Link

The Macintosh II Was Launched Today in 1987

Charlotte Henry ·

Another great ‘Today in Apple History’ from Cult of Mac today. On this day in 1987, the legendary Macintosh II was launched.

Although four Mac models already have been released, the definitive, full-number name of the Macintosh II makes clear that this is a major upgrade for the product line. With a massive hardware boost, optional color display (!) and a new open architecture, it does not disappoint! By far the biggest change with the Mac II? Its open architecture, which allows users to expand the computer. More than just a tech upgrade, this marked a fundamental shift in the way Apple engineers thought about the Macintosh.

Link

Apple Will Pay up to $500 Million to Settle Slow iPhone Class Action

Charlotte Henry ·

Apple is set to pay up to $500 million to settle a U.S class action related to iPhone slowing allegations, Reuters reported. Claimants said that Apple slowed down devices to encourage users to upgrade to newer ones.

The preliminary proposed class-action settlement was disclosed on Friday night and requires approval by U.S. District Judge Edward Davila in San Jose, California. It calls for Apple to pay consumers $25 per iPhone, which may be adjusted up or down depending on how many iPhones are eligible, with a minimum total payout of $310 million. Apple denied wrongdoing and settled the nationwide case to avoid the burdens and costs of litigation, court papers show.

Link

How to Steal and Repurpose Mac Malware

Charlotte Henry ·

A former NSA hacker argued that stealing and then repurposing Mac malware can be more powerful than creating it from scratch. Patrick Wardle demonstrated one example of how he went about it at RSA Conference, ArsTechnica reported.

Patrick Wardle, who is now a security researcher at the macOS and iOS enterprise management firm Jamf, showed how reusing old Mac malware can be a smarter and less resource-intensive approach for deploying ransomware, remote access spy tools, and other types of malicious code. Where the approach really pays dividends, he said, is with the repurposing of advanced code written by government-sponsored hackers. “There are incredibly well-funded, well-resourced, very motivated hacker groups in three-letter agencies that are creating amazing malware that’s fully featured and also fully tested,” Wardle said during a talk titled “Repurposed Malware: A Dark Side of Recycling.” “The idea is: why not let these groups in these agencies create malware and if you’re a hacker just repurpose it for your own mission?” he said.

Link

Programmers Create Every Possible Melody to Stop Lawsuits

Andrew Orr ·

Two programmers have created every possible melody in MIDI to help creators stifled by lawsuits.

Two programmer-musicians wrote every possible MIDI melody in existence to a hard drive, copyrighted the whole thing, and then released it all to the public in an attempt to stop musicians from getting sued.

Often in copyright cases for song melodies, if the artist being sued for infringement could have possibly had access to the music they’re accused of copying—even if it was something they listened to once—they can be accused of “subconsciously” infringing on the original content.

Sounds like a clever attempt to hack the system. I’m not sure if that will actually hold up in court but it’s creative.

TMO Deals

RIOT HiFi Over-Ear Headphones: $59.99

Bryan Chaffin ·

We have a deal on a pair of RIOT HiFi Over-Ear Headphones. RIOT connects to your portable devices via Bluetooth, or with a headphone jack using a mini-plug wired connection. they also come with a carrying case, and they’re priced at $59.99 through our deal.

Link

How to Create a Honeypot URL With URL Canary

Andrew Orr ·

A service I recently discovered is URL Canary. It creates a honeypot URL that you can then put in a location such as your cloud storage. It alerts you if that URL has been accessed.

URL Canary will catch automated robots and crawlers, as well as manual human attackers. The only time it won’t catch an attacker is if they don’t see the canary, or they don’t find it sufficiently-compelling and opt not to visit it. Since you have control of the URL and the domain name, you can make your canaries as compelling as possible for your specific use case.

There’s a similar service I know of called CanaryTokens.

Link

MI5 Chief Wants ‘Exceptional Access’ to Encrypted Messages

Andrew Orr ·

Sir Andrew Parker is the head of MI5, the UK’s domestic security service. He wants tech firms to provide “exceptional access” to encrypted messages.

