Apple Compensates Victim of iMessage Bug for Breach of Privacy

by

In December, an apparent bug appeared in Apple's iMessage service that allowed iMessages to be sent to a stolen iPhone. The messages can, apparently, continue to be sent and received from the stolen phone after a remote wipe and a SIM card deactivation. This is obviously an unintended action, and though Apple explains the solution to be "toggle iMessage on and off" in the Settings app, that is an impossible act to perform remotely on a stolen phone.

The Next Web today reports of the case of an anonymous Apple customer who had her iPhone stolen and the lengthy discussions she had with Apple afterwards.

imessage400
After her iPhone was stolen, Customer K had her SIM card deactivated. However, her friends told her that iMessages they sent continued to be delivered to the stolen iPhone because she hadn't invoked Find My iPhone's Remote Wipe feature. Apple's technical support personnel suggested a wide variety of solutions to prevent her messages from being sent to the other iPhone.

Suggestions to reset her Apple ID password, insert her SIM card into another iOS device, among others, made sense. One request, that she contact her friends and tell them to stop sending her iMessages, Customer K thought was completely unreasonable -- not to mention impractical.

Eventually, nearly 6 weeks after her phone was initially stolen, Apple did finally figure out a unique solution:

Apple was finally able to remotely push ‘code’ out to the stolen iPhone in order to make the problem stop. This was a result of an Apple Engineering Team weighing in on how to solve the issue.

After the problem was finally solved, the customer continued to push Apple on the issue of compensation and was directed to Apple's legal department. She informed Apple Legal that she was troubled by the length of time that it took to prevent the iMessages from going to the stolen phone and wanted compensation for the extensive breach of privacy.

Eventually, after a phone discussion with Apple legal, K was offered an iPod Touch as compensation for her trouble. Apple claimed it would give her a device with which to receive iMessages.

Apple has still not commented on the matter, but one theory is that the iMessage servers permanently link the UDID number of a particular handset to an Apple ID, so it knows what handset to deliver iMessages to. Messages continue to be sent to a stolen iPhone until iMessage is manually toggled on and off — a task that is impossible to perform on a stolen phone.

Top Rated Comments

BanterClaus Avatar
BanterClaus
137 months ago
This needs fixing. A simple option on iCloud.com to unlink devices from your iMessages is what should be done in my opinion.
Score: 28 Votes (Like | Disagree)
kolax Avatar
kolax
137 months ago
Should have compensated her with a new iPhone instead of iPod touch. Or if she had already bought a new one, refunded what she paid with an Apple Gift Card.

"Here's an iPod touch so you can receive iMessages again, but don't lose it! We don't want to go through all this again!"
Score: 27 Votes (Like | Disagree)
Andronicus Avatar
Andronicus
137 months ago
I would've told them an iPad 2 can get iMessages too!
Score: 21 Votes (Like | Disagree)
ABernardoJr Avatar
ABernardoJr
137 months ago
I'm sick and tired of all these crybabies blaming others for their mistakes. Customer K lost her phone...boo hoo. Deal with it. Call your friends. Tell them you lost your phone and that you aren't receiving their messages. Get a new phone. Don't always try to make someone else responsible for your mistakes. Apple didn't lose your phone...you did. Compensation from Apple? You must be joking.
The phone was clearly stated to have been "stolen" quite a few times in the article. Should she have told the thief not to steal her phone? :confused: I don't imagine that going over particularly well.
Score: 18 Votes (Like | Disagree)
ski1ski1 Avatar
ski1ski1
137 months ago
this story makes absolutely no sense to me..




