Apple has reportedly agreed to show Russian users a prompt to preinstall some apps when they're first using an iPhone or other device. From a report: If a user doesn't select one of the government-approved apps, it won't be installed, according to newspaper Vedomosti. The company is said to have agreed to the measure to abide by a law that comes into effect on April 1st. The Russian-made apps include Mail.ru's email service, the MIR payment system, social networks VKontakte and Odnoklassniki and Kaspersky Lab antivirus software, according to RFE. Android users reportedly won't get to opt out and all of the software will be preinstalled on those devices.

Adobe today officially unveiled Photoshop for Apple's M1 chip, claiming it provides a 50% performance boost compared to analogous Intel Macs. The Next Web reports: While Adobe has had a beta version of Photoshop for M1 available since November, this is the first time it's been available widely. Previously Apple users could run the Intel version through Apple's Rosetta technology, which didn't fully take advantage of the new chip's power.

[According to Adobe:] "Our internal tests show a wide range of features running an average of 1.5X the speed of similarly configured previous generation systems. Our tests covered a broad scope of activities, including opening and saving files, running filters, and compute-heavy operations like Content-Aware Fill and Select Subject, which all feel noticeably faster. Our early benchmarking also shows that some operations are substantially faster with the new chip." Be warned that there are a couple of recent features missing on the M1 version of the app, most notably inviting others to edit cloud documents and preset syncing.

samleecole writes from a report via Motherboard: MacOS is generally intended as a desktop operating system, and while it's a very functional operating system, Apple expects it to run on a single piece of hardware. As any developer or infrastructure architect can tell you, virtualization is an impressive technique that allows programmers and infrastructure pros to expand reach and scale things up far beyond a single user. A Github project that has gotten a bit of attention in recent months aims to make MacOS scalable in ways that it has basically never been.

Its secret weapon is a serial code generator: Docker-OSX has the ability to generate serial codes for unique pieces of MacOS hardware, and its main developer, an open-source developer and security researcher who goes by the pseudonym Sick Codes, recently released a standalone serial code generator that can replicate codes for nonexistent devices by the thousands. Just type in a command, and it will set up a CSV file full of serial codes.

"You can generate hundreds and thousands of serial numbers, just like that," Sick Codes, who used a pseudonym due to the nature of his work, said. "And it just generates a massive list." A valid serial code allows you to use Apple-based tools such as iMessage, iCloud, and the App Store inside of MacOS. It's the confirmation that you're using something seen as valid in the eyes of Apple. "I actually went through, and I've got like 15 iMac Pros in my Apple account now, and it says that they're all valid for iMessage," the creator said.

"iCloud has had the occasional service issue, but its latest problem appears to be highly... specific," writes Engadget: Actor and author Rachel True claims iCloud has effectively locked her out of her account due to the way her last name was written. Reportedly, her Mac thought lower-case "true" was a Boolean (true or false) flag, leading the iCloud software on the computer to seize up. The problem has persisted for over six months, she said.

True said she'd spent hours talking to customer service, and that Apple hadn't stopped charging her for service. She could switch to the free tier, although she'd also lose most of her online storage if she did.
True has apparently resorted to imploring desperately in tweets to both @Apple and @AppleSupport. "Now that I a layman have explained problem to you a giant computer company, could u fix...?"

"A thing I've learned about life so far is I hate being the test case."

"When I get a dog I'm naming it Boolean Bobby Drop Tables True"

Hackaday writes: In the early years of personal computing there were a slew of serious contenders. A PC, a Mac, an Atari ST, an Amiga, and several more that all demanded serious consideration on the general purpose desktop computer market. Of all these platforms, the Amiga somehow stubbornly refuses to die. The Amiga 1200+ from [Jeroen Vandezande] is the latest in a long procession of post-Commodore Amigas, and as its name suggests it provides an upgrade for the popular early-1990s all-in-one Amiga model.

It takes the form of a well-executed open-source printed circuit board that's a drop-in replacement for the original A1200 motherboard... The catch: it does require all the custom Amiga chips from a donor board...

It's fair to say that this is the Amiga upgrade we'd all have loved to see in about 1996 rather than waiting until 2019.
Mike Bouma (Slashdot reader #85,252) shares a recent video showing the latest update of AmigaOS 4 by Hyperion Entertainment, and reminds us of two "also active" Amiga OS clones — AROS and MorphOS.

Further reading: Little Things That Made Amiga Great.

