Malicious Link Texted to Mac and iOS Devices Can Cause Freezes and Resprings [Updated]

by

A link that exploits a bug in iOS and Mac devices was shared on Twitter this afternoon, and if you receive this link through the Messages app, your iPhone or iPad can freeze up or respring, and the Messages app can become unusable.

The link, which goes to a Github page, breaks the Messages app and causes problems on both iOS devices and Macs. Simply receiving the link results in issues, likely due to the Messages feature that lets you preview web links. We tested the bad link and while we saw few resprings, it did reliably cause the Messages app to freeze entirely.

githubtextbug
The only solution appears to be to quit out of the Messages app and then delete the entire offending conversation to restore full functionality.

These kinds of Message-based bugs have surfaced several times in the past, with text strings, videos, and more crashing the Messages app in the past. Such bugs are not serious, but they can be highly irritating when abused as a prank.

It's best not to send the link to friends, because it can cause the sending device to freeze up and crash as well. If your device is affected, quit the Messages app on Mac or iOS, open it back up, and immediately delete the entire message thread.

On Mac, you'll need to swipe right on the trackpad or right click on to the person's name to delete the conversation, while on iOS, you'll need to swipe to the right on a person's name to bring up the delete option.

websiterestrictions
Blocking the domain using Parental Restrictions may prevent the link from affecting your iOS devices. You can turn on Restrictions on iPhone or iPad by going to Settings --> General --> Restrictions --> Websites --> Limit Adult Content and adding "GitHub.io" to the "Never Allow" list.

Update: Apple appears to have addressed the bug in iOS 11.2.5 beta 6, and Github has removed the offending webpage.

Top Rated Comments

Porco Avatar
38 months ago
IMHO, Apple should offer an option to specifically turn off web link previews, regardless of this bug.
Score: 23 Votes (Like | Disagree)
Naraxus Avatar
38 months ago
Does anyone remember when stuff like this happened to Microsoft and NOT Apple? My how times have changed.
Score: 17 Votes (Like | Disagree)
Princess Cake Avatar
38 months ago

M$ still sucks, and Apple is still better.

Remember what Steve said "We have to let go of this notion that for Apple to win Microsoft has to lose. In order for Apple to win Apple needs to do a really good job."
Score: 15 Votes (Like | Disagree)
Princess Cake Avatar
38 months ago
O̖̟̝̦h ̱l͉̰͓ooḳ,̩̗̱ ̩͓̘͔t͕͚h̬̰̗̘̣̙͔e̝̮̯̟͍ ̗̖͔̣k̗̩̩̳͓̜͔i͚d͎̯̭s̭̙̣ ̟̫̳a̞ṛ̩̮̪̣͚e͚̰̺͔̭ ̟̜̥̖͇͓̝u̱̠s̬̯̥̳̲̠in̪̲g̜̣̝̦ ͓t̬̞hḙ̳̣ ͇͙̗͈̺̮͓g̠̱̣̭̦͕͓ḽḭ̞̘t̩c̤͎h̺̬͕̜̘̲y̞͉̘ t͔̥̰e͙̭͇̼̱̹x̙̠t̜͇̝̹ͅͅ ͔̞̠̱ge͚n̗e͍̦̝̺r̦͓a͇̳̣t͖̦̱͔̤̙o͓̭̗̹̤̜̼r͔͙̗̬̞̼͚:rolleyes:
Score: 14 Votes (Like | Disagree)
shamino Avatar
38 months ago
So does anyone have a clue what this page is actually doing? I tried loading it in Firefox and the browser got really slow (displaying assorted cruft at the bottom of the browser window) until I closed the tab.

Update

After viewing the page's source code, it's just ugly nonsense exploiting a bug in the browser.

The page's header has a meta tag (og.title (http://ogp.me/)) where the content is several MB of text, consisting mostly of Unicode cascading accent marks. Following by a "mailto" URL containing similar junk. The content causes most software (capable of displaying Unicode, of course) to slow down a lot.

Pretty juvenile. But iOS's Mobile Safari and Messages shouldn't crash in the face of this. This may indicate a more serious bug somewhere in Apple's Unicode rendering engine.

IMO, although it probably violates the standard, I think software should put a limit on the number of cascading accents one may attach to a single character. If there were a limit of 100 (for example), it would probably never interfere with legitimate text and text designed to abuse the feature would simply fail to render. The only people offended would be those trying to write browser-crashing text and a few uber-pedantic Unicode geeks.
Score: 10 Votes (Like | Disagree)
Paradoxally Avatar
38 months ago
Apple is lost. This is the effective power bug all over again.
Score: 10 Votes (Like | Disagree)

