Hey there. I’ve been using the OTP Authenticator applet on my Apex Flex with Yubico’s Authenticator app on my iPhone. But a new update to the app causes it to crash instantly on a successful read. The offending version is 1.11, which is supposed to add support for FIPS yubikeys.
Anyone else having the same problem? I could destroy and reinstall the applet and see if it helps, but I’m hoping that I don’t have to.
Damn, I was about to update too.
I installed the update on my test iPhone and I’m seeing the same with my apex 
Actual yubikeys are working fine, but the javacard I have loaded with the TOTP applet is erroring out. Not closing/crashing out of the app like my apex does, but says “YubiKey connection is not found”.
Glad(?) it’s not just me. I saw in another thread that the iOS VivoKey app is being worked on, so it’ll be nice to have that SOONtm. Glad I have my OTP keys elsewhere.
@RyuuzakiJulio is the man on the case for iOS Apex Manager… I will work with him to come up with a realistic timeline for release. It is definitely happening, but now with renewed fire (thanks Yubico)
Sometimes it helps to also install the HMAC-SHA1 applet in addition, Yubicos detection algorithm is a bit strange.
As of this morning, I get an error and the message “YubiKey connection is not found” when using Yubico Authenticator. This always worked before, so I’m hoping it’s a temporary problem.
When I use the Fidesmo app, it seems to connect fine. Any ideas?
Unfortunately same behavior after doing that
I’ve been trying to somehow extract the ipa file from the phone that still has 1.10 installed to see if I could sideload with Apple Configurator but Apple has made that very hard now so not having any luck so far.
@Ditto have you tried this…
Yup
my last post was a reply to that
Ah yes… ok well they might be doing some extra checking to ensure the token they are talking to is “official yubikey”… someone should try to use a proxmark3 to sniff what’s going on, or if you are on Android you could use NFC Snoop Dogg
The snoop package will cleanly log and output all NFC communication the phone does with any transponder or acitve-active terminal (like a payment terminal).
Once we get some idea of what the Authenticator app is trying to do, we might be able to make some suggestions as to how to get Apex OTP working again with Yubico tools.
came here to open a thread that yubico authenticator is not working anymore.
I was really worried for a second that I had hit the implant and broken it or something in my sleep. so frustrating
Haven’t had much of an opportunity to try and get a sniff with my proxmark, but I was finally able to download version 1.10 of the app and sideload it on my test phone. Fully working now that I have 1.10 on it again. Might be helpful to those that updated.
I used GitHub - NyaMisty/ipatool-py: IPATool-py: download ipa easily and set up a local iTunes server per the instructions there on Windows. Once I got that installed and configured just a matter of finding the app and version ID in order to download. This is what ended up downloading the right ipa for me:
python3.13.exe .\main.py lookup -i 1476679808 -c us download -s http://127.0.0.1:9000 --appVerId 871713592
Then I took the ipa downloaded to my mac and sideloaded using Apple Configurator. Add apps to a device in Apple Configurator for Mac - Apple Support (follow the instructions for “Add proprietary in-house apps”). The same might be possible using Apple Configurator for iOS but I haven’t tested that.
This is affecting me too - found just as I was doing a ‘chip tour’ for some guys at work yesterday.
@Ditto Configurator for iPhone only adds devices to Automated Device Enrolment (Apple fleet deployment tool) so it can’t help here, the full Mac version is required.
I just made a post without reading this one here. I assumed it was an implant issue since I didn’t even know my app had updated. It all worked yesterday and today it is sadly not working. I will have to keep an old android phone in my bag for a bit till the IOS apex manager app gets finished up.
I thought I had a chip issue as well, it was working the day before for me and I thought I had auto-updates turned off but I guess not.
sadly, I really liked the UX and design of the yubico auth app. I don’t think the apex manager for iOS will be finished for many many moons, so I guess I’m back to using google auth until then as well.
amal, let me know if there’s anything I can do to help, like getting data, etc, for debugging the issue on iOS.
We’re making a big push this coming week to knock out as much of it as possible and get to publication ASAP… so hopefully just a single moon 
I have had my apex since the bata and used the OTP applet for years at this point and today I went to login to something and needed my one time password and scanned my hand and got an error in the yubi app, not a huge issue, I know that app on iphone has issues sometimes, but I scanned many times and kept getting errors. So I broke out my old android with the official authentication app and when I scanned it the app said “Vivokey OTP not installed” I can still read the ndef record with no issues so I know the chip works fine. I then continued down this hole and trying to figure out what is going on, so I opened up the fidesmo app and it says all my applets are happy and fine, then I remembered the cybernetic app on my old android, last time I used it the app was new, but to try everything I opened it up and it sees all of my codes! The android app also shows all of my memory and everything just fine, so I went to look to see if an iphone app existed and it does, but looks like the iphone app is pretty broken. I says 100% of memory is free, the authenticator part doesn’t work and says this feature is coming soon.
Has anyone else had issues like this with the apex? and is there any work being done on the iphone cybernetic app? I’d love to figure out if there is a way to “repair” my applet without loosing everything. I am going to add all of my codes to another application so I can try to uninstall and re-install the applet on the implant, but would still like to know if anything else can be done? It will be a pain in the ass to get my 20 something codes moved all over the place.
The VivoKey Authenticator app is depreciated. Apex Manager is the preferred app. When we first released OTP for Apex, it had a proprietary aid with the VivoKey RID prefix. However, many people argued that we should use the yubico AID so Yubikey tools would work. So, we changed the applet to use the yubikey AID and released Apex Manager that supports both the VivoKey AID and Yubico AID versions of the Apex OTP applet.
We are working on an Apex Manager official iOS app but if you load Apex Manager on your Android it should work fine.
Sorry for re-posting. I must have just gotten the update last night, it worked yesterday. Good to know I am not the only one. I will go over and talk in that thread if I have any more updates
