Apple today confirmed that it took steps to shut down the functionality of Beeper Mini, an app that enabled Android users to send and receive iMessages.

Apple emphasized its commitment to user privacy and security, explaining that the move was necessitated by the potential risks Beeper Mini’s techniques posed, including metadata exposure and susceptibility to spam and phishing attacks. Apple’s full statement shared with The Verge and other news sites is as follows:

At Apple, we build our products and services with industry-leading privacy and security technologies designed to give users control of their data and keep personal information safe. We took steps to protect our users by blocking techniques that exploit fake credentials in order to gain access to iMessage. These techniques posed significant risks to user security and privacy, including the potential for metadata exposure and enabling unwanted messages, spam, and phishing attacks. We will continue to make updates in the future to protect our users.

Beeper Mini operated by intercepting the iMessage protocol using Apple’s own push notification service, convincing Apple’s servers it was an authentic Apple device. This method, according to Apple, involved the use of “fake credentials,” which posed significant security and privacy risks to users. Beeper claims that its process worked with no compromises to encryption or privacy, and the company’s documentation says that nobody can read the content of sent messages other than the sender and its recipient, but Apple was unable to verify this and says it posed risks to users.

Following Apple’s statement, Beeper CEO Eric Migicovsky expressed his willingness to…