Apple has apologized for the FaceTime privacy vulnerability that became public news on Monday after having been discovered by a user and reported to the company more than a week prior.
The bug allowed callers to hear the person on the other line before they agreed to accept the call. If the recipient tried to block the call or turn off the device, their video camera would automatically begin recording. That video would then be sent back to the caller.
Apple disabled group FaceTime as a temporary fix, but only after reports of the bug had been shared widely in the media. The company had originally become aware of the flaw more than a week before it became public.
More permanent fix to come
On Friday, Apple said it will roll out a fixed version of the group calling feature next week.
“We have fixed the Group FaceTime security bug on Apple’s servers and we will issue a software update to re-enable the feature for users next week," the company said in a statement.
The tech giant credited the family of a 14-year-old boy who helped discover the flaw and report it to Apple.
"We thank the Thompson family for reporting the bug. We sincerely apologize to our customers who were affected and all who were concerned about this security issue. We appreciate everyone’s patience as we complete this process,” Apple said.
Slow response to the issue
Earlier this week, New York state Attorney General Letitia James announced that her office would be opening an investigation on the bug -- specifically, Apple’s lag time in informing consumers of the flaw.
“We’re launching an investigation into Apple’s failure to warn consumers about the FaceTime privacy breach & their slow response to addressing the issue,” James said. “New Yorkers shouldn't have to choose between their private communications & their privacy rights.”
In its Friday statement, Apple attempted to win back consumers’ trust by saying that it’s “committed to improving the process by which we receive and escalate these reports.”
"We want to assure our customers that as soon as our engineering team became aware of the details necessary to reproduce the bug, they quickly disabled Group FaceTime and began work on the fix," the company said. “We take the security of our products extremely seriously and we are committed to continuing to earn the trust Apple customers place in us.”