app, when shockingly, found that the Facebook login credentials were unencrypted in a .plist file! He sent the file to his friend, who put it on his iPhone and immediately he was logged into Wrights account! Wright contacted Facebook who said that they will be fixing this soon (But didn’t give a date). This hack is actually quite simple, your victim does have to be jailbroken though. Heres how to do it!
NOTE: This hack also works on Androids, but since I don’t own an android, I can’t show you how 😦
Requirements
The victums iDevice must be Jailbroken
You need an iDevice (Jailbroken)
A Computer
Instructions
1. Plug your victims iDevice into your computer. Open up DiskAid an navigate to /var/mobile/Applications/ you will have to find the folder the Facebook app is in though (this may take time depending on how many app the user has…)
2. Once you’ve located the Facebook folder go to Library > Preferences >
3. Copy com.facebook.Facebook.plist to your computer.
4. Unplug the victims iDevice from your computer and plug in YOUR iDevice. Navigate back the same folder and drop his com.facebook.Facebook.plist file onto your device. Open up your Facebook app and you will be logged into their account!
You will be logged into the Facebook account until the year 4000! The scary thing would be if someone codes software to to get this file remotely (It wouldn’t be hard). Someone probably already has. Be careful about plugging your device into “Charging Stations” and untrusted computers! Or you could be a victim of this attack!!!
Why you SHOULDN’T use a Pass Code on an iPod Touch
Pass codes are good if you want to keep people out of your phone (including thieves). But if you use a pass code on your iPod Touch or iPad Wifi (Without 3G) and you loose it, you probably won’t get it back. On the other hand, if you don’t have a pass code and a thieve gets ahold of it (and connects it to the internet) you can locate your iPod using Find my iPhone and retrieve it. There is NO way he could connect it to the internet if there is there is passcode (therefore you wouldn’t find it 😦 ).
If you are scared of them getting ahold of your personal information you can remotely wipe your iPod/iPad with Find my iPhone. A pass code is probably a better option if you have confidential information (because your iPod/iPad has to be conected to wifi in order to be erased). But if you ever want to find it GET RID OF YOUR PASS CODE!
Even if someone nice finds your iPod/iPad, how are they going to return it. If they cant look at your contacts list (and you don’t have a big fat sticker on the back :P) its GONE FOREVER! But if it didn’t have a pass code, they could call you (or you could locate it).
IF you have an iPhone by all means, PUT A PASS CODE ON IT! Since iPhones will be connected to the internet at all times you can locate it (Even if it is locked).
Hack Your Way: Free Background Checks on the iPhone (Update)
The background checking service BeenVerified is normally paid. And you also have to set up an account. But their iPhone app gives you 1 free credit to try out their service. But it verifies your a new custamer with your UUID, which can EASILY be spoofed!
Requirements
BeenVerified iPhone App (Free)
UDID Faker ( from the xsellize repo “cydia.xsellize.com” without the quotes)
UUID FAKER
Instructions
1. Open up BeenVerified and use your 1st free credit (You don’t have to make an account). Once you’ve used your free credit exit the app and delete it from your multitasking bar. Open up UDID Faker and select BeenVerified and change your UUID! Now open back up BeenVerified and use your free credit again.
UPDATE: Now you have to make an account to use the credit. But thats not really a problem, because you could just put a fake email and password (they don’t send a verification email). This is actually a bonus, because you can go online and sign in with your “fake” account and use your credit online (which has a little more options).
Your old searches won’t be on there anymore. But before you change your UUID you can email yourself a copy of the Background report from the app!
I hope you enjoyed the tutorial!
CHECK OUT THIS POST! “Hack: White Pages for Free Reverse Cell Phone!”
HackeRue 