Apple Disables Group FaceTime Following Reports of a Security Flaw that Allowed Eavesdropping

Apple Disables Group FaceTime Following Reports of a Security Flaw that Allowed Eavesdropping

A glitch in Apple's FaceTime app let users hear—and see—the other person even if the recipient never accepted the call.

Tech giant Apple has disabled the group chat function in their FaceTime app after security researchers found that the recipient of a call could be heard, sometimes even seen, without ever having answered the FaceTime call. The security flaw was widely reported on Monday leaving the company with no other option than disabling the feature until a fix could be found and rolled out.

The flaw is unusual for the iPhone maker as it prides itself on its strong privacy safeguards and comes at the height of scrutiny on technology companies that are often accused of violating users' privacy.

The security glitch was first reported by 9to5Mac, which wrong that the bug, "which was spreading virally over social media," lets you "immediately hear the audio coming from their phone." The trade publication listed in full detail the steps one would need to take to reproduce the glitch, which involved starting a FaceTime video call with an iPhone contact and then immediately adding your own phone number to the call. 

This move would trick the phone into starting a group FaceTime call and activate the other person's audio. If the recipient hit the power or volume button, the phone would broadcast video as well, The Verge reported.

The bug only worked on devices that had upgraded to iOS 12.1, which introduced group video calling. In a statement provided to several media outlets, Apple said it is "aware of this issue and we have identified a fix that will be released in a software update later this week."

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • The Future is Happening Outside the Cloud

    For years, the cloud has captivated the physical security industry. And for good reason. Remote access, elastic scalability and simplified maintenance reshaped how we think about deploying and managing systems. But as the number of cameras grows and resolutions push from HD to 4K and beyond, the cloud’s limits are becoming unavoidable. Bandwidth bottlenecks. Latency lags. Rising storage costs. These are not abstract concerns. Read Now

  • The Impact of Convergence Between IT and Physical Security

    For years, the worlds of physical security and information technology (IT) remained separate. While they shared common goals and interests, they often worked in silos. Read Now

  • Unlocking Trustworthy AI: Building Transparency in Security Governance

    In situations where AI supports important security tasks like leading investigations and detecting threats and anomalies, transparency is essential. When an incident occurs, investigators must trace the logic behind each automated response to confirm its validity or spot errors. Demanding interpretable AI turns opaque “black boxes” into accountable partners that enhance, rather than compromise, organizational defense. Read Now

  • Seeking Innovative Solutions

    Denial, Anger, Bargaining, Depression and Acceptance. You may recognize these terms as the “5 Phases” of a grieving process, but they could easily describe the phases one goes through before adopting any new or emerging innovation or technology, especially in a highly risk-averse industry like security. However, the desire for convenience in all aspects of modern life is finally beginning to turn the tide from old school hardware as the go-to towards more user-friendly, yet still secure, door solutions. Read Now

  • Where AI Meets Human Judgment

    Artificial intelligence is everywhere these days. It is driving business growth, shaping consumer experiences, and showing up in places most of us never imagined just a few years ago. Read Now

New Products

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure.

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises.

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities