Europe's antitrust chief, Margrethe Vestager, has warned Apple to give equal treatment to all apps on its platform amid the iPhone maker's privacy changes that have drawn charges of anti-competitive practices from rival Facebook. From a report: Apple will in the spring ask iPhone users for consent to track their data for personalized ads in what it says is a move to protect users' privacy but which will limit apps' ability to gather data from people's phones that can be used for targeted advertising. Facebook has been among the most vocal of the critics which stand to lose a substantial part of their revenue from Apple's move. Facebook in a December blog post called it anti-competitive behaviour, saying that Apple's own personalized ad platform would be exempt from the new requirement giving users a choice of whether to opt in to tracking by third parties. Vestager said while the issue is privacy-related, it can morph into an antitrust issue if Apple tilts the level playing field. "It can be competition if it is shown that Apple is not treating its own apps in the same way," she told Reuters in an interview on Monday.

Google is exploring an alternative to Apple's new anti-tracking feature, the latest sign that the internet industry is slowly embracing user privacy, Bloomberg is reporting, citing people with knowledge of the matter. From the report: Internally, the search giant is discussing how it can limit data collection and cross-app tracking on the Android operating system in a way that is less stringent than Apple's solution, said the people, who asked not to be identified discussing private plans. Google is trying to balance the rising demands of privacy-conscious consumers with the financial needs of developers and advertisers. The Alphabet unit is seeking input from these stakeholders, similar to how it's slowly developing a new privacy standard for web browsing called the Privacy Sandbox. With more than $100 billion in annual digital ad sales, Google has a vested interest in helping partners to continue generating revenue by targeting ads to Android device users and measuring the performance of those marketing spots. "We're always looking for ways to work with developers to raise the bar on privacy while enabling a healthy, ad-supported app ecosystem," a Google spokesman said in a statement.

[...] A Google solution is likely to be less strict and won't require a prompt to opt in to data tracking like Apple's, the people said. The exploration into an Android alternative to Apple's feature is still in the early stages, and Google hasn't decided when, or if, it will go ahead with the changes. On the iPhone, Google offers developers a framework so they can monetize their apps using Google ads. In a recent blog post, Google said Apple's ad-tracking update means developers "may see a significant impact" on their ad revenue. To keep advertisers happy while improving privacy, the discussions around Google's Android solution indicate that it could be similar to its planned Chrome web browser changes, the people said. Further reading: Google's iOS Apps Haven't Been Updated in Weeks. Could Apple's Privacy Labels Be the Reason?
Facebook Warns Advertisers on Apple Privacy Changes
Apple's Tim Cook Criticizes Social Media Practices, Intensifying Facebook Conflict
Facebook Looks To Take its Fight With Apple To Court.

Google has launched a limited version of its News Showcase in Australia despite threatening to pull Search from the nation a fortnight ago. ZDNet reports: News Showcase, Google claims, provides an "enhanced view" of articles, and aims to give participating news publishers more ways to share important news to readers while having "more direct control of presentation and branding." The product will appear across Google News on Android, iOS and the mobile web, and in Discover on iOS.

As part of the initial version of News Showcase in Australia, seven local news publishers have partnered with the search giant, Google APAC news, web and publishing head Kate Beddoe said in a blog post. "The initial publishers featured in today's launch were among the first globally to sign up, providing early feedback and input on how the product could help bring their journalism to the fore for readers," she said. The Australian publications included in the initial version of Google News Showcase are The Canberra Times, The Illawarra Mercury, The Saturday Paper, Crikey, The New Daily, InDaily, and The Conversation.

Jeff Carlson, writes in a post: After consulting numerous webcam buying guides and reviews, purchasing a handful of the most popular models, and testing them in varying lighting situations, I can't escape the grim truth: there are no good webcams. Even webcams recommended by reputable outlets produce poor quality imagery -- a significant failing, given it's the one job they're supposed to provide. Uneven color. Blown highlights. Smudgy detail, especially in low light. Any affordable webcam (even at the high end of affordability, $100+), uses inadequate and typically years-old hardware backed by mediocre software that literally makes you look bad. You might not notice this if you're using video software that makes your own image small, but it will be obvious to other people on the call. [...] Why are webcams like this?

