iPhones Secretly Send Call History To Apple, Security Firm Says

Russian digital forensics Elcomsoft says iPhones send near real-time logs to Apple servers even when iCloud backup is switched off. The firm adds that these logs are stored for up to four months. From a report on the Intercept:"You only need to have iCloud itself enabled" for the data to be sent, said Vladimir Katalov, CEO of Elcomsoft. The logs surreptitiously uploaded to Apple contain a list of all calls made and received on an iOS device, complete with phone numbers, dates and times, and duration. They also include missed and bypassed calls. Elcomsoft said Apple retains the data in a user's iCloud account for up to four months, providing a boon to law enforcement who may not be able to obtain the data either from the user's carrier, who may retain the data for only a short period, or from the user's device, if it's encrypted with an unbreakable passcode. "Absolutely this is an advantage [for law enforcement]," Robert Osgood, a former FBI supervisory agent who now directs a graduate program in computer forensics at George Mason University, said of Apple's call-history uploads. "Four months is a long time [to retain call logs]. It's generally 30 or 60 days for telecom providers, because they don't want to keep more [records] than they absolutely have to. So if Apple is holding data for four months, that could be a very interesting data repository and they may have data that the telecom provider might not."

off-shore revenue

[gti_guy]

Well, that's one way to ensure that your off-shore revenue doesn't get touched by the US govt -- provide users' call data to the US govt in exchange for the favor.

Re:off-shore revenue

[Coisiche]

Isn't the iPhone a US politician's usual choice? Maybe it's more along the lines of Apple saying "If our tax liability were to suddenly increase then your call history becomes public".

Re:off-shore revenue

[known_coward_69]

no, they will probably say we'll stop retaining call history at all and have the FBI and other agencies run to congress to keep their tax benefits going

30 or 60 days

Sorry, wireless companies keep records a hell of a lot longer than that. Just log into your wireless account and look at your bill history. That info is not secure if they issue a warrant to the company for your phone records.

But sorry, please start the Apple hate machine....

Re:30 or 60 days

[stealth_finger]

I'm sorry but the people selling you phone service keeping logs of your phone calls is one thing, the people that just made the phone have no business at all logging that data for any reason. But I guess it's ok though because apple did it and apple can do no wrong.

Re: 30 or 60 days

[TheFakeTimCook]

We know the telecoms have my call history, Apple has done this secretly, but you keep being an iTard apologist, typical Apple fanboy.

Really? Have you seen those logs?

Is there ANY possible reason for APPLE to want to know who you are calling?

Think about it.

I think they don't exist.

Re: 30 or 60 days

[Khyber]

"Really? Have you seen those logs?"

I guess you've never used a landline (or rather, paid the bill to one) in your life. Usually, the bill comes with a full listing of all dialed numbers.

Re: 30 or 60 days

[TheFakeTimCook]

"Really? Have you seen those logs?"

I guess you've never used a landline (or rather, paid the bill to one) in your life. Usually, the bill comes with a full listing of all dialed numbers.

From the CARRIER, sure.

very interesting indeed

[roman_mir]

So if Apple is holding data for four months, that could be a very interesting data repository and they may have data that the telecom provider might not.

Cook: "In my point of view, [privacy] is a civil liberty that our Founding Fathers thought of a long time ago and concluded it was an essential part of what it was to be an American. Sort of on the level, if you will, with freedom of speech, freedom of the press."

So, Timmy, is privacy worth being protected or not? How is this 'protecting privacy'? Just because you can obtain these logs, why are you doing it?

Re:very interesting indeed

Your privacy is being protected; Apple is protecting it for you by looking after your data for a while. Don't you trust them? If it doesn't give you a warm, fuzzy feeling, and make you feel a little bit special to have Apple holding onto your data, then you should turn in your fanboi card immediately.

Re:very interesting indeed

[Anubis+IV]

Just because you can obtain these logs, why are you doing it?

Apple already answered that question. From the article (yes, I'm guilty of reading it in this instance):

Apple acknowledged that the call logs are being synced and said it’s intentional.

“We offer call history syncing as a convenience to our customers so that they can return calls from any of their devices,” an Apple spokesperson said in an email.”Device data is encrypted with a user’s passcode, and access to iCloud data including backups requires the user’s Apple ID and password. Apple recommends all customers select strong passwords and use two-factor authentication.”

