imessage
Latest
OS X update fixed 'simple' bug that could leak your iMessages
Researchers explained one large security hole in Apple's iMessage app that received a patch last month, but until now we didn't have details on another vulnerability fixed at the same time. By tricking users into clicking a specially-crafted link, hackers could gain access to the usually encrypted communications in OS X El Capitan's Messages. "You don't need a graduate degree in mathematics to exploit it, nor does it require advanced knowledge of memory management, shellcode or ROP chains," according to security researchers at Bishop Fox -- just knowledge of basic JavaScript.
Apple fixing iMessage flaw that lets hackers steal photos
Apple has put a lot of work into making its phones hard to crack, much to the consternation of US law enforcement officials. It's still not perfect, however, as researchers from John Hopkins University have discovered a flaw that lets attackers intercept and decrypt video and images sent on iMessage. The exploit only works on versions prior to iOS 9, because Apple partially fixed the problem in that version. However, John Hopkins professor Matthew D. Green told the Washington Post that a modified exploit could possibly be developed for iOS 9 versions, provided hackers have skills of a "nation state."
Global carriers adopt Google's SMS standard
Google is trying to move Android from the ancient SMS messaging system over to Rich Communication Services (RCS), and last year bought a company called Jibe Mobile to speed up the process. That appears to have paid off, as numerous global operators, including Sprint, Deutsche Telekom and Vodafone have agreed to adopt the standard. RCS has often been compared to iMessage,offering features like group chat, high-res photo sharing and read receipts. Carrier adoption means that users will get "a consistent and interoperable messaging experience between all Android devices and across all operators worldwide," according to the group.
Apple ordered to pay $625 million in FaceTime patent lawsuit
VirnetX has been a thorn in Apple's side (and a good chunk of the tech industry) for the better part of this decade. It first sued Apple in 2010 over the alleged use of virtual private network (VPN) patents in FaceTime video chats, and has been successful enough in court to wring hundreds of millions of dollars out of the folks in Cupertino. And today, it's striking again: a court has ordered Apple to pay $625 million dollars for purportedly using VirnetX's security tech in both FaceTime and iMessage. That's actually more than the $532 million VirnetX had wanted, and a huge windfall for a company that has little business outside of lawsuits (aka a patent troll).
Apple wins lawsuit claiming messages to Android were blocked
You certainly have reason to be upset at how Apple handled iMessages for users switching away from iOS, but it's clear that not everyone has raised those gripes the right way. Judge Lucy Koh (from the Apple-versus-Samsung case) has dismissed a lawsuit arguing that Apple effectively wiretapped iMessage chats to prevent them from reaching Android users. There's no mention of the reasons for dismissal in the court order. However, Apple had asked the judge to toss the case when it learned that two of the plaintiffs dumped their iPhones after the case began -- they'd eliminated important evidence.
Here's how ISIS tries to keep its online activity a secret (update: debunked)
It's no longer surprising that ISIS uses Telegram's secure messaging to conduct its terror campaigns, but what other tools does it use to keep its online actions under wraps? Thanks to researchers at the West Point military academy, we now have a good idea. They've obtained an ISIS operational security guide that shows the outfit's recommended internet services and software, as well as the policies they're supposed to follow. The extremists are advised to use Tor's anonymity network for browsing, Tails as their operating system and messaging services like Telegram, FireChat or iMessage. They're asked to rely on secure phones like the BlackPhone if they can. They're supposed to avoid both anything that gives away their location (for obvious reasons) as well as Dropbox, whose company-managed encryption theoretically lets governments demand access to cloud storage.
Apple is refusing Justice Department requests for iMessages
You likely know that Apple's iMessage is encrypted well enough that law enforcement can't snoop on your messages, but it's now very clear that this security is setting up a conflict with the US government. The New York Times understands that Apple refused at least one Department of Justice request for iMessage chats between suspects using iPhones. There's no way to comply, according to the response. Reportedly, the case ruffled enough feathers that officials at the FBI and Justice Department were pushing for legal action against Apple. That never materialized, but there's no doubt that the Cupertino crew is on notice.