An anonymous reader quotes a report from Ars Technica: Microsoft has released a new version of source-code editor Visual Studio Code that runs natively on Apple Silicon Macs like the MacBook Air, MacBook Pro, and Mac mini models with Apple M1 chips. The change came in Visual Studio Code 1.54 (now 1.54.1, thanks to a bug fix update), which is available as a universal 64-bit binary, as is standard for apps with Apple Silicon support. That said, Microsoft also offers downloads for x86-64 and Arm64 versions specifically, if desired.

There are no differences in features between the two versions, of course. And the non-Apple Silicon version worked just fine on M1 Macs previously via Rosetta, but Microsoft says M1 users can expect a few optimizations with the new binaries: "We are happy to announce our first release of stable Apple Silicon builds this iteration. Users on Macs with M1 chips can now use VS Code without emulation with Rosetta, and will notice better performance and longer battery life when running VS Code. Thanks to the community for self-hosting with the Insiders build and reporting issues early in the iteration." Other key features in Visual Studio Code 1.54 include the ability to retain terminal processes on window reload, performance improvements in the Windows version, product icon themes, improvements when viewing Git history timeline entries, and various accessibility improvements.

The market for virtual and augmented reality products has developed slower than expected, but Microsoft is seeking to accelerate the sector by making it much easier for people to connect from different locations and with different kinds of devices. From a report: The ultimate goal of the new effort, dubbed Microsoft Mesh, is to allow, for example, a person in an office in New York using Facebook's Oculus VR headset to collaborate with a person in Seattle using Microsoft's HoloLens 2 glasses. Using Mesh-compatible hardware and software, the two people would be able to see virtual representations of each other appearing in their offices, talking and moving in real time as if they were present. And both would be able to see a common view of virtual charts or digital objects projected before them that they could change or manipulate. At least that's the vision that Microsoft demonstrated for the first time in public at its Ignite conference on Tuesday. Ultimately, Mesh could be used to connect users on a variety of VR gadgets, PC and Mac computers, and smartphones.

But getting all the various hardware makers to agree to use Microsoft's standards may not be as easy as the company hopes. And while Microsoft's HoloLens and popular collaboration software like Teams and Office will be compatible with Mesh, other software developers also may be wary of depending on the company for such critical functionality. "This has been the dream for mixed reality, the idea from the very beginning," Alex Kipman, a Microsoft technical fellow working on the project, explained at the demonstration. "You can actually feel like you're in the same place with someone sharing content or you can teleport from different mixed reality devices and be present with people even when you're not physically together."

Dustin Curtis, writing on his blog: About ten days ago, when I went to update a few apps in the App Store on my Mac, I was met with a curious error: "Your account has been disabled in the App Store and iTunes." The internet is filled with stories from people whose Google accounts were locked for unexplained reasons, causing them to lose all of their data, including years of email, so I was somewhat concerned. But I'd never heard of similar cases involving Apple's services, and I wouldn't expect such behavior from a customer-focused company like Apple, so I figured it was a glitch and made a mental note to try again later. The next day, Music.app stopped working: "You cannot login because your account has been locked."

Now I was genuinely worried. I checked my phone and neither the App Store nor Apple Music would work there, either. A few minutes later, Calendar popped up an error â" it had stopped syncing. I immediately tried to call Apple Support from my Mac, but Apple's Handoff feature had been disabled as well. The first person I spoke to at Apple spent a while researching the issue and then told me there was nothing she could do but escalate the issue, and that I should expect a call "hopefully" within the next day. I asked what the problem might be, and she seemed as confused as I was. Although some Apple services were still working, like iMessage (thank God) and Photos, I was terrified that more services would suddenly become inaccessible or that I would lose the considerable amount of data I have stored in iCloud.

A couple of days later, I became impatient and contacted Apple Support again. This time, the representative mumbled something about Apple Card before saying that he also had no power to help me. Apple ID was a different department, he said, and they could only be contacted by email. He emailed them. I continued to wait. The next time I tried to use my Apple Card, it was declined. Strange. I checked the Wallet app, and the balance was below the limit. I remembered the Apple support representative mumbling about Apple Card, so I did some digging through my email to see if I could find a connection. As it turns out, my bank account number changed in January, causing Apple Card autopay to fail. Then the Apple Store made a charge on the card. Less than fifteen days after that, my App Store, iCloud, Apple Music, and Apple ID accounts had all been disabled by Apple Card. Tim Sweeney, CEO of Epic Games, which is fighting a legal battle with Apple, offered some commentary on this: "It's terrifying how much leverage Apple has over consumers and developers by integrating everything, locking us all in, and exerting total control. Normal companies respect the natural boundaries that exist between platforms and services. Apple does not! For Apple, every choke point they create is both a profit center and a lever to exert control. After blocking Fortnite updates from over a billion iOS users, Apple threatened to block Sign in With Apple -- which they forced us to adopt -- affecting Fortnite players on 7 platforms."