Moreover, the article contradicts the headline's assertion that this was a "secret" collection of data, since Apple has apparently been up-front about the collection ever since it was added, having disclosed it in their security white papers over the last few years. Plus, users are apparently in control of the data still. Deleting the log on your phone syncs the deletion through to iCloud as well, allowing the user to delete the log at any time.

Of course, it would be better if Apple didn't have access to the data in the first place, and while Apple has announced their intent to encrypt things in such a way that they wouldn't be able to access them, the article rightly calls them out for having yet to actually do so in the 9 months since they announced those plans.

The article goes on to mention that this same call log syncing feature was added to newer versions of Android and Windows Phone as well, with the exact same caveats about it being impossible to turn off without turning off all syncing services. Neither Google or Microsoft were mentioned as having announced plans to encrypt the data to keep it out of their own hands, though I'd hope (but not expect that) they'd all jump on that bandwagon.

Re:very interesting indeed

[Motherfucking+Shit]

Apple has apparently been up-front about the collection ever since it was added, having disclosed it in their security white papers over the last few years.

And of course the average iPhone user spends lots of time reading security white papers, in between the hours they devote to keeping up with all the Technical Service Bulletins for their car...

Re:very interesting indeed

[TheFakeTimCook]

Deleting the log on your phone syncs the deletion through to iCloud as well, allowing the user to delete the log at any time.

And that's the difference that makes ALL the difference.

I agree that it would be much better if this was an "Opt-Out/In" Setting, and if it were encrypted from Apple's view, too.

But unless you are under an active investigation, keeping your call-log "pruned" is a good first step.

Re:very interesting indeed

[Anubis+IV]

And that's a fair point. Apple already does quite a bit to try and educate their users about the security and privacy of their devices, but the industry as a whole needs to be doing an even better job, as I'm sure you'd agree.

Even so, the details were readily available to anyone who was interested in them, and Apple's white papers are fairly easy reading as far as technical breakdowns go, so the headline's claim that Apple was secretly collecting the data is clearly false, which is highlighted by the fact that the article itself refutes the headline.

Re:very interesting indeed

[praxis]

So, Timmy, is privacy worth being protected or not? How is this 'protecting privacy'? Just because you can obtain these logs, why are you doing it?

I'm not Tim, but I'll wager an answer.

Apple offers a service where it can route calls from your phone to your other Apple devices as part of iCloud syncing. They store you call history as part of your iCloud data as call history is useful to have synced on all your devices and computers able to make and take calls. If you turn off iCloud, they don't store this data, as there's no point to do so.

I would argue that they could do a better job though, by having more granular controls over this feature and allow other parts of iCloud to be turned on with call routing and call-history syncing turned off.

Re:very interesting indeed

[EvilSS]

You seem to be confusing Apple, a hardware/software/content company, with Google, an ad agency.

Re:very interesting indeed

[LynnwoodRooster]

Apple isn't an "ad company" because they failed with iAds. They tried, they tried really hard - but couldn't pull it off.

Re: very interesting indeed

[Demena]

Do you actually believe that, or are you malicious in your lies? You have no evidence that apple is doing anything nasty. I doubt that it is. If what you say is true then apple has repeatedly and criminally told courts lies. Courts do not like this and put people in jail for it. Have a little common sense. Even if it were true your alternative would be sending that information and more to China.

Re: very interesting indeed

[Demena]

Just like androids read the source code? Enough do that the bulk are protected. Same as it ever was.

Re:very interesting indeed

[EvilSS]

Apple isn't an "ad company" because they failed with iAds. They tried, they tried really hard - but couldn't pull it off.

And yet even then it wasn't their primary source of revenue or their main focus. Google is the one interested in customer data so they can push ads on them. Apple has never shown any interest in mass data collection from their users outside what they need to have to provide their services (such as cross-device call history sync, as is the case here), and they certainly are not making money off selling it, as the OP suggested.

Secretly

Yeah that's how it happens. I setup my iPhone and secretly is syncs my call history to my phone. Wow! Where did that come from I wonder?

Re:Secretly

[110010001000]

I was assuming it was getting it from the secure Cloud? Isn't that what iCloud is? Like the regular Cloud but better.

Re:Secretly

[aaarrrgggh]

Yeah... call history is synced between devices... in near real-time... and it goes back about four months! It is one thing if there is a user-centered purpose for it...

Re:Secretly

[Kohath]

It is one thing if there is a user-centered purpose for it...

So you can see who called you and easily return calls.

Re:Secretly

[praxis]

It is one thing if there is a user-centered purpose for it...

I find it useful to see my call history on devices other than my phone. Those other devices that can also make and take calls.

Yeah, and?

[squiggleslash]

I'm struggling to be outraged. iCloud stores a lot of stuff that's more personal than your call history, and for all Apple's faults, they've proven to be fairly strong on the privacy front.

(Also I'm still a little pissed that my BLU smartphone has been sending my SMS messages to China until today for reasons that nobody is willing to give an even vaguely plausible answer to.)

I'm not pro-Apple (see previous comments) but this isn't unexpected, secret, behavior. When you link your iDevice to something supposedly intended to keep it sync'd and backed up, this is exactly what you'd expect it to do. This isn't even a bug.

Re:Yeah, and?

[110010001000]

"Also I'm still a little pissed that my BLU smartphone has been sending my SMS messages to China"

Only a LITTLE pissed? Interesting.

Re:Yeah, and?

[JoeyRox]

But iCloud only stores "a lot of stuff that's more personal than your call history" when the user enables it to do so. Apple is storing the call data without the user's knowledge or ability to control it.

Re:Yeah, and?

[squiggleslash]

Apple is storing the call data without the user's knowledge or ability to control it.

I disagree on all points.

The user can control it, they can choose whether to link their device to iCloud or not. And saying it's "without the user's knowledge" is rather like saying "It stores the user's phonebook without their knowledge" or "It stores the user's photos without their knowledge". Sure, it may or may not explicitly state that, but it's implied by the very act of syncing.

This is, at best, a user pig-ignorance thing: by pig ignorance, I mean not merely that the user is ignorant, which is OK, it happens, not everyone's a tech expert, but one where a user hasn't even bothered to think about what enabling a particular feature on their phone means.

Re:Yeah, and?

[known_coward_69]

it's a cheap no margin phone from a chinese manufacturer. what did you expect?

Re:Yeah, and?

[JoeyRox]

What if the user wants their photos backed up to iCloud but not their call logs?

Re:Yeah, and?

[stealth_finger]

(Also I'm still a little pissed that my BLU smartphone has been sending my SMS messages to China until today for reasons that nobody is willing to give an even vaguely plausible answer to.)

Probably the exact same reason apple has. They can, and can probably make money from it.

Re:Yeah, and?

[vux984]

but it's implied by the very act of syncing.

Given when setting syncing up i generally have a list of checkboxes that say whether i want to sync A, B, or C then syncing something else without disclousure is definitely not 'implied'.

Re:Yeah, and?

[MachineShedFred]

Without the user's knowledge?

So when they get a new device and the call history magically shows up after putting in the iCloud account and password, it's divining that through psychic feed or something?

No ability to control it?

Turn off iCloud. It no longer stores this information. Sounds like a fairly easy and basic control to me. Would it be better if there was an individual switch for this function? Probably, but at some point you end up with an overwhelming page of little switches for every single little thing, and it's a usability nightmare that most people wouldn't bother with anyway.

Re:Yeah, and?

[JoeyRox]

What if it's their first iPhone, so they won't see their previous call sync to know it's happening? And what if they're not tech savvy to even know what iCloud is? Are non-techies undeserving of privacy protection?

Re:Yeah, and?

[The-Ixian]

IKR?

Telemetry is the new normal, they all do it. Apple, MS, Google, etc, etc, etc....

Re:Yeah, and?

[squiggleslash]

It's a figure of speech (I used to be British, we don't really do the yelling and screaming thing about things that we're angry about, we just tut tut.)

Re:Yeah, and?

[MachineShedFred]

Well, as they have to actually opt-in to iCloud, then I would assume that they read what it actually does before blindly turning it on and establishing a set of credentials.

There are the non-techies, then there is the willfully ignorant.

So can the FBI force apple to turn that over next

[Joe_Dragon]

So can the FBI force apple to turn that over next time?

They're only being thoughtful

[Trashcan+Romeo]

> And what could be more convenient than not having to bother with the information that it's being done?

Litigation time!

Oh my god! You mean when Apple said they'd store all the data on my phone remotely for me, the madmen actually went and did it?

