Commerce Eye Apple Group FaceTime Bug
and Commerce Chairman Frank Pallone, Jr. (D-NJ) and Consumer
Protection and Commerce Subcommittee Chairwoman Jan
Schakowsky (D-IL) sent a letter to Apple CEO Tim Cook today
requesting more information about when the company first
learned of the security flaw in its Group FaceTime feature,
the extent to which the flaw has compromised consumers’
privacy and whether there are other undisclosed bugs that
currently exist and have not been addressed.
•When did your company first identify the Group FaceTime vulnerability that enabled individuals to access the camera and microphone of devices before accepting a FaceTime call? Did your company identify the vulnerability before being notified by Mr. Thompson’s mother? Did any other customer notify Apple of the vulnerability?
•Please provide a timeline of exactly what steps were taken and when they were taken to address the vulnerability after it was initially identified.
•What steps are being taken to identify which FaceTime users’ privacy interests were violated using the vulnerability? Does Apple intend to notify and compensate those consumers for the violation? When will Apple provide notification to affected consumers?
•Are there other vulnerabilities in Apple devices and applications that currently or potentially could result in unauthorized access to microphones and/or cameras?