"The impressive performance and battery life gains of the new M1 MacBooks have created a historic discontinuity in the normally placid resale market," reports ZDNet: Should you spend $800 for a one year old MacBook Air when for $200 more you could get a MacBook Air with several times the performance and 50 percent better battery life? That's a question savvy buyers are asking themselves. Not surprisingly, the most common answer seems to be "Nope...!"

Unless buyers check out a site like Everymac they won't know what they're missing. The bottom-of-the-line M1 MacBook Air has a Geekbench 5 multiprocessor score that is almost 2.5x that of the early 2020, top-of-the-line quad-core I7. For 80 percent of the price. And most users won't need to spend the extra cash for the 16GB version since the memory management and page swapping is so efficient. The contrast is even more striking when comparing MacBook Pros. Not only is the 13" MacBook Pro faster on the Geekbench 5 single and multiprocessor benchmarks than the top-of-the-line 16" MacBook Pro Intel I9, it's less than half the price. And it isn't just a single benchmark. Search on "M1 MacBook Pro vs 16 MacBook Pro" on YouTube to see multiple videos testing real world workloads on both machines.
The article also makes a prediction: "The best deals on Intel 'Books are yet to come, assuming Apple offers retailers price protection.

"There seems to be a large inventory of Intel based MacBooks, and they have to clear them out before the end of 2021."

Apple has added iPhone and MacBook repairability scores to its online store in France to comply with a new French law that came into effect this year. From a report: MacGeneration reports that the rating takes into account features like how easily a device can be disassembled and the availability of repair manuals and spare parts. Links to each product's final score, with details for how they were calculated, are available on this support page. The ratings for Apple's products vary between products and generations. Its iPhone 12 lineup all have scores of six out of 10 for example, while the previous year's iPhone 11s are rated lower at between 4.5 and 4.6. The improvement, according to the detailed scoring assessment, is due to the newer iPhones being easier to dismantle than the previous year's models, and spare parts being cheaper compared to the cost of the phone itself. There's less of a spread between the company's different MacBook models, whose scores range from 5.6 to 7.

John Gruber, writing at DaringFireball: In my piece yesterday about email tracking images ("spy pixels" or "spy trackers"), I complained about the fact that Apple -- a company that rightfully prides itself for its numerous features protecting user privacy -- offers no built-in defenses for email tracking. A slew of readers wrote to argue that Apple Mail does offer such a feature: the option not to load any remote resources at all. It's a setting for Mail on both Mac and iOS, and I know about it -- I've had it enabled for years. But this is a throwing-the-baby-out-with-bath-water approach. What Hey offers -- by default -- is the ability to load regular images automatically, so your messages look "right", but block all known images from tracking sources (which are generally 1 x 1 px invisible GIFs).

Typical users are never going to enable Mail's option not to load remote content. It renders nearly all marketing messages and newsletters as weird-looking at best, unreadable at worst. And when you get a message whose images you do want to see, when you tell Mail to load them, it loads all of them -- including trackers. Apple Mail has no knowledge of spy trackers at all, just an all-or-nothing ability to turn off all remote images and load them manually. Mail's "Load remote content in messages" option is a great solution to bandwidth problems -- remember to turn it on the next time you're using Wi-Fi on an airplane, for example. It's a terrible solution to tracking. No one would call it a good solution to tracking if Safari's only defense were an option not to load any images at all until you manually click a button in each tab to load them all. But that's exactly what Apple offers with Mail. "Don't get me started on how predictable this entire privacy disaster was, once we lost the war over whether email messages should be plain text only or could contain embedded HTML. Effectively all email clients are web browsers now, yet don't have any of the privacy protection features actual browsers do," he adds.

