What is “ShortcutsActions” and why is it accessing my contacts so much? I’ve never seen it in my privacy report before ? Anyone else have this in their privacy report?
[Edited by Moderator]
iPhone 16 Pro Max
Ruckles wrote:
Apple’s About App Privacy Report page details every app that accesses contact data. Shortcuts isn’t mentioned.
The mistake you are making is that you think ShortcutActions is an App and is the same thing as the Shortcut App. It is NOT. ShortcutActions operates under the App Intent Framework. These are "hooks" built into the apps to perform some function that can be called by another App or the System. Developers can create their own App Intents to perform a function by using Siri, add an action in the Shortcut App, or fetch some data from the app for use in a Widget.
App Intents | Apple Developer Documentation
In your screenshot of Messsages having access to your Contact Info, guess how it gets that information. If you said a ShortcutAction you would be correct. Messages is not launching the Shortcut App to get this information, it is using an App Intent built into the Contacts app to get it. You also cannot tell Messages that you do not want to give it access to your Contacts so you will not be preventing ShortcutActions from being used when Messages wants to know what name is associated with the number that just sent you a message.
Another thing you fail to realize is that even though the Shortcut app does not show that it has access to the Contacts in the Privacy Page, the Shortcut app can certainly be used to access Contacts. One of the publicly available actions to the Contacts app in the Shortcut app is called "Add New Contact", where it can take a First Name, Last Name, or Company Name as input and when run a new contact will be added to the Contacts app.
That would make sense if I had the shortcuts app installed on my iPhone but I do not. I uninstalled that the second I got the phone. And I’ve had the phone for months. And according to my find my, my iPhone is the only phone connected to my iCloud account.
I know right? Not sure why they would suggest doing a factory restore as that would just put the app on my phone again…
Im currently having much bigger issues though. My clock app is accessing my media files according to my privacy report and I never gave it that permission and that’s not even a listed permission under clock settings. iPhones aren’t as secure as everyone says they are that’s for sure.
AI has a lot to learn (from us on here mostly) and quite frankly Apple Support chat staff don't have the years of experience of the senior contributors here nor the freedom to speak truths.
Read my response and that of Lawrence Finch. By definition all Apple apps have access by definition and they are YOUR apps on YOUR phone with no external interface.
Carking2013 wrote:
I know right? Not sure why they would suggest doing a factory restore as that would just put the app on my phone again…
Even if restoring the backup did restore the orphan icon and fractured app, so what? The app is harmless,
What steps can be taken to secure a phone/Apple ID if Shortcutsactions is repeatedly accessing contacts but the app is not on the phone (I am fully aware of how to check) and no shortcuts have ever been created?
I’m grateful for everyone supporting the community, but the “that’s not possible / it’s something you did / that’s expected behavior” party lines for all things security-related are unhelpful and, often, demonstrably false.
Shortcuts has already had a high-severity exploit. Concerning issues for multiple users are arising again.
Is there practical advice for confirming a compromise or involving Apple to do so?
Ruckles wrote:
What steps can be taken to secure a phone/Apple ID if Shortcutsactions is repeatedly accessing contacts but the app is not on the phone (I am fully aware of how to check) and no shortcuts have ever been created?
I’m grateful for everyone supporting the community, but the “that’s not possible / it’s something you did / that’s expected behavior” party lines for all things security-related are unhelpful and, often, demonstrably false.
Shortcuts has already had a high-severity exploit.
Misguided conspiracy nonsense is also unhelpful
Agreed.
Imagine for a moment, though, someone who has been using Apple devices for 37 years and is neither a conspiracy theorist nor an unbridled idiot, who is seeking assistance (even paid) for legitimate security concerns.
Is there a course of action you would recommend?
I’m sorry but I have a hard time trusting anything you say. You keep saying it’s not a security issue but I have several trusted sources (including apple support) stating that these issues are NOT normal and highly uncommon. I would appreciate it if you would do your research before, in so many words, commenting “it’s fine just ignore it.” You have given no real advice here.
Appreciate the engagement, but I’m not here to be yelled at or belittled.
Whatever with Shortcuts specifically; it’s the least of my concerns. I’m looking for qualified help with a compromised device. Realize I should start a new thread but, if this isn’t your area of expertise, you could simply say so or say nothing.
Carking2013 wrote:
I’m sorry but I have a hard time trusting anything you say. You keep saying it’s not a security issue but I have several trusted sources (including apple support) stating that these issues are NOT normal and highly uncommon. I would appreciate it if you would do your research before, in so many words, commenting “it’s fine just ignore it.” You have given no real advice here.
You are wrong, simple as.
Attempting to fashion hats in the tin foil aisle has consistently delivered; I recall the Mensa Entrance Exam being a bit fraught as well — might have been the hat there too, now that I think about it.
In reality, I’ve worked in endpoint security for years. My devices have reproducible anomalies and I have a legitimate reason to consider a targeted hack. No one is talking to me through the TV.
Likewise, no one is providing useful guidance here, so I’m going to bow out of this exchange, fun as it’s been.
ischmerwayne wrote:
no expert on this specific topic or ios related security but due to my general experience with other security related incidents i would recommend those wo are affected or interested or concerned these steps:
greetings Wayne
Nobody is "affected" by stock Apple apps using data from other stock Apple apps . The data goes nowhere except the phone. Anyone thinking that stock apps like Contacts was open to transmission outside the phone or encrypted iCoud would never use it.
Those same people would happily install a VPN and pass their traffic through servers owned by Vlad the Impaler.
Hello there
Still no expert but i think taht you’re right on the topic. After i had some time after work to look through the same report on my own devices i noticed that chronologically almost every entry matches with sharing contents or other things I’ve done with the sharesheet.
But i feel the need to add some critiques here too. I think that metaphorical speaking “just projecting the tinfoil on someone’s head” in a discussion like this one is wrong. People maybe aren't affected but they feel like they were and just saying that it can’t be because “encryption and told you so”wont help them. Maybe you and me know in our certain specialized topics what’s most likely going on behind the Ui but to someone who don’t has certain key elements of experience made or don’t posses the necessary knowledge in the topic, they will continue to feel uncomfortable. I think in a community discussion the focus should be more on the people that make up the community and not on spitting raw facts. We should not only share our knowledge and experience specially in security related topics, we should try to give the people something they can learn from.
And please don’t take this personally, ive seen a couple of discussions here with similar answers in it and today i just wanted to address it.
But to end this too long text, I have one question for you: how many Zero days are in the current version of IOS?
greetings wayne
ischmerwayne wrote:
Hello LD150
And that’s exactly the point ,no one knows, until it’s too late.
we should all not forget that when talking about security related questions even with Apple products.
greetings wayne
Nothing to do with the topic
Carking2013 wrote:
Prove to me that it’s harmless. The fact that it is accessing files on my phone after it’s been deleted doesn’t seem very harmless.
No, you prove to the rest of the world any harm that you have suffered as a result of one internal app accessing your contacts.
[Edited by Moderator]
What is "ShortcutsActions" and why is it accessing contacts on my iPhone?