if her sim card is deactivated, that means her phone number is no longer associated with the sim card. how are messages being sent to the device?
Because unlike regular txt messages, iMessage is linked to the UDID of your phone, not not sim card. This is how it works even via wifi. The phone number or iTunes email address is used as an ID to send/receive iMessages. But there is a major design flaw. Apple uses to the sim card to verify the phone number for iMessage. But it only verifies the sim card upon initial iMessage activation. If the sim card is removed, deactivated, or replaced with a different sim, the Apple servers will still send iMessages to the phone via wifi. Or cellular data, if it has another valid sim card. Even one with a different number. This is because the iMessage phone number is linked on Apple's servers to the UDID of the phone, not the sim. This link on Apple's servers will remain until iMessage is manually deactivated in the phone's settings. Which is impossible if you lose your phone, or already sold it. Apple has known about this design flaw for over two months. I don't understand why Apple still has not fixed this major privacy issue.
Score: 18 Votes (Like | Disagree)
Maltz Avatar
Maltz
137 months ago
It's a slippery slope though, what if I sold my iPhone on craigslist, then file that police report?

Filing a false police report is a good way to end up in jail. Doing what you describe is a good way to get caught filing a false police report. lol
Score: 15 Votes (Like | Disagree)
Read All Comments

Popular Stories

iPhone 14 Dummies 1 Feature

Everything Rumored for Apple's September Event: iPhone 14, Apple Watch Pro and More

Friday August 12, 2022 2:34 pm PDT by
There's just about a month to go until Apple holds its annual September event focusing on new iPhone and Apple Watch models. We thought we'd take a quick look at everything that's rumored for Apple's September event to give MacRumors readers a rundown on what to expect when the first fall event rolls around. iPhone 14 The iPhone 14 can probably be described more as an "iPhone 13S" because...
Read Full Article159 comments
airpods pro black background

AirPods Pro 2: Five New Features and Improvements to Expect

Sunday August 14, 2022 3:28 pm PDT by
Apple's second-generation AirPods Pro are finally nearing launch, with a release expected later this year. If you are considering upgrading to the new AirPods Pro once they are released, keep reading for a list of five new features to expect. In addition to all-new features, the second-generation AirPods Pro will likely adopt some features added to the standard AirPods last year. H2 Chip ...
Read Full Article115 comments
z fold 4 1

Hands-On With Samsung's Latest Foldable Smartphones, the Galaxy Z Fold and Z Flip

Friday August 12, 2022 12:46 pm PDT by
Samsung this week launched its fourth-generation foldable devices, the $1,000 Galaxy Z Flip and the $1,800 Galaxy Z Fold. Though there's no sign of a comparable Apple foldable device on the horizon, rumors suggest prototypes are in the works, so we thought we'd take a look at Samsung's newest smartphones to see what Apple needs to measure up to when a foldable iPhone does come out. Subscribe ...
Read Full Article335 comments
top stories 13aug2022

Top Stories: New Battery Percentage Icon in iOS 16, USB-C AirPods Rumor, and More

Saturday August 13, 2022 6:00 am PDT by
This week brought some shocking news for iOS 16 beta testers, with Apple bringing back the iPhone battery percentage to the status bar after a number of years. Other news and rumors this week included word that Apple has started recording portions of its media event planned for next month to introduce the iPhone 14 and Apple Watch Series 8, claims about iPhone 14 Pro pricing and Apple's...
Read Full Article36 comments
iCloud General Feature

Apple Remains Silent About Plans to Detect Known CSAM Stored in iCloud Photos

Saturday August 13, 2022 1:52 pm PDT by
It has now been over a year since Apple announced plans for three new child safety features, including a system to detect known Child Sexual Abuse Material (CSAM) images stored in iCloud Photos, an option to blur sexually explicit photos in the Messages app, and child exploitation resources for Siri. The latter two features are now available, but Apple remains silent about its plans for the CSAM...
Read Full Article267 comments
apple watch se

Apple Watch SE vs. Apple Watch Series 8: New Features to Expect If You've Waited to Upgrade

Monday August 15, 2022 2:44 am PDT by
The Apple Watch SE was announced in September 2020 and has been a popular Apple Watch model for customers looking for their first smartwatch or an affordable Apple Watch. Apple Watch SE customers may be wondering, however, what's in store for them with the upcoming Apple Watch Series 8 and what new features they can expect. Continue reading to find out. Apple Watch SE vs. Apple Watch Series ...
Read Full Article28 comments