Over the past week, some M1 Mac users have been reporting alarming SSD health readings, suggesting that these devices are writing extraordinary amounts of data to their drives. From a report: Across Twitter and the MacRumors forums, users are reporting that M1 Macs are experiencing extremely high drive writes over a short space of time. In what appear to be the most severe cases, M1 Macs are said to be consuming as much as 10 to 13 percent of the maximum warrantable total bytes written (TBW) value of its SSD. Flash memory on solid-state drives, such as those used in Macs, can only be written to a certain number of times before they become unstable. Software ensures that load is spread evenly across the drive's memory cells, but there is a point when the drive has been written to so many times that it can no longer reliably hold data. So while SSD wear is normal, expected behavior, drives should not be exhausting their ability to hold data as quickly as some M1 Macs seem to be. One user showed that their M1 Mac had already consumed one percent of its SSD after just two months, while another M1 Mac with a 2TB SSD had already consumed three percent. The total data units written for these machines is running into many terabytes, when they would normally be expected to be considerably lower.

Long-time Slashdot reader b0s0z0ku quotes Ars Technica: A previously undetected piece of malware found on almost 30,000 Macs worldwide is generating intrigue in security circles, which are still trying to understand precisely what it does and what purpose its self-destruct capability serves.

Once an hour, infected Macs check a control server to see if there are any new commands the malware should run or binaries to execute. So far, however, researchers have yet to observe delivery of any payload on any of the infected 30,000 machines, leaving the malware's ultimate goal unknown. The lack of a final payload suggests that the malware may spring into action once an unknown condition is met.

Also curious, the malware comes with a mechanism to completely remove itself, a capability that's typically reserved for high-stealth operations. So far, though, there are no signs the self-destruct feature has been used, raising the question why the mechanism exists. Besides those questions, the malware is notable for a version that runs natively on the M1 chip that Apple introduced in November, making it only the second known piece of macOS malware to do so...

The malware has been found in 153 countries with detections concentrated in the US, UK, Canada, France, and Germany.
Red Canary, the security firm that discovered the malware, has named it "Silver Sparrow." Long-time Slashdot reader Nihilist_CE writes: First detected in August of 2020, the Silver Sparrow malware is interesting in several unsettling ways. It uses the macOS Installer Javascript API to launch a bash process to gain a foothold into the user's system, a hitherto-unobserved method for bypassing malware detection. This bash shell is then used to invoke macOS's built-in PlistBuddy tool to create a LaunchAgent which executes a bash script every hour. This is the command and control process, which downloads a JSON file containing (potentially) new instructions.

Besides the novel installation method, Silver Sparrow is also mysterious in its payload: a single, tiny binary that does nothing but open a window reading "Hello, World!" (in v1, which targets Intel Macs) or "You did it!" (in v2, which is an M1-compatible fat binary). These "bystander binaries" are never executed and appear to be proofs-of-concept or placeholders for future functionality.

In a company blog post Thursday, Microsoft released more details about the new, flat-price version of its Office productivity software coming later this year. The company emphasized that while its main focus remains in its subscription offering, Microsoft 365, it will release the one-time purchase Office 2021 for those who aren't ready to move to the cloud. From a report: Office 2021 will arrive in two versions: one for commercial users, called Office LTSC (which stands for Long Term Servicing Channel), and one for personal use. Office LTSC will include enhanced accessibility features, performance improvements across Word, Excel and PowerPoint, and visual improvements, like dark mode support across apps. It's meant for specialty situations, as opposed to for an entire organization, such as process control devices on the manufacturing floor that are not connected to the internet. More details about pricing and new features for the commercial version and the personal version will be announced when Office 2021 is closer to general availability. Both will have both Windows and Mac versions, and will ship with the OneNote app. They will also ship both 32- and 64-bit versions, according to the post. Microsoft will support the software for five years, and said it does not plan to change the price at the time of release.

New numbers show 2020 was the first year that Chromebooks outsold Macs, posting impressive market share gains at the expense of Windows. From a report: Computers powered by Google's Chrome OS have outsold Apple's computers in individual quarters before, but 2020 was the first full year that Chrome OS took second place. Microsoft's Windows still retained majority market share, but also took a big hit as both Chrome OS and macOS gained share. The milestone is based on numbers provided by IDC, which doesn't typically break out sales based on device operating system. But when we went looking to see how the pandemic may have impacted the PC market, IDC analyst Mike Shirer confirmed the findings to GeekWire. This is a big win for Google and a warning for both Apple and Microsoft. It also signals to app and game developers that Chrome OS can no longer be ignored. Frankly, any business that provides a product or service over the internet should be setting aside resources to ensure the Chrome OS experience is comparable to Windows and macOS.

