All Apple needs to do is send a few scary C&D letters from their army of lawyers and this will be done. If they run the infrastructure for imessage, I'm sure there's something in a ToS somewhere that talks about spoofing device IDs and unauthorized use of their services blah blah Apple's sole discretion.
In theory I love it but in reality it'll be dead soon as Apple has too much to gain from the walled garden they've spent decades and billions building and defending.
If it was obviously bogus (think SLAPP territory) then that would make sense, but I don't think it is as likely to get their attention if the offending behavior can reasonably be classified as a potential violation of the CFAA.
(Whether it is a violation or not, I certainly couldn't say, but my point being that there is a reasonable good faith interpretation of the behavior that would not raise eyebrows.)
Strategic Lawsuits Against Public Participation. In other words, "Sue somebody when they criticize you, hoping the legal expense will make them stop." This isn't exactly the same scenario, but would be similar (in the poster's hypothetical) in that it was a lawsuit meant to intimidate rather than to seek justice.
The problem is that Apple has valid case, because these guys are making money with the app, by using Apple’s private backend services without permission.
Eh, just being really big isn't going to be enough by itself. Apple has just a bit over half the market, they're definitely not a monopoly. The gov't won't get involved.
Beeper isn’t using Apple services (at least not in Beeper Mini, their new e2ee iMessage client), and thus is not subject to any Terms of Service from Apple.
They’re publishing client software, which is protected expression provided it’s original and doesn’t infringe any trademarks or copyrights.
The end users are the ones potentially violating the ToS by connecting to Apple APIs.
Apple has no basis to tell Beeper to cease and desist from the publication of software that it is legal to publish.
They could take it the other way and start suspending accounts that use a spoofed device id. For me that's my main hesitation, I don't want to have my apple accounts suspended for violation of ToS.
Apple doesn’t even need to do that. They can send the DOJ after Beeper.
Many people hear about a reverse entering exception in the DMCA and call it a day. But it’s not that simple.
Reverse engineering is allowed for a very narrow case, namely interoperability between two software programs (for which you have a license granting you legal permission to use), as defined in paragraph 4 of Section 103(f).
The DMCA decidedly does not permit you to use reverse engineering to package someone else's software or service and sell it.
Jurisprudence also established that EULAs that explicitly prohibit reverse engineering supersede the exception granted in the DMCA, see Bowers v. Baystate Technologies, 320 F.3d 1317 (Fed. Cir. 2003)[0]
Apple has explicitly forbidden reverse engineering in their macOS license agreement[1], the iOS license agreement[2], and the Apple Media Terms of Service[3].
Agreement with those terms is necessary to reach the parts that need reverse engineering.
There’s also the matter that the pypush repository seems to include Apple’s proprietary code, which wouldn’t fall under reverse engineering.
Worst of all, even if reverse engineering was allowed, it still doesn't allow you to connect to other people's servers. The Computer Fraud Abuse Act of 1986 explicitly prohibits unauthorized access to computer systems, and the DMCA exception doesn't supersede the CFAA.
A lot of states have criminal statutes that mirror the CFAA.
So, at this point, it wouldn’t be inconceivable for Apple to try and get the DOJ involved.
In theory I love it but in reality it'll be dead soon as Apple has too much to gain from the walled garden they've spent decades and billions building and defending.