Author Topic: Horrifying privacy-smashing bug (Read 864 times)

Matthew · « **on:** January 29, 2019, 10:37:32 AM »

A newly discovered bug in Apple's FaceTime software lets Apple users listen in on the people they are calling, and even see through their front-facing camera, without them picking-up the call.
The bug, flagged by 9to5Mac on Monday, was quickly recreated by people across social media. CNN Business confirmed the bug multiple times in its own tests.
Apple said in a statement Monday night that it has identified a fix for the problem and will release it in a software update later this week. In the meantime, Apple's website indicates Group FaceTime is unavailable, and the company confirmed it has started disabling the Group FaceTime feature for all users.
The bug works on iPhones and iPads running iOS 12.1, and Apple PCs running macOS Mojave, which have the recently added Group FaceTime feature.

When the bug is activated, the person who initiated the call is able to hear the live audio on the other person's phone, even though the recipient has not accepted the call. And their screen gives no indication that their conversation is being transmitted. In some cases, the bug can also show live video of the other person if they press a volume button to dismiss the call.

CNN senior editor Brian Ries successfully used it on friends, family members and a colleague, and in one instance was even able to see video of the people he was calling.

To avoid falling victim to the bug, disable FaceTime on all your devices until Apple's software updates have been released.
On an iPhone or iPad, go to Settings -> FaceTime, and toggle off the green button at the top of the screen. To turn it off on a Mac, open the FaceTime app and go to FaceTime on top of the screen, then select "Turn FaceTime Off."

Matthew · « **Reply #1 on:** January 29, 2019, 10:39:56 AM »

It just goes to show you what is possible -- this bug just lets everyone be the NSA for a change :)

Think about it: Your phone has a microphone, a video camera (usually front AND rear), device storage, and wifi/3G Internet connectivity to do the transmitting.

We have to TRUST that the software (both applications as well as operating system) is doing everything it can to protect our privacy. But is it 100%?

Trust me, as a programmer I know it's very possible for various people to end up with your conversations, and/or video taken by your front/rear cameras. Imagine if your phone were in the bathroom with you! Or if private conversations (etc!) between you and your spouse were recorded.

Ladislaus · « **Reply #2 on:** January 29, 2019, 11:22:07 AM »

Who knows if this was actually a bug? Perhaps Apple did this deliberately so that individuals could be spied on by various organizations ... they just got caught.

ggreg · « **Reply #3 on:** January 29, 2019, 12:29:41 PM »

Privacy has been dead for a long time now.

Even if you dont tell them everything, corporations can predict (accurately guess) a lot of things about you from data and metadata.

You might as well share or permission and get some benefit from it. As this point it is a foregone conclusion as the benefits for big corporate and consumers are huge and are perceived to outweigh the risks.

If you want to keep something secret don't do it on, or insight of, a networked computer or networked mobile phone.

Author Topic: Horrifying privacy-smashing bug (Read 864 times)

Matthew

Horrifying privacy-smashing bug

Matthew

Re: Horrifying privacy-smashing bug

Ladislaus

Re: Horrifying privacy-smashing bug

ggreg

Re: Horrifying privacy-smashing bug