If you're one of the few people still using a PC with an x86 processor more than 15 years old, here's another reason to upgrade: the devices will not work with future Chrome releases, starting with version 89 of the world's most popular browser. TechSpot reports: The Chromium development team announced that CPUs older than the Intel Core 2 Duo and AMD Athlon 64 would not work with Chrome 89 and future versions as they do not meet the new minimum instruction set requirement of SSE3 (Supplemental Streaming SIMD Extensions 3) support. So, if you are still sporting an Intel Atom or Celeron M CPU, you'll soon be counting Chrome as one of the many programs that are incompatible with your potato-like rig. The devices will no longer attempt to install the browser, while running it will result in the software crashing. It's noted that the change only affects Windows as Chrome OS, Android and, Mac already require SSE3 support.

PCWorld reviews Intel's recently-released benchmarks claiming Apple's M1 isn't faster than their 11th gen Core i7-1185G7 processor, among other things. Here are the claims Intel makes (visit the article to read PCWorld's "take" on each claim): MacBook M1 is slower than Core i7: Intel says in the WebXPRT 3 test, using the same version of Chrome for both the Core i7 system as well as the Arm-native MacBook, Intel takes the lead. The Intel chip was largely ahead in WebXPRT 3, and the x86 chip was nearly three times faster in finishing the photo enhancement test. Intel doesn't just use WebXPRT 3, though. It also shows the Core i7 pummeling the M1 in a PowerPoint-to-PDF export, and in multiple Excel macros by a factor of 2.3x. And yes, Intel used the Arm-native versions of Office for its tests.

Core i7 Crushes M1 in AI: For content creation tasks, Intel showed the Core i7 to be about 1.12x faster than the M1 in performing a 4K AVC-to-HEVC/H.265 file conversion. In this benchmark, they had the MacBook using the M1-native version of Handbrake. But the real destruction happens once you get to Topaz Lab's Gigapixel AI and Denoise AI, with the Intel Core chip crushing the M1 in AI-based noise removal and enlargement. Or maybe "crushing" is too nice a term, as it's more like the Core i7 outpaces the M1 by so much, the M1 wishes it had never been designed.

M1 doesn't support all the features: Intel also gives itself the lead in Adobe Premiere Pro, using the beta M1 native version in Auto Reframe, exporting to H.264 and H.265. They're decent wins, but come on, the code is still in beta for the Mac. That said, Intel points out that important features like Content Aware Fill are outright disabled on the beta version, and that's a concern. If the native version of Photoshop comes out, and there are critical features missing from it, that's a huge problem for Apple (and Adobe).

You can't be faster if you can't run it: For gaming, we see a bit of a back and forth between the Apple M1 and Core i7 in games that actually work on the MacBook. Intel doesn't let it end there, though, and decides to embarrass Apple further by showing the numerous games where the MacBook scores a 0 because game support just doesn't exist. Intel points out that "countless more" games "don't run on the M1," and then for good measure, it rushes Apple's bench with a list 10 more games you can't play on the M1 MacBook: Overwatch, Crysis Remastered, Halo MCC, Red Dead Redemption 2, PUBG, Monster, Hunter World, Doom Eternal, Microsoft Flight Simulator 2020, Apex Legends, and Rainbow Six Siege.

MacBook wouldn't win Evo certification: You know that fancy Intel Evo program that tries to improve laptop performance in key areas that annoy consumers? Well, Intel pretty much says that if Apple submitted the M1 MacBook to the same program that Asus, Dell, HP, Lenovo, MSI, Acer and others go through, it would be rejected. The reason? Intel says the M1 MacBook is too slow in doing things that anger consumers, such as "switch to Calendar" in Outlook, "start video conference Zoom" and "select picture menu" in PowerPoint.

Great battery life?: Perhaps the most shocking claim Intel showed deals with battery life. While performance tests can be cherry picked by those looking to prove an outcome, battery life usually can't be disputed. Apple's official claim gives the M1 MacBook up to 18 hours of battery life using Apple TV app to watch a 1080p video with the brightness set to "8 clicks from the bottom." Apple also claims up to 15 hours browsing 25 "popular" websites with the same "8 clicks" criteria. When Intel pitted a MacBook Air M1 against an Acer Swift 5 with a Core i7-1165G7, however, it found both basically dead even. The MacBook Air came in at 10 hours and 12 minutes, and the Acer Swift 5 lasted 10 hours and 6 minutes. The difference? Intel said it used Safari to watch a Netflix stream with tabs open with the screen set to a relatively bright 250 nits. On the Acer, Safari was subbed out for Chrome, but the brightness and Netflix remained the same. Intel did add that Apple's "8 clicks up" is about 125 nits of brightness on the MacBook Air which is pretty dim.

