Nothing Chats iMessage bridge was astoundingly insecure
appleinsider.com
Nothing and Sunbird pulled the shockingly insecure iMessage bridge, but only after it was discovered that not only did Sunbird log and retain messages, vCards, and more, but that retained user data could also be downloaded by others.
  • balderm@alien.topBEnglish
    1·
    1 year ago

    Guess the CEO got the hint after a bunch of tech tubers pointed out that it’s a security nightmare (login into a remote Mac Mini that now owns the keys to your Apple Account). Could also be that the unexpected RCS move made it redundant so they got the security concerns and used it as an excuse.

    • PleasantWay7@alien.topBEnglish
      1·
      1 year ago

      No, it wasn’t any of that. It turned out they saved all your messages and anyone can access them.

      • Quiet-Form9158@alien.topBEnglish
        1·
        1 year ago

        You forgot the part where they send login credentials with HTTP to the server lol.

        Sadly people will read this headline and say “well duh everyone knew that because they’re giving credentials”.

        These issues have very little to do with credentials and everything to do with poor software engineering. I would say almost laughable software engineering. I would expect a 2023 graduate of computer science would be aware or and know of these potential flaws.

        • super5aj123@alien.topBEnglish
          1·
          11 months ago

          You forgot the part where they send login credentials with HTTP to the server lol.

          Jesus, I’m not even done my Sophomore year of college and I can already tell that’s terrible. Not even HTTPS?!?

    • taimusrs@alien.topBEnglish
      1·
      1 year ago

      He knew lmao. This is a PR move to make big splash in the news, nothing (ayyy) more than that. Perfectly apt knowing that he’s used to be from OnePlus