Apple won't face class action lawsuit over iMessage problems
If you were hoping to get a payout from Apple after an iMessage flaw prevented you from seeing some text messages on your Android phone... well, you'll probably be disappointed. Judge Lucy Koh (she of the Apple-versus-Samsung trials) has ruled that a lawsuit over iMessage's problems won't reach class action status. According to Koh, it's not clear that everyone who would have been included (basically, any American who switched away from an iPhone) was affected. Even if the plaintiff could prove that Apple's messaging tech has "systematic" problems, the judge says, that wouldn't prove that people missed out on important conversations.
Apple is fixing a bug that crashes your iPhone with a text message
Beware if you have any jokester friends with iOS devices -- they might just have a way to ruin your day if you have any iOS gadgets of your own. Apple has confirmed that it's fixing a recently discovered bug that crashes iPhones and other iOS 8 hardware the moment you get a carefully crafted set of Unicode characters in Messages and other communication apps with notification previews. It's not clear when that fix will be available, but the only existing safeguard is to turn off those previews. Otherwise, you may have to bend over backwards to make sure that those rogue messages don't cause further chaos. While this isn't the biggest iOS glitch we've seen lately, it's definitely the most annoying.
Apple made it harder for hackers to breach FaceTime and iMessage
As a means to further secure your digital life, Apple said today that it's adding two-step verification to FaceTime and iMessage. That still leaves the likes of iTunes and the Apple website vulnerable to ne'er-do-wells who want to remotely access your sensitive info (and have your password), of course, but now Cupertino's universal messaging and video chat programs are locked down a bit further. Given the progress that's been made toward adding the second authorization step to the rest of its ecosystem in recent months, it likely won't be too long before those spots are buttoned up too. Any questions? The Apple two-step verification FAQ is only a click away.
BlackBerry CEO demands Apple make iMessage cross-platform
BlackBerry is doing its best to mount a comeback in the face of overwhelming competition from iOS and Android devices. The BlackBerry Classic is a step in the right direction, but the fact remains that app support is a huge problem, and porting apps to BlackBerry's platform just isn't a high priority for, well, basically anyone. But rather than letting the market dictate what devices are the most important to support, BlackBerry CEO John Chen is hoping regulators will step in and force companies like Apple to make its exclusive apps available on all platforms. No, I'm not kidding -- Chen wants Apple to make iMessage a standalone app on non-Apple platforms, including BlackBerry. Chen even goes so far as to say companies like Apple and Netflix are "discriminating against BlackBerry customers" by failing to make their services available universally across all platforms. Of course, Chen is in a great position to make such accusations thanks to the fact that BlackBerry brought its once-exclusive BBM messaging service to iOS and Android in 2013. That said, it's hard to imagine BBM would have ventured across the aisle if BlackBerry wasn't horrifically desperate for the tech crowd to consider BlackBerry a legitimate option whatsoever, so take Chen's perceived openness with a massive boulder of salt.
Apple's two-factor authentication still leaves some of your data exposed
Apple took a big step forward when it expanded the scope of its two-step authentication last year, since it's now relatively hard to peek at someone's sensitive content unless you also have their device. However, this extra security measure still isn't the all-encompassing safety net you might expect it to be. Need proof? Just ask Dani Grant: she recently gave a friendly reminder that two-factor doesn't even enter the picture with a number of Apple's services. You only need an Apple ID's email address and password to get into FaceTime, iMessage, iTunes and the company's website. You'll need verification if you change account details, sign in to iCloud or try to buy an app, but that basic login is enough to see people's contact information, view their app download history or impersonate them on iMessage. You don't always get email alerts (they typically appear when signing into FaceTime, iCloud or iMessage for the first time on a new device), so it's possible for someone to misuse your account without your knowledge.
