An Arizona teenager discovered Apple's FaceTime bug while playing 'Fortnite' last week, but he and his mother couldn't convince Apple that it was a big deal
- An Arizona teenager and his mother tried convincing Apple to fix its FaceTime bug for more than a week but to no avail, according to a Wall Street Journal report on Tuesday.
- The 14-year-old apparently discovered the vulnerability on Sunday, January 20 while setting up a "Fortnite" gaming session with his friends.
- The bug allows FaceTime users in a group chat to secretly hear what someone is saying before the person answers their call.
- After posting to social media, calling, and faxing the company, the Arizona woman finally spoke to an Apple support representative last Tuesday.
- A description of the issue and a YouTube video replicating the bug were sent to Apple's Security Team last Friday, but the FaceTime group chat feature was not disabled until this Monday when word spread more widely across social media.
Michele Thompson told The Journal that her 14-year-old son Grant discovered the vulnerability on Sunday, January 20 while setting up a "Fortnite" gaming session with his friends. The bug allows FaceTime users in a group chat to secretly hear what someone is saying before the person answers their call.
That day, Thompson went to Twitter and Facebook to alert the company and warn others about the bug.
According to the report, Thompson also sent faxes and made phone calls to Apple directly.
Two days later, Thompson sent faxes and made phone calls to Apple directly, according to the report. That yieled a call from an Apple support representative who told her the best avenue to raise her concerns would be to file a formal bug report with the company. To do so, Thompson registered as a developer and submitted the problem to Apple's Bug Reporter program, according to the Journal.
Apple's Security Team first responded to Thompson on Wednesday, and by Friday, she had provided the team with evidence of the issue, which according to the Journal included a description and a YouTube video of her son replicating the bug.
However, the group chat feature on FaceTime remained live over the weekend and was not disabled until this Monday, when word of the privacy vulnerability spread widely across social media.
On Monday, Business Insider asked Apple why the concerns were not addressed earlier, though it declined to provide further information beyond a statement it issued, in which the company said it had "identified a fix that will be released in a software update later this week."
Apple has often touted itself as the leader in privacy among Silicon Valley giants, taking thinly disguised digs at rivals like Facebook and most recently, paying for a marque billboard at the CES conference in Las Vegas to spread its privacy-first message.
Ironically, the FaceTime bug went viral on Data Privacy Day, during which CEO Tim Cook called for "action and reform" for privacy issues.
Thomson told the Journal that she hoped her son might receive some form of reward, in line with Apple's "bug bounty" program, and an earlier Facebook post by Thomson seeking to alert Apple to the bug noted that her son would like a new iPhoneX, a MacBook and a pair of AirPods for his trouble.
Whether Apple grants his wish remains to be seen.
Got a tip? Contact this reporter via Signal at +1 (209) 730-3387, email at email@example.com, or Twitter DM at @nickbastone.
My teen found a major security flaw in Apple's new iOS. He can listen in to your iPhone/iPad without your approval. I have video. Submitted bug report to @AppleSupport...waiting to hear back to provide details. Scary stuff! #apple #bugreport @foxnews- MGT7 (@MGT7500) January 21, 2019
- Mayhem Studios announces a new battle royale game with locations, gangs and other elements depicting India
- Technique used to track ants’ movement might soon help scientists in measuring snow depth from space
- Three senior Twitter employees quit amid ongoing Musk-Agrawal internet war
- Indian CEOs could get the best salary hike in 5 years; and they already make ₹7 crore/yr on an average
- Vedantu follows Unacademy’s footsteps — fires over 600 people in May