[...] Two main factors currently hinder serious webcam innovations, one a technical limitation and one a business shortcoming. As with all photography, the way to create better images is to capture more light, and the method of capturing more light is to use larger image sensors and larger lenses. That's why a consumer DSLR or mirrorless camera produces much better images than a webcam. Primarily this is about size: webcams are designed as small devices that need to fit onto existing monitors or laptop lids, so they use small camera modules with tiny image sensors. These modules have been good enough for years, generating accolades, so there's little incentive to change. The StreamCam appears to have a better camera and sensor, with an aperture of f/2.0; aperture isn't listed for the other cameras.

Contrast this technology with the iPhone, which also includes small camera modules by necessity to fit them into a phone form factor. Apple includes better components, but just as important, incorporates dedicated hardware and software solely to the task of creating images. When you're taking a photo or video with an iOS device, it's processing the raw data and outputting an edited version of the scene. Originally, Logitech's higher-end webcams, such as the C920, also included dedicated MPEG processing hardware to decode the video signal, but removed it at some point. The company justified the change because of the power of modern computers, stating, "there is no longer a need for in-camera encoding in today's computers," but that just shifts the processing burden to the computer's CPU, which must decode raw video instead of an optimized stream. It's equally likely Logitech made the change to reduce component costs and no longer pay to license the H.264 codec from MPEG LA, the group that owns MPEG patents. That brings us to the other factor keeping webcam innovation restrained: manufacturers aren't as invested in what has been a low margin business catering to a relatively small niche of customers.

The official Reddit for iOS app recently received an update that added a new video player UI, and many users don't like it one bit. XDA Developers reports: The Reddit Mobile subreddit, the community where Reddit administrators notify users of new Android and iOS app updates, is currently filled to the brim with complaints about the new video player. Many users describe the experience as TikTok or Instagram-like. Others simply say it's too intrusive and also requires more button presses to reach the comments section of a post. The new video player UI has yet to reach the Android version, but we'd be surprised if Reddit pushes ahead with the controversial video player changes in their current form. For those looking for an alternative, XDA Developers recommends the Apollo app.

Apple's latest iOS 14.5 update for beta testers brings support for the new PS5 DualSense and Xbox Series X controllers. The Verge reports: Apple's upcoming iOS 14.5 update follows the company revealing back in November that it was working with Microsoft to include support for the Xbox Series X controllers. Steam also added PS5 controller support last year, followed by Nvidia's Shield TV support last month. Other features of iOS 14.5 include the ability to unlock an iPhone with an Apple Watch while wearing a mask, Siri emergency contact calling, CarPlay ETA sharing, and dual-SIM 5G support. The official release is expected in the next couple of months.

Facebook is testing a notification that notifies Apple iOS users about ways the tech giant uses their data to target personalized ads to them. Axios reports: The test is happening in light of upcoming changes to Apple's privacy settings that will make it harder for Facebook and others to collect data on Apple users for ad targeting. Facebook warned investors last week that changes to Apple's "Identifier for Advertisers" (IDFA) user tracking feature will likely impact its business. The feature asks Apple iOS users to opt-in to having their data collected, instead of asking them to opt-out. Developers forecast that only around 10-30% of users will actually opt-in to having their data collected, making it much harder for advertisers to target potential Apple customers without as much access to their data.

Details: In an updated blog post, Facebook says it will be showing their prompt "to ensure stability for the businesses and people who use our services." The prompt, which provides information about how Facebook uses personalized ads, will be shown to users globally on Facebook and Instagram. In the post, Facebook says that if users accept the prompts for Facebook and Instagram, the ads you see on those apps won't change. "If you decline, you will still see ads, but they will be less relevant to you." The tech giant notes that Apple has said that providing education about its new privacy changes is allowed.