In an ITV interview to be broadcast on Thursday, Sir Andrew Parker says he has found it “increasingly mystifying” that intelligence agencies like his are not able to easily read secret messages of terror suspects they are monitoring.

Bah, this is smoke and mirrors. As the head of a security agency he knows that restricting backdoors to the good guys is impossible.

Link

Tim Cook Thinks China is Getting Coronavirus 'Under Control'

Charlotte Henry ·

Tim Cook appears to be more optimistic than most about China’s response to the coronavirus outbreak. In an interview with Fox Business, the Apple CEO said he felt China was getting the illness “under control.”

Apple CEO Tim Cook told FOX Business’ Susan Li Thursday that he is “optimistic” about China managing the coronavirus outbreak, which has slowed production at the tech giant’s suppliers. “It feels to me that China is getting the coronavirus under control,” Cook said. “You look at the numbers, they’re coming down day by day by day. And so I’m very optimistic there.” He stressed that iPhone gets parts from “everywhere in the world,” including China, which has seen 2,744 deaths among 78,497 cases, mostly in the central province of Hubei.

Link

What Impact Does Watching Netflix Have Climate Change?

Andrew Orr ·

Despite what mainstream media wants you to think, the outcome is mostly still unclear when it comes to Netflix binging.

On one hand, the paper reports, strides in data center efficiency have mostly kept pace with growing demand for data, meaning that in the last decade the total amount of energy consumed by the centers has not changed much—around 1% of global energy use. That’s about the same as 18 million US homes.

On the other hand, it’s clear that we’re approaching a limit to squeezing out more efficiency—especially given the rise of data-ravenous artificial intelligence.

What I find annoying about the debates around climate change is how a lot of mainstream media are trying to blame people. Like blaming their Netflix binging instead of reporting the facts like 100 corporations are responsible for 71% of emissions. Sure, Netflix wouldn’t exist without its users, but I think it’s important to focus on how much more damage a corporation does than an individual.

Link

Facebook Sues OpenAudience for Improperly Harvesting Data

Andrew Orr ·

Facebook filed a federal lawsuit in California against OneAudience, saying it improperly harvested its user data.

The social media company claims that OneAudience harvested users’ data by getting app developers to install a malicious software development kit, or SDK, in their apps. SDKs are packages of basic tools that make it easier and faster for developers to build their apps.

Oddly, Facebook isn’t suing itself.

Link

Microsoft, Like Apple, Will Miss Revenue Guidance For Next Quarter

Charlotte Henry ·

Microsoft announced on Wednesday that it will miss its revenue guidance for the second quarter of 2020 as a result of the coronavirus outbreak, The Verge reported. Apple made the same announcement just over a week ago.

“Although we see strong Windows demand in line with our expectations, the supply chain is returning to normal operations at a slower pace than anticipated at the time of our Q2 earnings call,” Microsoft said in a press release. The company did not give a specific revenue range for the segment; instead, it said it does “not expect to meet our More Personal Computing segment guidance as Windows OEM and Surface are more negatively impacted than previously anticipated.” During its earnings call last month, Microsoft issued quarterly revenue guidance for the personal computing segment between $10.75 billion and $11.15 billion.

Link

Photo App Neural Cam Moves to Subscription

Andrew Orr ·

Neural Cam promises to give you Night Mode photos even if you don’t have the latest iPhones. It costs US$4.99 up front and recently moved to a subscription of US$4.99/month or US$35.99/year.

I’ve never used the app but people are saying the app is taking away features that people had paid for and locking it behind a subscription, a clear violation of App Store Review Guidelines, section 3.1.2(a).

Update: NeuralCam reached out to me to clarify: The Pro Pack is optional and only adds features for Pro users who subscribe. There’s also an additional 12-month introductory price at US$2.99/month. Finally, no features will be taken away from existing users.

