Nothing's iMessage solution might not be as secure as we thought

By Dallas Thomas

Published 2 days ago

New report may contradict the company's encryption claims

Nothing Chats, a service that brings iMessage to Android devices, may have a serious security problem. It was found to not use encryption when sending Apple login credentials, potentially making it vulnerable to a man-in-the-middle attack.
Nothing claims that the plain text seen by a developer is a tokenized version of Apple ID credentials, rather than the actual password. The company states that the token is of no use to bad actors and assures that user data is encrypted and secure.
Nothing also says that the usage of the term "BlueBubble" in Chats' coding is a coincidence and not related to the unencrypted chat backend of the same name.

Yes, I use SMS to communicate with my iPhone-owning friends.

54%, 1750 votes

Yes, because my friends and I can use RCS rather than a third-party app.

17%, 538 votes

No, because I'm already using a third-party app to communicate with others.

16%, 517 votes

No, because I don't think Apple is doing enough to make RCS matter.

11%, 343 votes

Something else (leave a comment).

2%, 112 votes

Total Votes: 3260