Apple's latest iPhones stuck with Face ID as the singular method of biometric authentication in an era when people are wearing face masks everywhere they go. This inevitably means having to enter your passcode constantly throughout the day. But Apple has come up with a stopgap solution that should make it easier to get into your phone during mask life -- as long as you've got an Apple Watch. From a report: As first reported by Pocket-lint, the new iOS 14.5 update, which went into beta today, uses the Apple Watch on your wrist to quickly authenticate and unlock your iPhone. Apple already offers this convenient trick on the Mac, but now it's coming to the iPhone as well. It works similarly here. You lift your iPhone to turn on the screen, and you'll feel a little nudge of haptic feedback on your Apple Watch to indicate that your iPhone has been unlocked. The devices must be in close proximity for this to work in the first place, which is a measure to keep your data secure. (If the Apple Watch is locked, this won't work either.) And this Apple Watch shortcut is only good for unlocking your iPhone; App Store and iTunes purchases will still require other authentication if your face is covered. And as a final security check, you'll still be asked to put in your passcode every few hours even when unlock with Apple Watch is enabled.

VideoLAN, in a blog post: The VideoLAN project and the VideoLAN non-profit organization are happy to celebrate today the 20th anniversary of the open-sourcing of the project. VideoLAN originally started as a project from the Via Centrale Reseaux student association, after the successful Network 2000 project. But the true release of the project to the world was on 1st of February 2001, the Ecole Centrale Paris director, Mr. Gourisse, allowed the open-sourcing of the whole VideoLAN project under the GNU GPL. This open sourcing concerned all the software developed by the VideoLAN project, including VideoLAN Client, VideoLAN Server, VideoLAN Bridge, VideoLAN Channel Switcher, but also libraries to decode DVDs, like libdca, liba52 or libmpeg2. At that time, this was a risky decision for the Ecole Centrale Paris, and the VideoLAN project is very grateful.

Since then, the project evolved to become a French non-profit organization, and continued developing numerous solutions around the free software multimedia world. Today, VLC media player is used regularly by hundreds of millions of users, and has been downloaded more than 3.5 billion times over the years. VLC is today available on Windows, macOS, Linux, Android (including TV and Auto versions), iOS (and AppleTV), OS/2 and BSD. Over the years, around 1000 volunteers worked to make VLC a reality.

wiredmikey shares a report from SecurityWeek.com: Apple has quietly added several anti-exploit mitigations into iOS in what appears to be a specific response to zero-click iMessage attacks observed in the wild. The new mitigations were discovered by Samuel Grob, a Google Project Zero security researcher, [with the first big addition being] a new, tightly sandboxed "BlastDoor" service that is now responsible for the parsing of untrusted data in iMessages.

With iOS 14, Grob discovered that Apple shipped a significant refactoring of iMessage processing, and made all four parts of an attack much harder to succeed. Apple added logic into iOS 14 to specifically detect [shared cache region] attacks and new techniques to limit an attacker's ability to retry exploits or brute force Address Space Layout Randomization (ASLR). "Overall, these changes are probably very close to the best that could've been done given the need for backwards compatibility, and they should have a significant impact on the security of iMessage and the platform as a whole," the Google researcher added.

Apple has prioritized user privacy over targeted advertising, and Google is spelling out today what that means for itself as well as game and app developers. From a report: Apple is advocating its App Tracking Transparency (ATT) policy, which will require developers to ask for permission when they use personal data from other companies' apps and websites for advertising purposes, even if they already have user consent. It will ask users to opt-in if they will allow advertisers to use their data via the Identifier for Advertisers, or IDFA. Many tests show that many users won't allow it, and that means they won't be so easily tracked for advertising purposes. This change could have a huge impact on the mobile advertising ecosystem, as it could make it harder to target users efficiently with advertising.