Link

iBaby Monitors Can be Exploited by Hackers

Andrew Orr ·

Parents using an iBaby Monitor M6S should be aware it has multiple security problems that open it up to hackers.

That means any ne’er-do-well can purchase an iBaby monitor and use it to access files from every iBaby monitor. Unbelievable? Believe it. For legal reasons, the Bitdefender researchers did not access data belonging to other real-world users. Instead, they set up a second test device and verified access.

Link

Reddit CEO Brands TikTok 'Fundamentally Parasitic'

Charlotte Henry ·

It turns out the Reddit CEO is not a big fan of TikTok. Steve Huffman called the video-sharing app “fundamentally parasitic” and “spyware” at a recent event, TechCrunch reported.

The comments from Reddit CEO and co-founder Steve Huffman were some of the more controversial offered up during a panel discussion with former public policy exec Elliot Schrage and former Facebook VP of Product Sam Lessin. During a brief conversation about the feature innovations of TikTok, Huffman pushed back hard on the notion that Silicon Valley startups had something to learn from the app. “Maybe I’m going to regret this, but I can’t even get to that level of thinking with them,” Huffman said. “Because I look at that app as so fundamentally parasitic, that it’s always listening, the fingerprinting technology they use is truly terrifying, and I could not bring myself to install an app like that on my phone.” “I actively tell people, ‘Don’t install that spyware on your phone,’” he later added.

Link

Amazon Transcribe Will Now Redact Personally Identifiable Information

Charlotte Henry ·

Amazon Transcribe has made a good step forward in protecting users’ privacy. It now allows personally identifiable information (PII) – social security numbers, credit card details and the like – to be automatically redacted, VentureBeat reported.

Amazon Transcribe is part of Amazon’s AWS cloud unit and was launched in general availability in 2018. An automatic speech recognition (ASR) service, Transcribe enables enterprise customers to convert speech into text, which can help make audio content searchable from a database, for example. Contact centers can also use the tool to mine call data for insights and sentiment analysis. However, privacy issues have cast a spotlight on how technology companies store and manage consumers’ data. Text-to-speech services can be used to search for keywords and sentiment at a later date, but phone calls often feature significant private data that may be transcribed by Amazon and stored in a searchable database — even if that information is not necessary for analysis. Meanwhile, regulations are springing up around the world to protect consumer data — including the recently implemented California Consumer Privacy Act (CCPA) and Europe’s General Data Protection Regulation (GDPR).

Link

NSA Spy Program Cost Taxpayers $100 Million and Was Overall Useless

Andrew Orr ·

Form 2015 to 2019 the National Security Agency (NSA) collected Americans’ domestic phone calls and texts. The program cost US$100 million but only one investigation was able to make use of that data.

Moreover, only twice during that four-year period did the program generate unique information that the F.B.I. did not already possess, said the study, which was produced by the Privacy and Civil Liberties Oversight Board and briefed to Congress on Tuesday.

“Based on one report, F.B.I. vetted an individual, but, after vetting, determined that no further action was warranted,” the report said. “The second report provided unique information about a telephone number, previously known to U.S. authorities, which led to the opening of a foreign intelligence investigation.”

Link

Amazon's Eero Mesh Routers Now Support Apple HomeKit

Charlotte Henry ·

Amazon’s eero mesh routers now support Apple’s HomeKit, AppleInsider reported. They are the first mesh routers to Apple’s smart home platform.

After appearing recently appearing imminent, Eero has finally made the update available to users of its eero, eero Pro, and eero Beacon models which add additional security for smart home devices. With HomeKit support, users are able to restrict communication for smart home devices to only communicate in the home, to the default connections recommended by the manufacturer, or no restriction whatsoever. With smart home devices controlling everything from our lights to our locks, knowing that they are prevented from sending data outside your abode can offer a great deal of peace of mind. The update is installed by heading to the “Discover” tab within the eero app.