I'm suing.

FTA - Nefarious or just stupidity.

[the_skywise]

"“We offer call history syncing as a convenience to our customers so that they can return calls from any of their devices,” an Apple spokesperson said in an email.”Device data is encrypted with a user’s passcode, and access to iCloud data including backups requires the user’s Apple ID and password. Apple recommends all customers select strong passwords and use two-factor authentication.”

Not defending Apple here and I only have an iPhone (no other part of the Apple ecosystem) so I can't speak to the need (or usefulness) of being able to return a call from my iPad or Mac if I miss a call from my iPhone. This just smacks of more Siri/cloud/Cortana data collection garbage to me.

Heck, I'd have the iCloud completely turned off still if it weren't for their "new" feature where they stopped syncing with Outlook notes and I had to have someway of backing up/sync'ing note items with the rest of my PCs. (I backup my iPhone to an abacus at home...)

Re:FTA - Nefarious or just stupidity.

[MachineShedFred]

I used this just today actually - I left my phone in my bedroom on it's charger, and I missed a call. I was able to click a 'redial' button on my MacBook Pro and return the call.

It was rather convenient, actually.

Re:FTA - Nefarious or just stupidity.

[guruevi]

It also allows you to pick up your phone from your computer or other devices. It's immensely useful if you sit at a desk and need to take a call, you can just use a headset. It's kind of 'expected' that such notification data runs throughout the ecosystem. Don't like it, turn off iCloud, then it doesn't happen unlike Android devices where it always happens regardless of your settings.

Re:FTA - Nefarious or just stupidity.

[anegg]

This is the inevitable consequence to people wanting to use services that have an "ecosystem" that is maintained in the cloud instead of within their own local set of devices. It is not impossible to imagine having the same capabilities enabled through an ecosystem that maintained the data all on devices local to the user. However, unless people demand such an ecosystem (and are willing to pay for it), the friendly people who have built out all of their "cloud" infrastructure capabilities will be happy to provide it at a lower perceived cost.

At some point, the true cost of having ones life in the cloud may become apparent, at least to some individuals, much like the true cost of living with security risks only becomes apparent to the people who suffer a devastating loss. So the question is, is the cost of the "insurance" (reduction of risk) provided by consciously avoiding the use of cloud services (and not getting all the cool gee-whiz benefits of those services) worth the mitigation of the risk of an eventual unknown impact of unknown magnitude (from the exposure of your data in the cloud)?

Re:FTA - Nefarious or just stupidity.

[guruevi]

Well, I think it's entirely possible to have the 'ecosystem' be in a private server environment, plenty of people pay for it (usually large enterprises) but for the average consumer it's both too costly and too complex to maintain. Then you'd have a handful of servers all over that are 'vulnerable' to some mass attack.

So why did the FBI have to crack the iPhone?

[tekrat]

Remember when the FBI was laying heavily on Apple to crack open the iPhone of that Terrorist dude that shot up the work-party in California? Apple refused, and this was a story for weeks in the news. John McAfee claimed his guys could crack it in 14 hours or something?

Anyway, if Apple retains all this data, why was cracking the iPhone such a big deal? Is half the news (or maybe more) all made-up bullshit just to entertain me?

Maybe Trump isn't really president and the news is just telling me that to keep me watching. I can't trust anything anymore. Never mind being in the Matrix, it's freaking reality that doesn't seem real.

Re:So why did the FBI have to crack the iPhone?

[Kohath]

Because they reset the password

Re:So why did the FBI have to crack the iPhone?

[the_skywise]

Well as I'm sure you've RTFA
A> They had to have the iCloud connection turned on to sync and backup to get the last 4 months of the call records.
B> Even if they did it only collected call records made to and from the phone (this was pre-iOS10 so Skype calls weren't tracked) not contacts or text messages or emails or voicemails.

Re:So why did the FBI have to crack the iPhone?

[Oswald+McWeany]

Apple respects your privacy when it is in the public eye and thinks it can get credit for doing so. Behind the scenes- screw privacy!

This isn't a dig at apple. They all do this. Pay lip service to protecting your privacy whilst they sell your wiener size to Trojan for market research.

Re:So why did the FBI have to crack the iPhone?