Judge allows class action suit against Apple over disappearing iMessages to proceed
Judge Lucy Koh -- who you might remember from her time officiating Apple and Samsung's patent trials -- ruled on Tuesday that a class action lawsuit against Apple over missing text messages can proceed. The problem at issue arises when iPhone users abandon ship and hop on over to an Android phone or any other non-iOS device. In such a scenario, some users discovered that messages from other iPhone users weren't going through, even though the sender's would get a "Delivered" receipt in their Messages app. The underlying cause is that iMessages should have been forwarded to the new device but, instead, were being routed to what was ostensibly a still active iMessage account. While this scenario has been a longstanding problem for some, a few solutions -- such as disassociating one's number from its corresponding Apple ID and deactivating iMessage altogether -- helped alleviate the problem for many. It's worth noting that the ultimate key to prevention, according to Apple, is to deactivate iMessage before switching to a non-iOS device. Addressing the issue head-on, Apple yesterday released a web-based tool that enables users to deregister their number from Apple's iMessage database entirely. Nonetheless, a frustrated Android user who initially sued Apple over the matter in May of 2014 has now been given the green light to proceed with a planned class action. Reuters reports: Apple was ordered to face a U.S. federal lawsuit claiming it failed to tell consumers that its messaging system would block them from receiving text messages if they switched to Android-based smartphones from iPhones. U.S. District Judge Lucy Koh in San Jose, California said Apple must face plaintiff Adrienne Moore's claim that the message blocking interfered with her contract with Verizon Wireless for wireless service, which she kept after switching in April to a Samsung Galaxy S5 from an iPhone 4. By inhibiting the plaintiff's receipt of text messages after switching to a competing device, Apple stands accused of violating California's unfair competition laws. In a statement on the matter, Apple said: Apple takes customer satisfaction extremely seriously, but the law does not provide a remedy when, as here, technology simply does not function as plaintiff subjectively believes it should. For more details as to the legal nuts and bolts, TechCrunch yesterday posted Judge Koh's full ruling alongside Apple's failed motion which sought to dismiss the suit altogether.
Apple provides online tool to remove phone number from iMessage
Apple this weekend launched a new web-based utility that allows users to deregister their phone number from iMessage. This online tool is meant to address complaints from consumers who had problems receiving SMS messages after switching away from an iPhone. Apple reportedly was aware of the problem, which surfaced following the introduction of iMessage in 2011, and was unable to provide a fix. A frustrated Android owner eventually filed a class action lawsuit over the issue. The new web tool allows users to remove their phone number from Apple's iMessage service, allowing them to receive text messages when they switch away from the iOS platform. The tool is easy to use, requiring users to enter their existing phone number into the web page, which will send off a text message with a confirmation code. Once the user enters this code into the form, the phone number will be removed from Apple's messaging service.
Apple site lets you deactivate iMessage and solve your missing text problem
If you're still being plagued by missing text messages after leaving iOS for another platform, then the time has come to rejoice. Apple has quietly launched a tool that will let you deregister your phone number from iMessage and solve your texting problem once and for all. The root of this mess comes from Apple routing incoming messages from iPhone users through its iMessage system -- even after you've switched to a different phone. The result has been texts from iPhone users disappearing into the ether. If you forgot to disable iMessage before switching devices, often the only solution was to completely disconnect the device from your Apple account. Now all you have to do is plug your phone number into Apple's deregistration site, and punch in the verification code sent to you. Update: This post has been update to clarify that traditional SMS messages are not routed through the iMessage servers.
Just how secure are your messaging apps? The EFF knows.
Like it or not, your messages -- those funny, tragic, productive, intensely personal missives you fire off without a second thought -- aren't nearly as safe as we all thought. That's why the Electronic Frontier Foundation decided to do a bit of digging into how secure all those messaging apps we use actually are, and it threw its results into this handsome little scorecard. Unsurprisingly, few entrants (like the security-minded calling and texting apps from outfits like Whisper Systems and Silent Circle) scored full marks on the EFF's rubric. What's even less of a surprise is how many well-known services - services we probably all use everyday - don't fare particularly well by the EFF's standards.
Sound Off! Share your favorite messaging apps
There's definitely no shortage of messaging apps around. With services like Google Hangouts, Facebook Messages, iMessage, Path Talk, Snapchat, Whatsapp and countless others, it's a pretty overwhelming task to figure out the best way to contact your friends. How do you choose which app is the right one for keeping in touch and giving your thumbs a workout? Head over to the Engadget forums and share your favorite way to communicate.
