Apple Fixes Bug That Let VoiceOver Shout Your Passwords

Apple just fixed a duo of security bugs in iOS 18.0.1 and iPadOS 18.0.1, one of which might cause users' saved passwords to be read aloud. It's hardly an ideal situation for the visually impaired. From a report: For those who rely on the accessibility features baked into their iGadgets, namely Apple's VoiceOver screen reader, now is a good time to apply the latest update. In typical Apple fashion, the company hasn't released much in the way of details about the first security issue, tracked as CVE-2024-44204, which makes it tougher to understand the conditions under which this vulnerability could be triggered, or how to avoid it until the update is applied. What we do know is that it was characterized as a logic issue, which Apple rectified by improving validation. The disclosure of the bug comes less than a month after iOS 18 and iPadOS 18 debuted. Ironically, this release included Apple's first native password manager, the Passwords app.

Quicker fix...

[VeryFluffyBunny]

Change your passwords to series of expletives & other banned words so that Apple's bots refuse to read them out loud.

Re:Quicker fix...

[93 Escort Wagon]

Just combine various words considered bad by both the political left and political right... then any listener will only hear half your password!

Re:

[sodul]

That's similar to what I did for my mom so she stops sharing the password with random people.

Re:

[VeryFluffyBunny]

=D

Re:

[Daina.0]

No need to change passwords! They're already safe--years ago a very large company's head system admin told me that he got to see the passwords people created in the company. He told me that you'd be surprised how much profanity is in passwords.

Re:

[VeryFluffyBunny]

Don't be complacent! Dipping into this magnificent tome for password ideas will bring about even greater security in the age of inappropriately shouty smart speakers: https://en.wikipedia.org/wiki/... [wikipedia.org]

Shouting, really?

[know-nothing cunt]

I'm blind not deaf ya twat!

Some obvious problems

[gnasher719]

Obviously having a note "my password is xyzabc123" in a word document with a screen reader will read your password. Not sure how you get around that.

Test fields can be marked as "password" so they are only displayed as bullets, and you'd hope they get read as "password" (exactly those letters, not your password).

But without that feature, I can't figure out anything better than just checking every single word you type if it is a password. Maybe the CPU usage is acceptable if you are disabled and need a

Re: Some obvious problems

[drinkypoo]

The reader was reading passwords out of Apple's password manager aloud.

Re:

[UnknowingFool]

Thankfully it did not let everyone know I need to change my luggage combination.

Yellow Journalism Much?

[NoMoreACs]

Shout your Passwords???

How about the correct word: "Speak"?

Fucking Haters.

Re: Yellow Journalism Much?

[drinkypoo]

How about apple not reading the passwords from the password manager they created aloud? Simp.

Re:

[NoMoreACs]

How about apple not reading the passwords from the password manager they created aloud? Simp.

Howabout a Reply to my actual Post?

Re:

[drinkypoo]

Howabout a Reply to my actual Post?

My comment was a reply to the "fucking haters" part of your post where you suck Apple's dick for free. Unless you got paid for that, in which case you should really disclose that you suck dick for money.

LOL

[Goodsuburbanite]

LOL. That's awesome. Not for those affected, but what a great easter egg!

Shout my password?

[PPH]

I was wondering why my dog kept running in.

who cares?

[acroyear]

Fix the networking bug in MacOS 15 that breaks all of our VPN systems. I can't upgrade (and get your fancy-schmancy AI tools for photos) until that's fixed.