[AHuxley]

Better to be seen has having a huge political and legal issue.
Trust and faith in privacy is restored and the public goes back to fully trusting the brand and the networks.
Who would buy a US product if it comes with extra mandated hardware by big gov with logs ready for open court?
Junk trap door and back door crypto in every device as designed? The risk is the wider pubic stops talking online.
So a big public show was put on and everyone feels so safe to talk, txt on their big brand devices again.

The absolute power of proprietary software

[ptaff]

Once again, a proprietary software company is caught red-handed violating users' privacy. Sigh.

Why are we still trusting those companies who engage in software abuse, mistreating our digital lives? What will it take before mass resignation of such companies' employees because they're fed up from being part of immoral spying schemes?

Oh, and don't give me that food on the table bogus argument; Red Hat makes hundreds of millions profit a year with free software, and most web developers who mix and match free software make more than a decent pay. There's ways to make a living in computing without sacrificing human dignity.

E.T. phone home

[davidwr]

but turn off i-Magellanic-Cloud first.

VoIP companies keep logs forever

[mi]

I recently discovered, that my VoIP-provider had the history of my calls from ever since I opened the account 7 years ago. It is conveniently searchable and downloadable in several spreadsheet-formats.

I suppose, when I get to writing down my memoirs, it will come very handy, but it is a little irksome in the mean time. I doubt, I can turn it off or somehow request the records to be removed — I would be the first to object to any legislation forcing people to forget anything.

Re:VoIP companies keep logs forever

[The-Ixian]

Not only that, but their monitoring utilities are likely recording all of your conversations too (assembled rtp from pcap). This is helpful to the VoIP provider to troublehshoot jitter and latency. Of course, they *probably* delete these captures after a short period of time because storage would quickly kill them.

But for a while, anyone with access to the utils can listen to your past conversations.

Re:Tim Cook is in your bedroom

[cayenne8]

So, I guess the answer to this is....DO NOT enable iCloud.

I don't use it....I never thought it was a good idea to have any of my phone info on Apple servers.

I back my phone up when I physically connect it to my home computer.

And Apple blocks 911 calls if you refuse to update

[Joe+Branya]

I have an IPhone 4S using wifi and a Consumer Cellular account. Last summer in France I encountered an Apple software problem that locked my phone. The Apple store in Paris fixed it but I turned off automatic updates to stop the problem from repeating while I'm in the lovely French countryside. Apple ignore my "Don't update" instructions; they downloaded the update anyway and installed nagware that "reminds me" every evening that updates are off and I should install the new OS update..

The end result is that Apple Inc. via the nagware blocks me from making a 911 calls for critical seconds in an emergency. Let's say I'm in bed and hear the burglar in the living room. There is an "emergency" icon on the main screen but I'm used to entering my four-digit pass code so I groggily punch it in and go to the "phone" icon to make a 911 call.

But the Apple nagware is linked to the phone button. Suddenly nagware fills my full screen and offers to install the new operating system I've explicitly rejected. It gives me three choices in 3/8" tall letters- "Install now"; "Install later"; "Details" (which is an add). I'm blocked by Apple Inc. from using the phone until I lie and click on "install later". As soon as I click on it a SECOND Apple nag-add pops up and asked if I'm really, really, really sure I don't want them to install the software later tonight. I'm still locked out of making the 911 call until I click the "leave me alone you bastards" icon. FINALLY I can call 911- after fumbling with my phone for 10-15 precious seconds and having to read the fine print in the dark (I'm 72- Where in hell are my glasses?)..

Now am I missing something; I thought blocking 911 calls was a crime? How do I fix this and delete the nagware and the copy of the update? And of course I will NEVER update the OS to fix the nagware problem unless the update is something I can have looked at (uncompiled code) to make sure it does one thing only- delete the nagware.

Re:Secret Backdoor in Some Phones Sent Data To US

[110010001000]

There is a difference between the user enabling iCloud sync and a phone sending random information to some server in China without any user knowledge. You should know that iCloud sends your call history. How else do you think your call history appears on all your iOS devices? Magic?

Same old, nothing new here...

[cjjjer]

<PRODUCT> Secretly Sends <SOMETHING> To <ORGANIZATION>, Security Firm Says.

This isn't really news anymore and I doubt that it surprises anyone, so why is this news again?

Re:Tim Cook is in your bedroom

[pnutjam]

If you were using Android, you could rsync everything.

