Apple releases iPhone update to fix Group FaceTime eavesdropping bug

iOS 12.1.4 is now available.

Carrie Mihalcik Former Managing Editor / News
Carrie was a managing editor at CNET focused on breaking and trending news. She'd been reporting and editing for more than a decade, including at the National Journal and Current TV.
Expertise Breaking News | Technology Credentials
  • Carrie has lived on both coasts and can definitively say that Chesapeake Bay blue crabs are the best.
Carrie Mihalcik
2 min read

Apple introduced Group FaceTime at WWDC 2018.

James Martin/CNET

Apple  on Thursday released iOS 12.1.4, an iPhone update that fixes a Group FaceTime bug that allowed users to eavesdrop on each other. 

The update is available for the iPhone 5S and later, iPad Air and later, and iPod Touch 6th generation. Last week, Apple turned off Group FaceTime after the discovery of a bug that allowed iPhone users to call another device via the FaceTime video chat service and hear audio on the other end before the recipient answered the call. It essentially turned any  iPhone  into a hot mic without the user's knowledge. 

Watch this: Apple’s FaceTime bug and why iPhone sales are slowing down

Apple on Friday said it'd fixed the vulnerability on its servers and that it'd issue a software update to re-enable Group FaceTime. Apple also apologized to users who were affected and said it takes the security of its products "extremely seriously." 

Release notes for iOS 12.1.4 say that a "logic issue existed" in Group FaceTime and that it was fixed "with improved state management." As of 10 a.m. PT on Thursday, Apple's System Status page notes that Group FaceTime service has been restored. 

Apple also said it fixed a previously unknown issue with the Live Photos feature of FaceTime.

"In addition to addressing the bug that was reported, our team conducted a thorough security audit of the FaceTime service and made additional updates to both the FaceTime app and server to improve security," said a representative for Apple in an emailed statement. "This includes a previously unidentified vulnerability in the Live Photos feature of FaceTime. To protect customers who have not yet upgraded to the latest software, we have updated our servers to block the Live Photos feature of FaceTime for older versions of iOS and macOS."

The bug was a misstep for a company that prides itself on protecting users' information. CEO Tim Cook has advocated for more privacy regulation and subtly criticized companies that use data to create personalized ads. It also doesn't help that Apple missed an opportunity to fix the problem more promptly when it was discovered earlier in January by a teen while playing Fortnite.

Apple has thanked the teen's family and plans to compensate them for finding and reporting the bug. 

First published Feb. 7, 10:51 a.m. PT.
Update, 11:47 a.m. PT: Adds comment from Apple.

Apple: See what's up with the tech giant.

Every Apple TV show announced: What's on Apple's increasingly deep bench of original programming.