All kinds of things just don't work on the M1: Intel didn't just get into the performance of the M1. It also said it found the MacBook Pro had serious shortcomings, such as an inability to use more than one display with a Thunderbolt dock. And while the PC can use gaming headsets, eGPUs, a third-party finger print reader, Wacom Drawing tablet and Xbox Controller, Intel said it found the MacBook Pro simply doesn't work with eGPUs, and had multiple issues with other devices. That's just hardware incompatibility. Intel's rap battle with Apple also highlights issues with plug-ins for Ableton, Bitwig Studio, Avid Pro Tools, FL Studio, Motu and many others.

It's been estimated that there are 24 million developers in the world. 14 million of them now use Microsoft's Visual Studio Code (VS Code) as their IDE, reports ZDNet, with five million new users arriving in 2020.

Julia Liuson, corporate vice president of Microsoft's developer division, tells them why: "The strategy for VS Code is really to support our any, any, any strategy. You can be a developer working with any programming language, working on any operating system and develop any kind of software." VS Code runs on macOS, Windows 10, and multiple distributions of Linux, it supports Arm64 on Linux, and runs on Raspberry Pi and Chromebooks. It's also available in preview form
Part of VS Code's popularity is the breadth of language extensions for C++, C#, Python and various Python libraries for data scientists, Java, and JavaScript/Typescript... "We have almost two million Python developers using VS Code and well over a million C++ developers using VS Code," said Liuson. "And even our Java usage is approaching one million...."

Liuson also talked about Microsoft's inner source approach to software development. The company doubled down on inner source in 2019, and recently highlighted its inner-source approach as a factor that mitigated the threat of the SolarWinds hackers accessing its source code. Microsoft didn't make up the term inner source and the approach means taking open-source development practices and applying them inside a single organization. GitHub and GitHub's Enterprise Server fits snuggly with this approach to help organizations collaborate but do so in private.

"Inner source means if you have private IP, but you're inviting other teams within the company to collaborate with you. That's the fundamental difference between open source and inner source. Today, it's very common in large enterprise..."

An anonymous reader quotes a report from Ars Technica: Homebrew now supports Apple Silicon natively, albeit not with every package. The volunteer Homebrew team made the announcement on the Homebrew blog alongside today's release. While the native support is not yet comprehensive, it bridges the gap significantly, and users can still run Terminal via Rosetta 2 to do what they can't yet while running natively on Apple Silicon. The Homebrew blog post says "we welcome your help" in providing bottles for all packages moving forward.

Here's the full bullet point on Apple Silicon in the Homebrew 3.0.0 release notes: "Apple Silicon is now officially supported for installations in /opt/homebrew. formulae.brew.sh formula pages indicate for which platforms bottles (binary packages) are provided and therefore whether they are supported by Homebrew. Homebrew doesn't (yet) provide bottles for all packages on Apple Silicon that we do on Intel x86_64 but we welcome your help in doing so. Rosetta 2 on Apple Silicon still provides support for Intel x86_64 in /usr/local."

DDoS-for-hire services have found a way to abuse Plex Media servers to bounce junk traffic and amplify distributed denial of service (DDoS) attacks, security firm Netscout said in an alert this week. From a report: The company's alert warns owners of devices that ship with Plex Media Server, a web application for Windows, Mac, and Linux that's usually used for video or audio streaming and multimedia asset management. The app can be installed on regular web servers or usually ships with network-attached storage (NAS) systems, digital media players, or other types of multimedia-streaming IoT devices. Netscout says that when a server/device running a Plex Media Server app is booted and connected to a network, it will start a local scan for other compatible devices via the Simple Service Discovery Protocol (SSDP). The problem comes when a Plex Media Server discovers a local router that has SSDP support enabled. When this happens, the Plex Media Server will add a NAT forwarding rule to the router, exposing its Plex Media SSDP (PMSSDP) service directly on the internet on UDP port 32414. Since the SSDP protocol has been known for years to be a perfect vector to amplify the size of a DDoS attack, this makes Plex Media servers a juicy and untapped source of DDoS bots for DDoS-for-hire operations.