Eric Seufert, a user acquisition expert, said on Monday that he believes that Facebook could suffer a 7% revenue hit -- a loss of tens of billions of dollars over time -- as a result of the IDFA changes, and it's no secret that Facebook isn't happy about the impact on itself as well as small businesses. At our Driving Game Growth event on Tuesday, Facebook leaders pointed to the IDFA changes as creating uncertainty for mobile games in 2021. Google, which could also be impacted by the policy change, has stayed out of the fray -- until today. "Today we're sharing how Google is helping our community prepare, as we know that developers and advertisers in the iOS ecosystem are still figuring out how to adapt," said Christophe Combette, group product manager for Google Ads in a blog post.

Long-time Slashdot reader SonicSpike shares a recent Wired.com article that purports to reveal "how law enforcement gets around your smartphone's encryption." Lawmakers and law enforcement agencies around the world, including in the United States, have increasingly called for backdoors in the encryption schemes that protect your data, arguing that national security is at stake. But new research indicates governments already have methods and tools that, for better or worse, let them access locked smartphones thanks to weaknesses in the security schemes of Android and iOS.

Cryptographers at Johns Hopkins University used publicly available documentation from Apple and Google as well as their own analysis to assess the robustness of Android and iOS encryption. They also studied more than a decade's worth of reports about which of these mobile security features law enforcement and criminals have previously bypassed, or can currently, using special hacking tools...

once you unlock your device the first time after reboot, lots of encryption keys start getting stored in quick access memory, even while the phone is locked. At this point an attacker could find and exploit certain types of security vulnerabilities in iOS to grab encryption keys that are accessible in memory and decrypt big chunks of data from the phone. Based on available reports about smartphone access tools, like those from the Israeli law enforcement contractor Cellebrite and US-based forensic access firm Grayshift, the researchers realized that this is how almost all smartphone access tools likely work right now. It's true that you need a specific type of operating system vulnerability to grab the keys — and both Apple and Google patch as many of those flaws as possible — but if you can find it, the keys are available, too...

Forensic tools exploiting the right vulnerability can grab even more decryption keys, and ultimately access even more data, on an Android phone.
The article notes the researchers shared their findings with the Android and iOS teams — who both pointed out the attacks require physical access to the target device (and that they're always patching vulnerabilities).

We have learned that Brad Cox, computer scientist known mostly for creating the Objective-C programming language with his business partner Tom Love, died on January 2, 2021 at his residence. He was 76. From a Legacy.com post: Brad was born on May 2, 1944 in Fort Benning, Georgia, to the late Nancy Hinson Cox and Dewey McBride Cox of Lake City, South Carolina. Brad grew up on the family's dairy farm in South Carolina but found himself most interested in science. After graduating from Lake City High School, he received his Bachelor of Science Degree in Organic Chemistry and Mathematics from Furman University, and his Ph.D. from the Department of Mathematical Biology at the University of Chicago, and worked on an early form of neural networks. He soon found himself more interested in computers and got a job at International Telephone and Telegraph (ITT) and later joined Schlumbeger -- Doll Research Labs, and ultimately formed his own Connecticut startup, Productivity Products International (PPI) later named Stepstone.

Among his first known software projects, he wrote a PDP-8 program for simulating clusters of neurons. He worked at the National Institutes of Health and Woods Hole Oceanographic Institute before moving into the software profession. Dr. Cox was an entrepreneur, having founded the Stepstone Company together with Tom Love for releasing the first Objective-C implementation. Stepstone hoped to sell "ICPaks" and Dr. Cox focused on building his ICPak libraries and hired a team to continue work on Objective-C, including Steve Naroff. The late Steve Jobs', NeXT, licensed the Objective-C language for it's new operating system, NEXTSTEP. NeXT eventually acquired Objective- C from Stepstone. Objective-C continued to be the primary programming language for writing software for Apple's OS X and iOS.