Top Stories

apple briefcase

AppleCare Memo Hints at Potential Hardware Announcement Next Tuesday

Thursday December 3, 2020 9:12 am PST by
Following a busy fall season in which Apple hosted three events in as many months, the company may have one more product announcement in store this year. In an internal memo this week, obtained by MacRumors from a reliable source, Apple informed service providers that it has AppleCare-related changes planned for Tuesday, December 8 at approximately 5:30 a.m. Pacific Time. Specifically, Apple ...
iphone11colorswhitebg

Apple Launches iPhone 11 Display Module Replacement Program

Friday December 4, 2020 3:22 pm PST by
Apple today launched a new display replacement program for iPhone 11 devices to address a problem that cases a "small percentage" of iPhone 11 displays to stop responding to touch. Apple says that affected devices were manufactured between November 2019 and May 2020, and if there are touch issues, the iPhone 11 models could have a problem with the display module. Those with iPhone 11...
matte black macbook pro colorware

Apple Researching a Matte Black Finish for MacBooks

Friday December 4, 2020 9:04 am PST by
Apple has filed a patent application for an intense light-absorbant matte black finish for a range of products, including the iPhone, iPad, Apple Watch, and MacBook (via Patently Apple). Image via ColorWare The patent application, filed with the U.S. Patent and Trademark Office, is titled "Anodized Part Having a Matte Black Appearance," and outlines the characteristics of the finish and...
homepod mini amazon echo size

$99 Speaker Showdown: HomePod Mini vs. Amazon Echo and Google Nest Audio

Wednesday December 2, 2020 3:12 pm PST by
Apple recently released the HomePod mini, a new $99 version of the original HomePod that's smaller, cuter, and, most importantly, competitively priced. At $99, the HomePod mini can better compete with affordable smart speakers from companies like Google and Amazon. Subscribe to the MacRumors YouTube channel for more videos. The HomePod mini has been praised for its high-quality sound at its...
wristcam design

$299 'Wristcam' Adds a Pair of Cameras to Your Apple Watch

Thursday December 3, 2020 9:32 am PST by
The Apple Watch has never included a camera, likely due to battery life and space concerns. A new Apple Watch product aims to address that lack by introducing a wrist-worn camera that works with the Apple Watch. The Apple-certified Wristcam attaches to the Apple Watch in the form of a band that adds a rather large camera set to the top of the Apple Watch. It's quite thick and bulky, but can...
iphone 12 5g

Multiple iPhone 12 Users Report Sudden Drops in 5G and LTE Cellular Coverage

Thursday December 3, 2020 1:18 am PST by
Since Apple launched the iPhone 12 in October, an increasing number of users of the new smartphone have been reporting persistent drops in cellular coverage. Multiple reports of dropped 5G and LTE connectivity have appeared on Reddit, on Apple's support forums, and on the MacRumors forums, with many people suffering issues when walking or in transit and some seeing the same problem when...
iOS 14

Apple Releases Third Betas of iOS 14.3 and iPadOS 14.3 to Developers [Update: Public Beta Available]

Wednesday December 2, 2020 10:04 am PST by
Apple today seeded the third betas of upcoming iOS 14.3 and iPadOS 14.3 updates to developers for testing purposes, two weeks after releasing the second betas and a month after the launch of iOS and iPadOS 14.2. iOS and iPadOS 14.3 can be downloaded through the Apple Developer Center or over the air after the proper developer profile has been installed. The iOS 14.3 update brings the...
16 inch MBP Mini Led

Kuo: Two Redesigned MacBook Pros in 2021 and New MacBook Air in 2022, All With Apple Silicon and Mini-LED Displays

Wednesday December 2, 2020 5:46 am PST by
Apple plans to release two redesigned MacBook Pros in 2021 and a new MacBook Air in 2022, all with mini-LED displays and Apple Silicon chips, according to TFI Securities analyst Ming-Chi Kuo. In a research note to investors, seen by MacRumors, Kuo explained that two new MacBook Pro models equipped with an all-new form factor design are expected to launch in 2021, and a new "affordable"...
satechi magnetic charger

Satechi Debuts Magnetic Wireless Charger for iPhone 12 Models

Friday December 4, 2020 8:00 am PST by
Satechi today announced a new USB-C Magnetic Wireless Charging Cable, which is a new wireless charging option for Apple's iPhone 12 models. Designed to work with the magnets built into the iPhone 12 lineup, the Magnetic Wireless Charging Cable adheres to the back of an iPhone much like Apple's MagSafe charger. The Magnetic Wireless Charging Cable works attaches to an iPhone 12 with a...
magsafe duo design

Hands-On With Apple's New MagSafe Duo Charger for iPhone 12 and Apple Watch

Thursday December 3, 2020 2:49 pm PST by
Apple on Tuesday finally released the MagSafe Duo Charger, which is a $129 charger that combines an iPhone 12 MagSafe charger with an Apple Watch charging puck. Subscribe to the MacRumors YouTube channel for more videos. We picked up one of the new MagSafe Duo chargers to see if it's worth Apple's super high asking price. Apple first introduced the MagSafe Duo alongside the new iPhone 12...