Popular:
Virtualization DNS security formal verification reachability analysis compiler errors macro conflict web extension development framework Bitmap Graphics API inconsistencies All Tags

iOS iMessage Bug: Audio Messages Fail When Mentioning "Dave and Buster's"

2025-05-26

A bizarre iOS bug is making waves: sending audio messages via iMessage containing the phrase "Dave and Buster's" (a US sports bar) prevents the recipient from receiving them.

Investigation revealed the issue stems from iOS's transcription engine. It transcribes "Dave and Buster's" into HTML code with an unescaped ampersand (&), causing MessagesBlastDoorService (a security mechanism designed to thwart hacking attempts) to halt message delivery due to a parsing error.

While seemingly a security vulnerability, it actually demonstrates BlastDoor's effectiveness in preventing potential malicious code injection, highlighting Apple's cautious approach to security.

Read more
(rambo.codes)
Development

iOS Zero-Day: Denial-of-Service via Darwin Notifications

2025-04-27

A security researcher discovered a critical iOS vulnerability allowing malicious apps to execute denial-of-service attacks, even causing system reboots, by sending Darwin notifications. Exploiting a lack of sender verification in the Darwin notification mechanism, the researcher created an app, "VeryEvilNotify," triggering a "Restore in Progress" loop, forcing restarts. Apple patched this in iOS 18.3 by introducing restricted entitlements for sensitive notifications.

Read more
(rambo.codes)
Development denial-of-service