Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
×
Bug Security Apple

Apple Was Notified About Major FaceTime Eavesdropping Bug Over a Week Ago (macrumors.com) 54

An anonymous reader writes: Twitter user MGT7500 tagged the official Apple Support account in a January 20 tweet claiming that her 14-year-old son discovered a "major security flaw" that allowed him to "listen in to your iPhone/iPad without your approval." The user also tagged Tim Cook on the issue in a follow-up tweet on January 21."

Once the bug started making headlines on Monday, the Twitter user then shared additional tweets claiming that they had also emailed Apple's product security team over a week ago. A screenshot of the email was shared, and it appears the team did respond, but what they said is not visible in the screenshot. [...] All in all, there is evidence that Apple Support was tagged about an eavesdropping bug eight days before it made headlines, and if the rest of the tweets are truthful, the company was also alerted about the bug via several other avenues.
The original story has been updated to include another example of a user -- John Meyer -- who has shared a video about the FaceTime bug that he says was recorded and sent to Apple on January 23.
This discussion has been archived. No new comments can be posted.

Apple Was Notified About Major FaceTime Eavesdropping Bug Over a Week Ago

Comments Filter:
  • by Anonymous Coward

    Take a pick:

    1) No
    2) your security is important to us, here is a link to our FAQ
    3) You're wrong, Apple does not have bugs.

  • Tagging? lol (Score:2, Insightful)

    by Spy Handler ( 822350 )

    Does Tim Cook actually monitor Twitter and look for posts with a #TIMCOOK tag and then read them?

    Since anyone with an ounce of brain will realize the answer is a big fat NO, shouldn't it also be obvious that tagging a Twitter post with someone's name is completely worthless, and that if you wanna report a fucking bug, you should go to that company's bug reporting website and do it there? Apple has one, it took me all of 2 seconds to Google for it: https://bugreport.apple.com/ [apple.com]

    Actually it should be obvious t

    • Re:Tagging? lol (Score:4, Informative)

      by darkain ( 749283 ) on Tuesday January 29, 2019 @04:03PM (#58042020) Homepage

      At least RTFS....

      "they had also emailed Apple's product security team over a week ago."

    • by Anonymous Coward

      They tagged the cook account, the support twitter and emailed the security team.

      What more did you expect them to do? Provide blow jobs?

    • Wouldn't that be @timcook?

      I'd be wiling to bet that Apple monitors a number of hash tags related to it's business on Twitter. So you may not get Tim Cook's direct attention, but somebody at Apple is likely scanning for such tags, even if it's just Siri's mainframe based cousin who pays any attention.

    • by cyn1c77 ( 928549 )

      Does Tim Cook actually monitor Twitter and look for posts with a #TIMCOOK tag and then read them?

      Since anyone with an ounce of brain will realize the answer is a big fat NO, shouldn't it also be obvious that tagging a Twitter post with someone's name is completely worthless, and that if you wanna report a fucking bug, you should go to that company's bug reporting website and do it there? Apple has one, it took me all of 2 seconds to Google for it: https://bugreport.apple.com/ [apple.com]

      Actually it should be obvious to people by now that Twitter itself is completely worthless. Just let it die, please?

      Well, maybe he should. It might be good for him to get his head out of his ass, I mean reality distortion field, and see what is actually going on with his products.

      Especially since both the official Apple Support account and product security teams take longer than a week to respond... which basically is non-responsive on a bug of this magnitude.

    • Does Tim Cook actually monitor Twitter and look for posts with a #TIMCOOK tag and then read them?

      No, but if his staff doesn't, Apple is failing at social media. What year is it?

  • by kiviQr ( 3443687 ) on Tuesday January 29, 2019 @03:54PM (#58041958)
    ...you need to cover mic and camera with thumb and index finger!
  • It's obvious that radio silence is the sole MO for large corporate entities, especially the popular / well-known ones. Saying nothing is not the same as denying, and won't be until government bodies start prosecuting it that way.

    And sure, Twitter is mostly worthless, but at least they don't make a living and pay high dividends to the 1%'ers by selling way over-priced offshore-made proprietary whatchamacallits.

  • Even reporting to the security team as it was, would probably take a day or so to verify, and then someone can be assigned to fix...

    But let's be realistic, a fix for this is not something that would just take overnight - or not something you would want them to rush. I mean, do you want it fixed right or do you want some new bug introduced?

  • ...Apple was holding their phone wrong when the email came in.

  • Already patched (just spoke to Apple's people - DIRECTLY - & the ones doing the patchwork whom I know (my nephew practically "runs the show" in that very dept. for them for 6++ yrs. now so I get a 'direct line'...)).

    Currently - He's on their "tiger teams" now though but is aware it is patched (not many of you will KNOW what a 'tiger team' is but you have to be REALLY GOOD to be on one). I'm proud of his achievements in fact, especially THAT one.

    * Soooo, "Move along folks - nothing to see here" & I n

  • No tech company can truly know, for sure, that their product is secure. Shouting this from the rooftops (in this case, pretty much literally) was only ever going to end one way.

    https://www.independent.co.uk/... [independent.co.uk]

    Pride comes before a fall and all that!

Top Ten Things Overheard At The ANSI C Draft Committee Meetings: (10) Sorry, but that's too useful.

Working...