Latest iOS 12.1.4 Update Patches 2 Zero-Day and FaceTime Bugs

Posted on February 14th, 2019 by Responsible Cyber

Apple has finally released iOS 12.1.4 software update to patch the terrible Group FaceTime privacy bug that could have allowed an Apple user to call you via the FaceTime video chat service and hear or see you before you even pick up the call without your knowledge.The Facetime bug (CVE-2019-6223) was discovered by 14-year-old Grant […]

Read More

iPhone FaceTime Vulnerability – Schneier on Security

Posted on February 1st, 2019 by Responsible Cyber

iPhone FaceTime VulnerabilityThis is kind of a crazy iPhone vulnerability: it’s possible to call someone on FaceTime and listen on their microphone — and see from their camera — before they accept the call. This is definitely an embarrassment, and Apple was right to disable Group FaceTime until it’s fixed. But it’s hard to imagine […]

Read More

Apple disables Group FaceTime after eavesdropping bug discovered

Posted on January 30th, 2019 by Responsible Cyber

Apple disabled Group FaceTime after a major security bug was discovered yesterday — Data Privacy Day. The bug allowed for major spying; users making a FaceTime call could eavesdrop on the iPhone of the user called. All the FaceTime video caller needed to do was add his or her phone number to the call before […]

Read More

FaceTime Bug an AppSec Fail

Posted on January 30th, 2019 by Responsible Cyber

Apple has shut off Group FaceTime while it prepares a fix for a newly found security flaw found by a 14-year-old gamer. The glaring security flaw in FaceTime that has rocked the Apple community since it went viral late yesterday was actually was first found on January 19 by a 14-year-old who stumbled upon it while […]

Read More

Apple scrambles to fix FaceTime eavesdropping bug

Posted on January 30th, 2019 by Responsible Cyber

by Paul Ducklin Apple is scrambling to fix an embarrassingly dangerous “snooping” bug in its popular FaceTime app. In the meantime, Apple has apparently disabled the Group Facetime feature entirely, preferring to inflict a service outage than to leave the exploitable privacy hole gaping open. The bug was reported on well-known Mac news site 9to5Mac, […]

Read More