Link

Someone Stole Clearview AI’s List of Clients

Andrew Orr ·

Clearview AI gained notoriety for partnering with law enforcement on facial recognition, using its database of billions of scraped images from the web. But someone just stole its list of clients.

…Clearview AI disclosed to its customers that an intruder “gained unauthorized access” to its list of customers, to the number of user accounts those customers had set up, and to the number of searches its customers have conducted. The notification said the company’s servers were not breached and that there was “no compromise of Clearview’s systems or network.”

Meanwhile, law enforcement on end-to-end encryption: “Who needs that kind of encryption, other than maybe the military? We don’t even — in law enforcement — use encryption like that.”

Link

It’s ok to Complain About Intrusive iOS Ads

Charlotte Henry ·

Macworld’s The Macalope is not known for pulling punches. This week the anonymous columnist joined the debate on iOS ads in typically robust fashion.

While The Macalope is not a fan of exaggeration, he’s even less a fan of junking up the iOS user experience. And that’s what ads do, even when they’re ads for Apple stuff. The Macalope has railed against Microsoft doing this on Windows so he can’t very well not rail against Apple doing the same. And there’s a problem with not complaining about it. Often if you don’t complain about bad behaviors, they never get fixed. It took five years of complaining to get Netflix to stop auto-playing previews of shows that we weren’t going to watch, but the complaining system worked eventually.

Link

Could iPhone 12’s Fast 802.11ay Wi-Fi Be For AR Glasses?

Andrew Orr ·

The iPhone 12 is rumored to get support for 802.11ay, a high speed and low latency Wi-Fi standard. Jason Cross posits that it could be used for Apple’s AR glasses.

The alternative is to make the headset a relatively dumb set of displays and cameras, with all the processing happening on some sort of base station—like your new iPhone 12. An ultra-high speed, super low-latency connection like that provided by 802.11ay is a necessity to make that work.

A popular thought is that Apple Glasses will be an iPhone accessory like Apple Watch is (or, started out) with most or all of the processing happening on the iPhone.

Link

Ex-Apple Board Member Bob Iger Quits as Disney CEO

Charlotte Henry ·

Former Apple board member Bob Iger has announced that he is stepping down as CEO of Disney with immediate effect and becoming Executive Chairman, CNN reported. Tuesday’s move followed the successful launch of Disney+.

Iger has assumed the role of executive chairman and will direct the company’s creative endeavors, the company said. Iger will stay on at Disney through the end of this contract on December 31, 2021. “With the successful launch of Disney’s direct-to-consumer businesses and the integration of Twenty-First Century Fox well underway, I believe this is the optimal time to transition to a new CEO,” Iger said in statement.

 

Link

When You Download Facebook Data, it Doesn’t Show Everything

Andrew Orr ·

Facebook isn’t being completely truthful about the data available in its “Download Your Information” feature. Some information is left out.

Privacy International recently tested the feature to download all ‘Ads and Business’ related information (You can accessed it by Clicking on Settings > Your Facebook Information > Download Your Information). This is meant to tell users which advertisers have been targeting them with ads and under which circumstances. We found that information provided is less than accurate. To put it simply, this tool is not what Facebook claims. The list of advertisers is incomplete and changes over time.

As Privacy International points out, this is in violation of GDPR because Facebook doesn’t let you see all of the advertisers that have your data.

Link

AT&T’s Mandatory Arbitration Clause Deemed Illegal

Andrew Orr ·

A panel of judges in the U.S. Court of Appeals for the Ninth Circuit ruled that AT&T’s mandatory arbitration clause is unenforceable.

AT&T appealed that ruling to the US Court of Appeals for the Ninth Circuit, but a three-judge panel at that court rejected AT&T’s appeal in a ruling issued Tuesday. Judges said they must follow the California Supreme Court decision—known as the McGill rule—”which held that an agreement, like AT&T’s, that waives public injunctive relief in any forum is contrary to California public policy and unenforceable.”

The ruling can be found here [PDF].