As of December 8, Apple has been requiring developers to provide privacy label information to their apps, outlining the data that each app collects from users when it is installed. Many app developers have included the labels, but there's one notable outlier -- Google. schwit1 shares a report from MacRumors: Google has not updated its major apps like Gmail, Google Maps, Chrome, and YouTube since December 7 or before, and most Google apps have to date have not been updated with the Privacy Label feature. The Google Translate, Google Authenticator, Motion Stills, Google Play Movies, and Google Classroom apps do include privacy labels even though they have not been updated recently, but Google's search app, Google Maps, Chrome, Waze, YouTube, Google Drive, Google Photos, Google Home, Gmail, Google Docs, Google Assistant, Google Sheets, Google Calendar, Google Slides, Google One, Google Earth, YouTube Music, Hangouts, Google Tasks, Google Meet, Google Pay, PhotoScan, Google Voice, Google News, Gboard, Google Podcasts, and more do not display the information.

On January 5, Google told TechCrunch that the data would be added to its iOS apps "this week or the next week," but both this week and the next week have come and gone with no update. It has now been well over a month since Google last updated its apps. "To lightly paraphrase former Google CEO Eric Schmidt: If your data harvesting is something that you don't want anyone to know, maybe you shouldn't be doing it in the first place," adds schwit1.

Right-wing social media platform Parler, which has been offline since Amazon Web Services dropped it like a hot potato last week, has reappeared on the Web with a promise to return as a fully functional service "soon." Ars Technica reports: Although the platform's Android and iOS apps are still defunct, this weekend its URL once again began to resolve to an actual website, instead of an error notice. The site at the moment consists solely of the homepage, which has a message from company CEO John Matze. "Now seems like the right time to remind you all -- both lovers and haters -- why we started this platform," the message reads. "We believe privacy is paramount and free speech essential, especially on social media. Our aim has always been to provide a nonpartisan public square where individuals can enjoy and exercise their rights to both. We will resolve any challenge before us and plan to welcome all of you back soon. We will not let civil discourse perish!"

Parler, however, was deplatformed in the first place explicitly because the content it allowed to flourish was anything but "civil," and as multiple reports have made clear, the service backend was designed with basically no thought given to privacy. Meanwhile, the path Parler appears to be taking to rejoin the Internet is a shady one paved for it by other explicitly extremist, white nationalist platforms that lost access to more mainstream services after being tied to terrorism. [...] Parler has apparently secured hosting from Epik to bring itself back online. Epik is best known for helping far-right extremist platform Gab to come back online a short time after a Gab user committed a mass murder at a Pittsburgh synagogue in 2018; it has also provided services to other white nationalist, anti-Semitic, and neo-Nazi platforms including 8chan (now known as 8kun) and The Daily Stormer. Multiple security researchers have also pointed out that Parler appears to have secured the services of DDos-Guard, a cloud services company based in Russia. UPDATE: According to Krebs On Security, "DDoS-Guard is about to be relieved of more than two-thirds of the Internet address space the company leases to clients -- including the Internet addresses currently occupied by Parler."

Apple has plugged a hole that allowed users to sideload iOS and iPad applications to M1 Macs that were never intended to run on desktop. The server-side change ensures that only applications that app developers have flagged as optimized for Mac will run. From a report: Late last year, Apple launched its first Macs running on its own ARM-based custom CPU called the M1, as opposed to the Intel chips that have been used in Macs for several years. These new machines included the entry-level 13-inch MacBook Pro, the MacBook Air, and the low-end Mac mini. Since those machines now share an architecture with iPhones and iPads, which also have closely related ARM-based chips, it became possible to run iOS and iPadOS apps natively on Macs that were equipped with the M1 chip. Apple supported this by listing iPhone and iPad apps that passed an automated test on the Mac App Store, provided developers did not opt out of having the app listed. However, many developers did opt out for any number of reasons: because they did not feel the app provided a good user experience on laptops or desktops; because they offer preferred alternative ways to access services or content on Macs; because they don't have the time to support an additional platform; or any number of other reasons.

