How Huawei and Apple Are Shaping up in the U.S - China Trade War

Huawei is working to find ways to withstand the U.S. – China trade war. Bloomberg News outlined some of its tactics and how it shapes up compared with Apple.

The newly hostile environment is putting to the test not just Apple’s “Designed in California, Assembled in China” slogan, but the overall preparedness of two smartphone-making giants as the decades-old made-in-China model fractures. Here’s a look at how dependent Apple and Huawei are on external suppliers. OS: Apple’s strength has always been the integration of software with hardware, and it has absolute control over iOS. Huawei is trying to do the same with Hongmeng, but it has everything left to prove, starting today. For the foreseeable future, Huawei remains dependent on Android for its mainstream smartphones, especially outside China. Advantage: Apple.

Online Payment Integrations Can Introduce Vulnerabilities

At Black Hat 2019, researcher Joshua Maddux found that security vulnerabilities can arise when websites add online payment integrations like Apple Pay. To be clear, he says it’s not an issue with Apple Pay itself, but rather how websites add it. And other third-party integrations can be similarly affected.

The flaws fit into a well-known type of vulnerability called «server side request forgery,» which allow attackers to bypass protections like firewalls to directly send commands to web applications. These vulnerabilities pose a real threat, and are regularly exploited in the wild. Most recently, they played a role in last month’s massive Capital One breach. Similarly, flexibility in how a website integrates Apple Pay potentially exposes its own backend infrastructure to unauthorized access.

Netflix Should Fear Subscription Fatigue, And so Should Everybody Else

In a piece for Wired, author Chris Stokel-Walker argued that Netflix should fear UK users getting subscription fatigue. He’s right. The same should be true for all the other firms in the UK and elsewhere who have or are planning a video subscription service. That includes Apple.

However, with the number of subscriptions climbing, are we likely to see subscription fatigue? Research by MUSO, an anti-piracy data consultancy, has found that eight in ten European consumers believe they’re already paying too much for content streaming, with two-thirds saying they wouldn’t pay for any more streaming services this year. “I think we’re in an incredible position as an industry where there’s so many things happening this year,” says Chris Elkins of MUSO. “The reality is we’re going into a world of fragmentation, where content is being removed from certain platforms – like Friends and The Office coming off Netflix.”

Researchers Spoof Face ID Using Tape and Glasses

During the Black Hat 2019 conference, researchers demonstrated a way to spoof Face ID using nothing more than glasses and tape.

To launch the attack, researchers with Tencent tapped into a feature behind biometrics called “liveness” detection, which is part of the biometric authentication process that sifts through “real” versus “fake” features on people. It works by detecting background noise, response distortion or focus blur. One such biometrics tool that utilizes liveness detection is FaceID, which is designed and utilized by Apple for the iPhone and iPad Pro.

iOS 13 Will Prevent Location Tracking via SSID, BSSID

During Apple’s WWDC 2019 developer session 713 titled, «Advances in Networking» revealed that iOS 13 will stop location tracking using your device’s SSID/BSSID using the CNCopyCurrentNetworkInfo API. Developers have reported getting an email from Apple that says:

Starting with iOS 13, the CNCopyCurrentNetworkInfo API will no longer return valid Wi-Fi SSID and BSSID information. Instead, the information returned by default will be:

SSID: “Wi-Fi” or “WLAN” (“WLAN» will be returned for the China SKU) BSSID: «00:00:00:00:00:00»

Apple Locks New iPhone Batteries to Each Model

With a special chip on the battery, Apple is locking down new iPhone batteries to prevent third-party repairs. Instead, you’ll have to go to an Apple store or an authorized repair center.

iFixit reports that replacing a battery in the iPhone XR, XS, or XS Max generates a «service» message saying the phone is «unable to verify this iPhone has a genuine Apple battery.» The phone will also not display any battery health readings.

The change is due to the chip on the battery itself. In addition to being able to relay information about battery cycles and temperature to the phone, the chips on the newer iPhone models also have an authentication feature for pairing with a specific phone.

DeepMind Aims to Solve Science's Hardest Problems

DeepMind, the Google owned AI firm, is a company on a mission. In its UK cover story this month, Wired went into the company’s new HQ and spoke with CEO Demis Hassabis.

For DeepMind, the emergence of the new headquarters is symbolic of a new chapter for the company as it turns its research heft and compute power to try to understand, among other things, the building blocks of organic life. In so doing, the company hopes to make breakthroughs in medicine and other disciplines that will significantly impact progress in a number of fields. “Our mission should be one of the most fascinating journeys in science,” Hassabis says. “We’re trying to build a cathedral to scientific endeavour.”

Apple Music For Android Gets Dark Mode

Dark mode arrived on the Android version of Apple Music. Cult of Mac reported that the app also introduced time-synced lyrics support.

The new dark mode makes Apple Music easier on the eyes when you’re listening to your favorite tracks in a dimly-lit room at night. And it works just as well as the dark mode in iOS 13. The option inverts Apple Music’s color scheme, but intelligently differentiates things like images and text to prevent everything on-screen from going dark. Time-synced lyrics support is even more impressive. Not only does it let you follow the words to a song in real-time, but it also lets you skip to certain parts of the track by tapping on specific phrases.