Apple Surveillance

[JustAnotherOldGuy]

Apple iSurveillance(tm)- "It Just Works!"

Android too

[trevc]

From the article Apple isn’t the only company syncing call logs to the cloud. Android phones do it as well, and Windows 10 mobile devices also sync call logs by default with other Windows 10 devices that use the same Microsoft account. Katalov said there are too many Android smartphone versions to test, but his company’s research indicates that call log syncing occurs only with Android 6.x and newer versions.

Aww

[barcarolle]

It...it's because Steve misses us all. Right?

Re:Inconsistent Story

[stoborrobots]

Umm, I don't happen to own any idevices, but is it possible there's a difference between enabling "iCloud" and "iCloud backup"?

Apple working with phone service provider

[drnb]

I'm sorry but the people selling you phone service keeping logs of your phone calls is one thing, the people that just made the phone have no business at all logging that data for any reason. But I guess it's ok though because apple did it and apple can do no wrong.

With iCloud enabled calls to your iPhone are also routed to iPads or Macs so you can answer via FaceTime. Apple is "integrating" with your phone service provider.

Re:Apple working with phone service provider

[SeaFox]

With iCloud enabled calls to your iPhone are also routed to iPads or Macs so you can answer via FaceTime. Apple is "integrating" with your phone service provider.

What's your point? Once the call is over with it can't be routed to your Mac or iPad, so there's no reason to keep a log of a call once it is completed.

Re:Apple working with phone service provider

[drnb]

With iCloud enabled calls to your iPhone are also routed to iPads or Macs so you can answer via FaceTime. Apple is "integrating" with your phone service provider.

What's your point? Once the call is over with it can't be routed to your Mac or iPad, so there's no reason to keep a log of a call once it is completed.

"Move seamlessly between your devices with Handoff, Universal Clipboard, iPhone Cellular Calls, SMS/MMS messaging, Instant Hotspot, and Auto Unlock."
https://support.apple.com/en-u...

Plus as the AC mentioned there is also calling someone back using the Mac or iPad at a later date.

Re:And Apple blocks 911 calls if you refuse to upd

[SuiteSisterMary]

So, you're fully aware that there's an 'emergency call' option which bypasses everything, but you choose not to use it.

Instead, you choose to continue to use a phone that you *know* has a nag screen, that you *know* you can bypass, and that you *choose not to.*

And this is somebody else's fault.

Almost all the same data appears in my phone bill

[larrym3]

The idea that Apple is doing something unique here is ridiculous. My call history arrives in the mail to me each month. That record is probably kept indefinitely and is easily available by subpoena.

The Cloud

[DaMattster]

This is why I don't use the cloud for anything! I have my own email, web, and sftp server. I set up my own personal private cloud via ownCloud and all this gets hosted on a small, low-power server in my house. My information is relatively secure and I don't have to worry about anyone else monetizing it or providing it to a government authority.

Re:The Cloud

[AHuxley]

Every type file sent up to a cloud provider gets scanned for AV and other reasons. Hope that one big encrypted file stays safe with the pw in the same OS that created it?

Re:So can the FBI force apple to turn that over ne

[AHuxley]

NSA Can Access More Phone Data Than Ever (Oct 20, 2016)
http://abcnews.go.com/US/nsa-p...
"... the percentage of available records has shot up from 30 percent to virtually 100. Rather than one internal, incomplete database, the NSA can now query any of several complete ones."
The US gov is getting it all. They just hope the wider public does not notice and keeps on trusting their fav US brands.

Re:Tim Cook is in your bedroom

[well_in_theory]

I have a jailbroken 6s and I rsync daily (cron job) to backup.

Re:nobody Approves!

[Plumpaquatsch]

Same goes for you google.

But we didn't see a russian security firm level the same accusation at Google.

Reading comprehension fail. I said that Google needs to do it, I was not accusing Google of currently doing it.

If they don't, why do they say so in their Privacy Policy

When you use our services or view content provided by Google, we automatically collect and store certain information in server logs. This includes:
- telephony log information like your phone number, calling-party number, forwarding numbers, time and date of calls, duration of calls, SMS routing information and types of calls.

Reason why Russian security firms can't see that (*) is because it isn't stored accessible by you on your own Google account.
(*) Or can't tell you they can, because that would require hacking Google's server.