| Developers: | Apple |
| Branches: | Internet services |
Content |
Main article: Messengers (Instant Messenger, IM)
2020: The vulnerability connected with a binding to the phone number
New York The class action against the companies Apple and T-Mobile for vulnerability in iMessage was submitted to district court of the Southern federal district and FaceTime. It became known on July 7, 2020. The problem was that long time Apple services became attached to numbers mobile phones therefore at reuse data of the subscriber number were available to strangers.
According to the statement of claim, vulnerability was detected in iMessage in 2011. Then information that stolen iPhones received messages in iMessage addressed to these owners began to appear. The problem remained, despite all measures undertaken by owners – change of number of an account and Apple ID and remote cleaning of iPhone of contents using tools of security iCloud.
According to claimants, the problem was in how Apple processed identifiers of devices – the protocol providing delivery of messages in iMessage to the necessary users.
 | Speaking specifically when the user of iPhone ceased to use the SIM card, and the telecom operator like T-Mobile reused the phone number connected with this SIM card, the previous owner connected with this number SIM cards still received in iMessage and FaceTime on the iPhone the messages intending to the new owner of this number, said in the statement of claim. |  |
How widespread was a problem, it is unknown. The version of IOS 12 released in 2018 eliminated vulnerability as began to request two-factor authentication for certain services iCloud.
Claimants demand compensation of legal costs and the damage caused as a result of the misleading actions from Apple and T-Mobile, false advertizing, intended false representation and unfair enrichment[1]
2016: Data storage of users of iMessage
Apple positions the iMessage messenger as a confidential method of communication with friends and colleagues, however the application is not so private as users believe. The company not only stores information with whom and when users communicate, but also can transfer these data on a request of police.
According to the document which was in the fall of 2016 at disposal of the edition The Intercept, Apple writes the phone numbers entered by the owner iPhone, time and date and also the IP address which can be used for position fix of the user. Every time when the user enters the phone number, the application sends a request for the server of Apple with the purpose to check whether the message recipient has an account in service. At this moment the company has an opportunity to see whom the user tries to contact, regardless of that, the receiver has an account or not. Moreover, Apple can provide this information to law enforcement agencies on the basis of the corresponding order [2].
"In the presence of the order we provide to law enforcement agencies the information required if it is available at our disposal. As in iMessage end-to-end enciphering is implemented, we have no access to contents of messages. In certain cases we can provide data of magazines of the server which are generated when the user starts certain applications on the device", - commented in Apple.
You watch also (messengers)
- Omni channel
- Messengers (Instant Messenger, IM)
- Chat-bot
- Virtual assistants (world market)
- Mobile applications
- Mobile applications (market of Russia)
- Mobile applications (world market)
- Mobile Device Management (MDM)
- Veon (messenger)
- Messenger of the MyOffice Logos
- RT-Inform: The messenger for government employees
- Rostec: Messenger
- Scale: IVA AVES-S Secure system for remote conferences
- dialog enterprise
- Crimeatechnologies: Dialog M
- Staply Corporate messenger
- Sibrus, the protected messenger
- Answer Messenger
- 4talk Enterprise (4talk Messenger)
- SyncCloud (system)
- KliChat
- OMMG TrueConf: Flodium
- Rostelecom: To Alla available roaming
- VideoMost IM
- Mango Talker
- Polyphone App
- DemoChat
- Blinger
- Beesender
- CommFort the Client-server application for communication
- Slack Technologies
- Stride (corporate messenger)
- Telegram
- Mail.Ru Agent, TamTam
- Avirton
- Avaya Ava
- Skype for Business (before Microsoft Lync), Skype (VoIP-service)
- Threema the Protected messenger
- Cisco Jabber
- WhatsApp Messenger and WhatsApp Business
- Viber - Viber Out Service of instant exchange of the message
- Facebook Messenger
- Facebook Workplace (ранее Facebook at Work)
- Line Corporation
- Lotus SameTime Unified Communications
- Instagram - Instagram (app)
- Snapchat
- VKontakte
- Apple iMessage
- Android Messages
- Flock
- Google Allo
- Microsoft Teams
- Yahoo! Messenger
- BlackBerry Messenger (BBM)
- QIP
- ICQ
- Miranda
- Genesys Chat
- Resilient Anonymous Communication for Everyone (RACE)
The systems of instant messages with users of the website
- LiveTex - LiveTex Omnichannel
- RedHelper - RedHelper (livechat)
- OMNIchat server
- WhatsHelp
- WaveAccess: Govori.org Online communicator
Local
Notes
- ↑ Apple Services became attached to phone numbers that led to date leaks.
- ↑ [Apple traces with whom users of iMessage http://www.securitylab.ru/news/483974.php communicate]
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |