Apple's latest iPhones stuck with Face ID as the singular method of biometric authentication in an era when people are wearing face masks everywhere they go. This inevitably means having to enter your passcode constantly throughout the day. But Apple has come up with a stopgap solution that should make it easier to get into your phone during mask life -- as long as you've got an Apple Watch. From a report: As first reported by Pocket-lint, the new iOS 14.5 update, which went into beta today, uses the Apple Watch on your wrist to quickly authenticate and unlock your iPhone. Apple already offers this convenient trick on the Mac, but now it's coming to the iPhone as well. It works similarly here. You lift your iPhone to turn on the screen, and you'll feel a little nudge of haptic feedback on your Apple Watch to indicate that your iPhone has been unlocked. The devices must be in close proximity for this to work in the first place, which is a measure to keep your data secure. (If the Apple Watch is locked, this won't work either.) And this Apple Watch shortcut is only good for unlocking your iPhone; App Store and iTunes purchases will still require other authentication if your face is covered. And as a final security check, you'll still be asked to put in your passcode every few hours even when unlock with Apple Watch is enabled.

Apple yesterday released a new version of iCloud for Windows 10, and based on multiple reports and the update's release notes, it appears Apple is introducing an iCloud Passwords extension designed for Chrome, which will allow "iCloud" Keychain passwords to be used on Windows machines. MacRumors reports: As noted by The 8-Bit and a few other sources, the update adds support for an "iCloud" Passwords Chrome extension." After installing version 12 of "iCloud" for Windows, there's a new "Passwords" section in the app with an "iCloud" Keychain logo. When attempting to use the feature, though, the "iCloud" app prompts users to download a Chrome extension, but the extension is broken and clicking to install leads to a broken web page.

This is likely a bug that will be addressed in the near future, and it sounds like when it is functional, Windows users will be able to access their "iCloud" Keychain passwords on their Windows machines through the Chrome browser. It's not clear if Apple will offer this extension for Mac machines in the future as well, and it appears to be limited to Windows at this time.

Microsoft has a habit of reigniting the Mac vs. PC conflict for its Surface ads, and this time it's going after Apple's Touch Bar. In a new TV commercial, aired during Sunday night's NFL championship games, Microsoft pits Apple's MacBook Pro against the company's Surface Pro 7. It's a chance for Microsoft to mock Apple's Touch Bar in a TV commercial for the first time. From a report: "Mac gave me this little bar, but why can't they just give me a whole touchscreen?" asks a boy comparing the two laptops. That's something that some MacBook Pro users have been calling for, or just the removal of the Touch Bar altogether. Apple is now reportedly planning a redesign for the MacBook Pro later this year, with the Touch Bar rumored to be replaced by physical function keys. Elsewhere in the ad, Microsoft tries to position the Surface Pro 7 as a gaming device. "It is a much better gaming device," claims the ad, which is an unusual way to frame Microsoft's popular Surface device.

Google released Chrome 88 this week — and besides improving its dark mode support, they removed support for both Adobe Flash and FTP.

PC World calls it "the end of two eras." The most noteworthy change in this update is what's not included. Chrome 88 lays Adobe Flash and the FTP protocol to rest. RIP circa-2000 Internet.

Neither comes as a surprise, though it's poetic that they're being buried together. Adobe halted Flash Player downloads at the end of 2020, making good on a promise made years before, and began blocking Flash content altogether a couple weeks later. Removing Flash from Chrome 88 is just Google's way of flushing the toilet.

On the other hand, FTP isn't dead, but it is now for Chrome users. The File Transport Protocol has helped users send files across the Internet for decades, but in an era of prolific cloud storage services and other sharing methods, its use has waned. Google started slowly disabling FTP support in Chrome 86, per ZDNet, and now you'll no longer be able to access FTP links in the browser. Look for standalone FTP software instead if you need it, such as FileZilla.

That's not all. Mac users should be aware that Chrome 88 drops support for OS X 10.10 (OS X Yosemite). Yosemite released in 2014 and received its last update in 2017...

But Google killing Flash and FTP might be the footnotes that hit old-school web users in the feels.
Chrome 88 will also block non-encrypted downloads originating from an encrypted page, the article reports. And the Verge notes Chrome also offers less intrusive website permission requests (as an experimental feature enabled from chrome://flags/#permission-chip ), while Bleeping Computer describes Chrome 88's new experimental feature for searching through all your open tabs.

And Chrome's blog points out some additional features under the hood: Chrome 88 will heavily throttle chained JavaScript timers for hidden pages in particular conditions. This will reduce CPU usage, which will also reduce battery usage. There are some edge cases where this will change behavior, but timers are often used where a different API would be more efficient, and more reliable.

According to Bloomberg, Apple is working on a thinner and lighter version of the MacBook Air, the company's mass-market laptop. From the report: The new computer is planned to be released during the second half of this year at the earliest or in 2022. It will include Apple's MagSafe charging technology and a next-generation version of the company's in-house Mac processors. Apple has discussed making the laptop smaller by shrinking the border around the screen, which will remain 13-inches. The current model weighs 2.8 pounds and is just over half an inch at its thickest point.

The company considered building a larger version of the MacBook Air with a 15-inch screen, but Apple isn't moving forward with this for the next generation, said the people, who asked not to be identified discussing private matters. An Apple spokeswoman declined to comment. The new model will have a pair of USB 4 ports for connecting external devices. The new laptop is destined to be a higher-end version of the current MacBook Air, which is expected to remain in the company's lineup as an entry-level offering. Apple last updated the product in November with its own M1 Mac chip, replacing a processor from Intel Corp. Last Friday, Bloomberg reported on Apple's upgraded MacBook Pro laptops that are expected to be released later this year. They too will feature MagSafe charging, but unlike the MacBook Air, Apple's planning to bring back an SD card slot so users can insert memory cards from digital cameras. The Touch Bar is also going.

Beeper is a forthcoming app from the founder of Pebble that claims to be a hub for all your messaging services, including support for iMessage on Android. Gizmodo reports: Instead of managing half a dozen apps for keeping in touch with friends, family, and co-workers, Beeper allows you to funnel everything to one interface. According to its website, the app supports 14 external messaging platforms as well as its own Beeper network. But the company's claim that it brings iMessage to Android, Windows, or Linux devices could be a killer feature for anyone who's suffered through the embarrassment of the green bubble.

Apple likes to keep its in-house products exclusive to its own hardware, so this claim is a bit surprising, but Beeper says it's figured out a workaround. On its website, it explains: "Beeper has two ways of enabling Android, Windows and Linux users to use iMessage: we send each user a Jailbroken iPhone with the Beeper app installed which bridges to iMessage, or if they have a Mac that is always connected to the internet, they can install the Beeper Mac app which acts as a bridge. This is not a joke, it really works!"

Okay, the part about using an always-connected Mac as a bridge is not unprecedented, but the idea of sending users jailbroken upcycled iPhones is a little bonkers. Eric Migicovsky, founder of the Pebble smartwatch company and partner at Beeper, took to Twitter to insist that the jailbreak plan is legit and that he currently has 50 iPhone 4s ready for the task. In an update, Migicovsky tells Gizmodo that "Beeper encrypts all messages on the client before they reach our servers. We cannot decrypt any message contents."

The services compatible with Beeper include: Whatsapp, Facebook Messenger, iMessage, Android Messages (SMS), Telegram, Twitter, Slack, Hangouts, Instagram, Skype, IRC, Matrix, Discord, Signal, and Beeper network.

niftydude writes: Developers at ARM virtualisation company Corellium have managed to get Ubuntu 20.04 up and running on the new Apple Silicon Mac Mini. And we're not talking 'it boots and prints a load of text' running here. No, this is the full Ubuntu desktop experience -- and it's already being described as "completely usable!"

Pretty impressive, right? Even Linus Torvalds wasn't convinced that Linux M1 support was likely to appear anytime soon. He told ZDnet's Steven J. Vaughan-Nichols that: "...the main problem with the M1 for me is the GPU and other devices around it, because that's likely what would hold me off using it because it wouldn't have any Linux support unless Apple opens up." Not that he was entirely wrong, mind. GPU support is indeed a current sticking point in Correllium's Linux for M1 effort. It doesn't (yet) include M1 GPU support meaning 'graphics' handling is done via software rendering.

Apple's first crack at a headset is designed to be a pricey, niche precursor to a more ambitious augmented reality product that will take longer to develop, Bloomberg reported Thursday, citing people with knowledge of the matter. From the report: The initial device has confronted several development hurdles and the company has conservative sales expectations, illustrating how challenging it will be to bring this nascent consumer technology to the masses. As a mostly virtual reality device, it will display an all-encompassing 3-D digital environment for gaming, watching video and communicating. AR functionality, the ability to overlay images and information over a view of the real world, will be more limited. Apple has planned to launch the product as soon as 2022, going up against Facebook's Oculus, Sony's PlayStation VR and headsets from HTC, the people said. They asked not to be identified discussing private plans.

Apple's typical playbook involves taking emerging consumer technology, such as music players, smartphones, tablets and smartwatches, and making it reliable and easy to use for everyone. This time, though, Apple isn't looking to create an iPhone-like hit for its first headset. Instead, the company is building a high-end, niche product that will prepare outside developers and consumers for its eventual, more mainstream AR glasses. The plans suggest that Apple's first headset will be far more expensive than those from rivals, which cost about $300 to $900. Some Apple insiders believe the company may sell only one headset per day per retail store. Apple has roughly 500 stores, so in that scenario, annual sales would be just over 180,000 units -- excluding other sales channels. That would put it on par with other pricey Apple products, such as the $5,999 Mac Pro desktop computer.

Apple has plugged a hole that allowed users to sideload iOS and iPad applications to M1 Macs that were never intended to run on desktop. The server-side change ensures that only applications that app developers have flagged as optimized for Mac will run. From a report: Late last year, Apple launched its first Macs running on its own ARM-based custom CPU called the M1, as opposed to the Intel chips that have been used in Macs for several years. These new machines included the entry-level 13-inch MacBook Pro, the MacBook Air, and the low-end Mac mini. Since those machines now share an architecture with iPhones and iPads, which also have closely related ARM-based chips, it became possible to run iOS and iPadOS apps natively on Macs that were equipped with the M1 chip. Apple supported this by listing iPhone and iPad apps that passed an automated test on the Mac App Store, provided developers did not opt out of having the app listed. However, many developers did opt out for any number of reasons: because they did not feel the app provided a good user experience on laptops or desktops; because they offer preferred alternative ways to access services or content on Macs; because they don't have the time to support an additional platform; or any number of other reasons.

At WWDC last year, Apple announced it was going to support Chrome-style browser extensions (the WebExtensions API) in Safari. Months after Safari 14's release, are developers bothering with Safari? Jason Snell: The answer seems to be largely no -- at least, not yet. The Mac App Store's Safari extensions library seems to be largely populated with the same stuff that was there before Safari 14 was released, though there are some exceptions. [...] So in the end, what was the net effect of Apple's announcement of support for the WebExtensions API in Safari? It's a work in progress. A very small number of extensions have appeared in the App Store, and it seems quite likely that others will follow at their own pace. Other developers remain utterly unmoved by all the extra work moving to Safari would entail. It strikes me that Apple could rapidly drive adoption of Safari extensions if it would finally bring that technology to iOS. Targeting the Mac is nice, but if they could target iPads and iPhones, we might really have something.

An anonymous reader quotes a report from ZDNet: For more than five years, macOS users have been the targets of a sneaky malware operation that used a clever trick to avoid detection and hijacked the hardware resources of infected users to mine cryptocurrency behind their backs. Named OSAMiner, the malware has been distributed in the wild since at least 2015 disguised in pirated (cracked) games and software such as League of Legends and Microsoft Office for Mac, security firm SentinelOne said in a report published this week. But the cryptominer did not go entirely unnoticed. SentinelOne said that two Chinese security firms spotted and analyzed older versions of the OSAMiner in August and September 2018, respectively. But their reports only scratched the surface of what OSAMiner was capable of, SentinelOne macOS malware researcher Phil Stokes said yesterday.

The primary reason was that security researchers weren't able to retrieve the malware's entire code at the time, which used nested run-only AppleScript files to retrieve its malicious code across different stages. As users installed the pirated software, the boobytrapped installers would download and run a run-only AppleScript, which would download and run a second run-only AppleScript, and then another final third run-only AppleScript. Since "run-only" AppleScript come in a compiled state where the source code isn't human-readable, this made analysis harder for security researchers.

In addition to upgraded MacBook Pros, Bloomberg reports that Apple is also "planning the first redesign of its iMac all-in-one desktop computer since 2012," as it shifts away from Intel to its own silicon. From the report: The new models will slim down the thick black borders around the screen and do away with the sizable metal chin area in favor of a design similar to Apple's Pro Display XDR monitor. These iMacs will have a flat back, moving away from the curved rear of the current iMac. Apple is planning to launch two versions -- codenamed J456 and J457 -- to replace the existing 21.5-inch and 27-inch models later this year, the people said, asking not to be identified because the products are not yet announced. The new models will use next-generation versions of Apple's Mac processors like the upcoming 2021 MacBook Pros. The iMac redesign will be one of the biggest visual updates to any Apple product this year, according to people familiar with the company's roadmap.

Apple is also working on a pair of new Mac Pro desktop computers, its priciest Mac machines that don't come with a screen included, the people said. One version is a direct update to the current Mac Pro and will continue to use the same design as the version launched in 2019. Apple has discussed continuing to use Intel processors for that model rather than moving to its own chips. The second version, however, will use Apple's own processors and be less than half the size of the current Mac Pro. The design will feature a mostly aluminum exterior and could invoke nostalgia for the Power Mac G4 Cube, a short-lived smaller version of the Power Mac, an earlier iteration of the Mac Pro. Apple has also reportedly started development of a cheaper external monitor to sell alongside the Pro Display XDR. "The cheaper monitor would feature a screen geared more for consumer than professional use and wouldn't have the brightness and contrast ratio of the top-tier offering," reports Bloomberg.

Intel's new CEO, Pat Gelsinger, doesn't start his new role until February, but he's already prepping the company to take on Apple's M1 chips. From a report: The Oregonian, a local newspaper in Oregon where Intel maintains a large presence, reports that the chip maker held an all-hands company meeting yesterday, and Gelsinger attended. "We have to deliver better products to the PC ecosystem than any possible thing that a lifestyle company in Cupertino" makes, Gelsinger reportedly told Intel employees. "We have to be that good, in the future." Intel has been facing increased competition from both Apple and AMD recently. Apple announced its transition to its own silicon back in June, calling it a "historic day for the Mac." The transition has gone well, with M1-based Macs providing impressive performance and battery life compared to existing Intel-based Macs.

Apple is planning upgraded MacBook Pro laptops this year with much faster processors, updated displays and the return of its magnetic charger, Bloomberg reported Friday, citing a person with knowledge of the plans. From the report: The new laptops are planned to come in two screen sizes, a 14-inch model codenamed J314 and a 16-inch version internally dubbed J316. Both will use next-generation versions of Apple's in-house Mac processors, upgraded with more cores and enhanced graphics, the person said, asking not to be named as the products are not yet announced.

These devices will mark Apple's first high-end laptops to move away from Intel components. The company updated its base 13-inch MacBook Pro with its own M1 chip in November, to broadly positive reviews. Beyond the more powerful chips, Apple is also planning to step up the displays in its new MacBook Pros with brighter, higher-contrast panels, the person said. The new Macs will look similar to the current versions, albeit with minor design changes. Apple is aiming to launch the new MacBook Pros around the middle of the year. A major change to the new computers will be how they charge. Over the past five years, Apple has relied on USB-C ports for both power and data transfer on its laptops, making them compatible with other manufacturers' chargers. But the company is now bringing back MagSafe, the magnetic power adapter that means any accidental yanking of the power cable would simply detach it from the laptop rather than pull down the entire computer.

Apple has removed a controversial feature from the macOS operating system that allowed 53 of Apple's own apps to bypass third-party firewalls, security tools, and VPN apps installed by users for their protection. From a report: Known as the ContentFilterExclusionList, the list was included in macOS 11, also known as Big Sur. The exclusion list included some of Apple's biggest apps, like the App Store, Maps, and iCloud, and was physically located on disk at: /System/Library/Frameworks/NetworkExtension.framework/Versions/Current/Resources/Info.plist.

