Skip to main content

People are trolling iPhone users with the ‘killer symbol’ that crashes their apps

Image
By


Surprise! Assorted jerks on the internet have weaponized the Unicode-based bug we reported yesterday to insta-crash apps running on an iPhone or a Mac. The result is somewhere between the old Alt + F4 trick and a script kiddie stunt, and it ranges from being annoying to rendering a device unusable, depending on the tenacity of the troll.

The bug causes many iOS and Mac apps to crash when rendering two characters in Telugu, a south Indian language. While anyone can avoid viewing the symbols themselves, problems arise when someone ill-intentioned starts spamming out the symbols or sending them directly to devices where they will be received as a notification.

Droves of Twitter users have taken to tweeting the symbols out over the last day with messages like “read this to log off instantly” and “retweet this to crash anyone using an Apple device,” though luckily most of them don’t have many followers. Still, if the symbol shows up in your @ replies or in the handle of someone who likes one of your tweets, then it’s game over for whatever app you have open (Motherboard writer Joseph Cox learned this the hard way). From what we’ve observed, the only way to get an app working again is to reinstall it from scratch — a time-consuming process, especially if a troll just crashes it all over again.

As captured on Twitter, one security researcher added one of the symbols to his Uber handle as an experiment. “I suspect a crashed phone means you get routed to the next driver… who gets crashed too. Like an Uber routing worm,” he wrote. We reached out to Uber to see if they’re aware of the issue and will update when we hear back.



For now, most of the trolling seems to be on Twitter. A search on both Facebook and Reddit yielded conspicuously few signs of Telugu trolling, so it appears that those platforms may have taken steps to limit the fallout from the iPhone-killing Unicode symbols.

Meanwhile, a thorough blog post by Mozilla engineer Manish Goregaokar suggests that the scope of the Unicode bug could be broader than the two symbols we know. “… From some experimentation, this bug seemed to occur for any pair of Telugu consonants with a vowel, as long as the vowel is not ై (ai),” he wrote. His findings so far:

So, ultimately, the full set of cases that cause the crash are:

Any sequence <consonant1, virama, consonant2, ZWNJ, vowel> in Devanagari, Bengali, and Telugu, where:

consonant2 is suffix-joining – i.e. र, র, য, and all Telugu consonants
If consonant2 is र or র, consonant1 is not the same letter (or a variant, like ৰ)
vowel is not ై or ৌ

TechCrunch has reached out to Twitter, Facebook and Reddit to see how those platforms are handling the bug, which is particularly destructive when blasted out on an open social network. We’ve also been in touch with Apple and they’ve confirmed that there is a “dot update” fix coming soon, though declined to confirm if it would be iOS 11.2.6. Apple noted that the bug is fixed in current betas of iOS, tvOS, macOS and watchOS.

Comments

Post a Comment

Popular posts from this blog

The EHang 184 Is A Human-Sized Drone Taking Off At CES

By
We’ve seen some pretty cool stuff on day 1 of CES 2016, but probably nothing more eye-catching than the EHang 184, a human-sized drone built by the Chinese UAV company  EHang . Yes you heard right — a giant autonomous drone that fits a human. It’s basically what you would expect to see if someone shrunk you down to the size of a LEGO and stuck you next to a DJI Inspire. Except no one was shrunk, and the giant flying machine was sitting smack in the middle of the CES drone section. EHang, which was founded in 2014 and has raised about $50M in venture fundingto date, was pretty gung-ho about telling everyone at CES that the 184 was the future of personal transport. And for the most part, people were too in awe to question them. But the reality is that the company probably was using the 184 as more of a marketing tool for their standard-sized drones like the  Ghost . Not that we’re saying that the 184 will never be a real thing, just that it probably isn’t co...
Post a Comment
Read more

Smart savings app Clinc is a new fintech startup from ex-CEO and founder of Numbrs

By
Last April, Julien Arnold quietly left his role as CEO of Numbrs, the mobile-first banking app he co-founded with Swiss company builder Centralway. Now, almost a year on, he’s on the verge of launching his next project:  Clinc , a mobile app to make it easier to save money for a future purchase or financial rainy day. Using what Arnold describes as a “dynamic intelligence algorithm,” Clinc promises to track your current account spending and analyse the results to find the optimum amount to save each month, which is then automatically deposited into your Clinc savings account underpinned by the startup’s partner bank. The secret sauce, which he won’t go much into detail on, is that the app is dynamic, able to make on-the-fly adjustments to how much you transfer to your savings account based on how your spending has changed or are predicted to change. In other words, Clinc’s central proposition is to help you achieve your financial goals faster. “This is the bigges...
3 comments
Read more

Iron Man Galaxy S6 Edge Arrives With An Arc Reactor Charger

By
Samsung’s  Iron Man-branded Galaxy S6 Edge  arrives tomorrow, with a custom paint job, 64GB of on-board storage and a limited edition wireless charger accessory with an appropriate arc reactor graphic included on top. It ships with a clear cover, too, so you can protect your precious “armor” when ticketing around in the real world. The box it comes in is also red and gold, and there’s a big ol’ Iron Man helmet stencil graphic on the back of the device, too, as well as a software theme to match. I probably would’ve left off the face personally, letting the colors speak for themselves, but this was a partnership with Marvel with the intent of promoting the new Avengers film oversees, so they probably could’ve been a lot less tasteful with the branding overall. The sad news for those of you who were hoping to advertise their Stark fandom on their phones is that availability is listed as only Korea as of tomorrow, with sales beginning in China and Hong Kong...
Post a Comment
Read more

Party Like It’s 2003 As PlayStation 2 Emulation Is Coming To PlayStation 4

By
If you’re into big pixels, Sony has a treat for you. The company has secretly been working on a fully functioning PlayStation 2 emulator for the PlayStation 4. It is taking advantage of this emulator for classic PS2 Star Wars games. But the company also confirmed to  Wired  that it is working on bringing more PS2 games to the PS4. You can buy a Star Wars Battlefront bundle that comes with a PlayStation 4, EA’s latest Star Wars game and a bunch of old games — Super Star Wars, Star Wars: Racer Revenge, Star Wars: Jedi Starfighter, and Star Wars: Bounty Hunter. Eurogamer  tried these games  and got a nice surprise. These games weren’t updated for the PlayStation 4. Instead, they run inside a PlayStation 2 emulator. You’ll find much of the PlayStation 2’s classic iconography starting with the start and select buttons, virtual memory cards and the good old PlayStation 2 logo when you boot these games. It also means that there will be a lot of upscaling and things...
Post a Comment
Read more