Apparently lots of people once every freaking rumor site published step by step instructions on how to do it.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple Was Apparently Notified About Major FaceTime Eavesdropping Bug Over a Week Ago [Updated]
- Thread starter MacRumors
- Start date
- Sort by reaction score
Yeah, probably. Do you think they can possibly go through the thousands/millions of tweets they get every day and check the veracity of every single claim?
Yep, but I also think it shows how you can get burned hiding issues that you believe you can fix before they becomes public knowledge.
Apparently lots of people once every freaking rumor site published step by step instructions on how to do it.
Lol exactly. And when that finally happened, Apple realized they had to shut it down so they did.
Not acting on it is intentional. When reporting, it goes into apple system. It is their job to read those bug reports
Ok
Here is the bug report filed on the 25th of January
https://twitter.com/BEASTMODE/status/1090314332225843201
the letter attached to it can be read here
https://twitter.com/BEASTMODE/status/1090303269090529280
Apparently lots of people once every freaking rumor site published step by step instructions on how to do it.
I'm sure it is making these sites a lot of $ via lots of clicks. Can't really blame them, I guess... well... maybe you can. lol.
Tim says to join apple pr from our ft chat. Apprently he gave me that talking via horse emoji
You just aren’t using the word correctly.
Also, we don’t know that it was “reported.” Do you think EVERY tweet is entered as a legitimate bug and checked individually? And if so, do you think all those thousands of tweets are checked in a single day?
Gotta love all the arm chair critics. Unless you’ve been faced with a crisis like this, you wouldn’t know how difficult it is to make the “right” decision.
The article shows that Apple security responded to her. She conveniently obscures that response from Apple.
They were faced with a tough decision, either bring attention to it by disabling Group FaceTime and announcing a big fix, or try to rush an iOS update before the bug becomes public. You can’t fault them for trying to keep it under the radar.
Obviously the right thing to do would have been to disable group FT, but that’s a tough decision because then you make it public.
I’m sure most in that situation would try to rush a fix discretely without making it known. How many of you have tried to cover your tracks at work or in your personal life? I’d venture to guess 99% of you.
The article shows that Apple security responded to her. She conveniently obscures that response from Apple.
They were faced with a tough decision, either bring attention to it by disabling Group FaceTime and announcing a big fix, or try to rush an iOS update before the bug becomes public. You can’t fault them for trying to keep it under the radar.
Obviously the right thing to do would have been to disable group FT, but that’s a tough decision because then you make it public.
I’m sure most in that situation would try to rush a fix discretely without making it known. How many of you have tried to cover your tracks at work or in your personal life? I’d venture to guess 99% of you.
And it can take time to get to the report, direct it to the right team/person, have someone look into it and investigate it, etc. The underlying point is that there are quite plausible explanations there that don't contain any conspiracy or malice that without actual evidence to point to malice being behind it we can't just conclude that that's what it is and that's that.
Back in October Microsoft had a Windows 10 update bug that deleted files and folders from people’s computers. They had to halt updates while they fixed the bug. Apparently this bug was reported too. I don’t it this got 1/10th the attention this FaceTime bug is getting.
It says the lady who discovered and reported the bug was hoping to get a monetary compensation under the bug bounty program. Would not be surprised if Apple tried to weasel out of that bounty payment to her. Now that this has become headline news, I’m sure they’ll have to cough up the money to her. Sadly, Tim Cook’s Apple is all about PR that isn’t backed up with is really going on. Can’t wait until they replace him with someone else. I hope it will be Scott Forstall.
I think that the poster meant that Apple was intentionally not addressing the user security by not immediately shutting down the group FaceTime (i.e. they chose to leave group FaceTime enabled even though they knew it compromised user security).
You dont base how seriously you take security issues based on how popular the person reporting them is on social media.
Have you been living under a rock? That bug raised a HUGE *********, prompted a response from senior leadership, a reorg, and changes to the insider program.
Meanwhile, this bug allowed people to wiretap each other.
Have you just changed the subject now a bug report from the 25th January has been posted?
The letter was sent to Apple Product Security. We saw the email screenshot this woman posted to Twitter. But it didn’t include the response from Apple Product Security. That part of the email was cut off. Let’s see the response.
No, you kinda do. How can Apple possibly read and check every single tweet sent to them from every single Twitter user?
And for all we know, they did take it seriously and were urgently working on a fix.
I think that it's more likely that Apple was trying to keep this quiet while they found a fix.
Apple also might have been trying to keep it quiet until after the quarterly earnings were announced.
As I recall Apple doesn't have a bounty program that is open to everyone for essentially any issue.
Either way is nonsense. Apple has every reason to take it seriously and fix the issue immediately.