One of the nicer features of Apple’s iMessage messaging platform is the fact that it can work on the desktop — but it appears that also opens it up to abuse. As The Next Web reports, several prominent iOS developers have had their iMessage accounts flooded with messages from at least one person claiming to be part of Anonymous. The “hack,” such as it is, appears to simply be using Applescript to automate sending multiple messages very quickly from a desktop client. In Grant Paul’s case, the attackers began sending long strings of Unicode characters, completely locking up his iMessage app.
Several iOS developers targeted with iMessage denial-of-service attack
The iMessage spammer has now completely locked me out of my iOS Messages app, by sending long strings of Unicode chars. Definitely a DoS.
— Grant Paul (chpwn) (@chpwn) March 29, 2013
Since iMessage can be tied to an email address, it’s fairly trivial for somebody to guess it and begin spamming messages. The best solution is for Apple to act quickly to recognize and then block people who are abusing the iMessage service, and then perhaps later on add a whitelist feature that consumers could turn on. Hopefully it will do both, as right now the company’s track record in responding quickly and efficiently to security issues isn’t exactly stellar.
Follow topics and authors from this story to see more like this in your personalized homepage feed and to receive email updates.
Most Popular
Most Popular
- Hisense aggressively cuts the price of its RGB LED TV on release day
- Homebridge 2.0 is here, and it speaks Matter
- Tesla hits Musk’s threshold for ‘safe unsupervised’ driving
- Amazon’s trying to turn its massive shipping operation into another AWS
- The creator of Roomba is back with a furry robot companion