BlackBerry jumps on reports of iMessage spam to tout the benefits of BBM
Given the recent spate of stories centering on iMessage being a haven for spammers, the official BlackBerry Blog seized the opportunity to pen a post detailing 5 reasons why BlackBerry's own BBM messaging service is impervious to the spam reportedly affecting iMessage users. 3) BBM Protected ups the security ante. Privacy is the main issue with iMessage and spam. BBM protects your privacy by only allowing users to send messages to approved contacts. Our secure enterprise messaging service, BBM Protected, takes it a step further by adding an advanced layer of encryption. This ensures your messages aren't vulnerable to spying or hacking while being transmitted. 4) BBM empowers you to protect yourself from unsolicited messages. On the rare chance that you get spam or an unwanted ad, you only need to block the person from your contact list and refuse further attempts to reach you in the future. Now there's no need to mock BlackBerry because, let's face it, it's not as if the company poses much of a threat anymore to Apple or any other current player in the mobile space. But still, it's remarkable how far the mighty have fallen. BBM used to be one of RIM's crown jewels, and now the company finds itself piggybacking on tenuous reports of iMessage spam in an effort to convince users to give it a spin. Now that's not to say that BBM is an utterly desolate ghost town. On the contrary, BlackBerry noted last September that the service handles 10 billion messages every day. That's ostensibly impressive until you realize that WhatsApp as of January, 2014 was handling 50 billion messages a day. BlackBerry's BBM app for iOS originally launched about 11 months ago, and though it features some compelling features and experienced an initial wave of popularity, there's no evidence to suggest that it can stem the growing number of users opting for iMessage and other messaging options, blog lists be damned.
Apple improves iOS OS X integration with iMessage, Hotspot, and sharing upgrades
It just got a lot harder to say you missed a phone call thanks to Apple. At the WWDC 2014 keynote, Craig Federighi announced a few major changes to the way iOS integrates with OS X. First off you can now use your iOS device remotely from your OS X device. This includes SMS messaging and phone calls. You will be able to see every incoming text, iMessage or not. Your phone calls can be sent to your iPhone and your Mac at the same time. If your phone is charging across the house, that doesn't matter, you'll still see the notification and be able to answer the call from your computer. If you see a phone number in Safari, you can initiate the call on your Mac and send it to your iPhone. You no longer have to use Skype to make phone calls from your computer. Mobile Hotspots are also being made easier. Your Mac can be set to auto-enable hotspot Internet connections to your iOS device. Finally, Macs are getting iOS-to-Mac handoff features that allow users to jump from working on a document on one device to another seamlessly. Say you're writing an email in iOS and you switch to your Mac. Now you'll be able to click on an icon within your Mac mail and continue writing right where you left off. Be sure to visit these other WWDC 2014 keynote posts: WWDC 2014 keynote liveblog Apple announces OS X 10.10 Yosemite Apple announces iCloud Drive Safari in OS X Yosemite gets new sharing and browsing options, saves even more battery life Apple announces iOS 8 HealthKit unveiled as major part of iOS 8 Siri's upcoming update means she's always listening HomeKit brings smart home services under one app What to know before downloading the iOS 8 beta Apple's awesome iOS Camera feature they didn't mention on stage WWDC '14 keynote in 90 seconds (video) Apple expands Touch ID functionality in iOS 8 Apple posts WWDC 2014 keynote online The Swift Programming Language manual available on iBookstore SwiftKey confirms iOS 8 version
OS X Yosemite will let you answer calls to your iPhone from your Mac
As part of OS X Yosemite's focus on creating a more seamless experience between your Mac and iOS devices, Apple's updating iMessage to keep conversations going. Now, it's not just instant messages from other Apple devices that show up on the desktop app, but also texts and multimedia that've been sent from other platforms (texts from your friends' Android devices, for example). Oh, and you can now make and take regular phone calls from your Mac when your iPhone is in range. As part of the new "Handoff" feature that means your computer and iDevice know exactly what the other is doing, a call to your phone will trigger a pop-up asking if you want to answer right from your computer. It works the other way around, as well, so you can make calls without touching your phone. And, what better way to show off the new feature than to call Dr. Dre live on stage? Show-offs.