At WWDC last year, Apple announced it was going to support Chrome-style browser extensions (the WebExtensions API) in Safari. Months after Safari 14's release, are developers bothering with Safari? Jason Snell: The answer seems to be largely no -- at least, not yet. The Mac App Store's Safari extensions library seems to be largely populated with the same stuff that was there before Safari 14 was released, though there are some exceptions. [...] So in the end, what was the net effect of Apple's announcement of support for the WebExtensions API in Safari? It's a work in progress. A very small number of extensions have appeared in the App Store, and it seems quite likely that others will follow at their own pace. Other developers remain utterly unmoved by all the extra work moving to Safari would entail. It strikes me that Apple could rapidly drive adoption of Safari extensions if it would finally bring that technology to iOS. Targeting the Mac is nice, but if they could target iPads and iPhones, we might really have something.

Privacy-focused search engine DuckDuckGo reached a major milestone in its 12-year-old history last week when it recorded on Monday its first-ever day with more than 100 million user search queries. From a report: The achievement comes after a period of sustained growth the company has been seeing for the past two years, and especially since August 2020, when the search engine began seeing more than 2 billion search queries a month on a regular basis. The numbers are small in comparison to Google's 5 billion daily search queries but it's a positive sign that users are looking for alternatives. DuckDuckGo's popularity comes after the search engine has expanded beyond its own site and now currently offers mobile apps for Android and iOS, but also a dedicated Chrome extension. More than 4 million users installed these apps and extension, the company said in a tweet in September 2020.

An anonymous reader quotes a report from Ars Technica: Today Google's senior VP of Hardware, Rick Osterloh, announced Google has closed its acquisition of Fitbit. The $2.1 billion deal was announced back in November 2019, which kicked off a regulatory review process from governments around the world concerned about Google's influence over the Internet and the data it can collect on users. Normally, Osterloh announcing "Google has completed its acquisition of Fitbit, and I want to personally welcome this talented team to Google" would mean Google has cleared its worldwide regulatory gauntlet. Google's announcement today is highly unusual since the DOJ has not yet cleared the deal. As the US Department of Justice told New York Times reporter Cecilia Kang, "The Antitrust Division's investigation of Google's acquisition of Fitbit remains ongoing." Australian regulators also haven't announced a final decision on the merger. It also seems particularly provocative for Google to do something like this while it is also dealing with a DOJ antitrust investigation.

Fitbit's CEO, president, and co-founder, James Park, also has a blog post today, saying "many of the things you know and love about Fitbit will remain the same. We'll stay committed to doing what's right, to putting your health and wellness at the center of everything we do, and to offering a no-one-size-fits-all approach with choices that work across both Android and iOS." [...] Google's side of the story is laid out in the blog post, with Osterloh saying "This deal has always been about devices, not data, and we've been clear since the beginning that we will protect Fitbit users' privacy... Fitbit users' health and wellness data won't be used for Google ads and this data will be separated from other Google ads data." Google also says it won't do anything crazy with Android, like lock all Android phones exclusively to Fitbit wearables, which apparently was something the EU was worried about.

An anonymous reader shares a report: WhatsApp has enjoyed unrivaled reach in India for years. By mid-2019, the Facebook-owned app had amassed over 400 million users in the country. Its closest app rival at the time was YouTube, which, according to the company's own statement and data from mobile insight firm App Annie, had about 260 million users in India then. Things have changed dramatically since. In the month of December, YouTube had 425 million monthly active users on Android phones and tablets in India, according to App Annie, the data of which an industry executive shared with TechCrunch. In comparison, WhatsApp had 422 million monthly active users on Android in India last month.

Factoring in the traction both these apps have garnered on iOS devices, WhatsApp still assumes a lead in India with 459 million active users, but YouTube is not too far behind with 452 million users. With China keeping its doors closed to U.S. tech giants, India emerged as the top market for Silicon Valley and Chinese companies looking to continue their growth in the last decade. India had about 50 million internet users in 2010, but it ended the decade with more than 600 million. Google and Facebook played their part to make this happen.