Its presence was discovered last October by several security researchers and app makers who realized that their security tools weren't able to filter or inspect traffic for some of Apple's applications. Security researchers such as Patrick Wardle, and others, were quick to point out at the time that this exclusion risk was a security nightmare waiting to happen. They argued that malware could latch on to legitimate Apple apps included on the list and then bypass firewalls and security software.

Intel CEO Bob Swan is set to step down effective Feb. 15. From a report: VMWare CEO Pat Gelsinger will take over the position, sources told CNBC. Intel's stock was up about 13% in premarket trading following the news. VMWare's stock was down nearly 5%. Swan was named CEO in January 2019 after serving as interim CEO for seven months. During Swan's tenure, Intel has suffered blows from competitors. Over the summer, Intel reported that its latest generation chips would be delayed while AMD's were already shipping inside laptops. Apple announced in the fall that it would use its own proprietary chips in its Mac computers, breaking a 15-year partnership with Intel for its chip supplies.

When a user attempts to load a Flash game or content in a browser such as Chrome, the content now fails to load and instead displays a small banner that leads to the Flash end-of-life page on Adobe's website. While this day has long been coming, with many browsers disabling Flash by default years ago, it is officially the end of a 25-year era for Flash, first introduced by Macromedia in 1996 and acquired by Adobe in 2005. Mac Rumors reports: "Since Adobe will no longer be supporting Flash Player after December 31, 2020 and Adobe will block Flash content from running in Flash Player beginning January 12, 2021, Adobe strongly recommends all users immediately uninstall Flash Player to help protect their systems," the page reads. Adobe has instructions for uninstalling Flash on Mac, but note that Apple removed support for Flash outright in Safari 14 last year.

Adobe first announced its plans to discontinue Flash in 2017. "Open standards such as HTML5, WebGL, and WebAssembly have continually matured over the years and serve as viable alternatives for Flash content," the company explained. Adobe does not intend to issue Flash Player updates or security patches any longer, so it is recommended that users uninstall the plugin.

An anonymous reader quotes a report from ZDNet: Security firm Intezer Labs said it discovered a covert year-long malware operation where cybercriminals created fake cryptocurrency apps in order to trick users into installing a new strain of malware on their systems, with the obvious end goal of stealing victims' funds. The campaign was discovered last month in December 2020, but researchers said they believe the group began spreading their malware as early as January 8, 2020. Intezer Labs said the hackers relied on three cryptocurrency-related apps for their scheme. The fake apps were named Jamm, eTrade/Kintum, and DaoPoker, and were hosted on dedicated websites at jamm[.]to, kintum[.]io, and daopker[.]com, respectively.

The first two apps claimed to provide a simple platform to trade cryptocurrency, while the third was a cryptocurrency poker app. All three apps came in versions for Windows, Mac, and Linux, and were built on top of Electron, an app-building framework. But Intezer researchers say the apps also came with a little surprise in the form of a new malware strain that was hidden inside, which the company's researchers named ElectroRAT. Intezer researchers believe the malware was being used to collect cryptocurrency wallet keys and then drain victims' accounts. To spread the trojanized applications, Intezer says the hackers posted ads for the three apps and their websites on niche cryptocurrency forums, or they used social media accounts. Because of a quirk in the malware's design, which retrieved the address of its command and control server from a Pastebin URL, Intezer believes this operation infected around 6,500 users -- the total number of times the Pastebin URLs were accessed.

Microsoft is building a universal Outlook client for Windows and Mac that will also replace the default Mail & Calendar apps on Windows 10 when ready. This new client is codenamed Monarch and is based on the already available Outlook Web app available in a browser today. From a report: Project Monarch is the end-goal for Microsoft's "One Outlook" vision, which aims to build a single Outlook client that works across PC, Mac, and the Web. Right now, Microsoft has a number of different Outlook clients for desktop, including Outlook Web, Outlook (Win32) for Windows, Outlook for Mac, and Mail & Calendar on Windows 10. Microsoft wants to replace the existing desktop clients with one app built with web technologies. The project will deliver Outlook as a single product, with the same user experience and codebase whether that be on Windows or Mac. It'll also have a much smaller footprint and be accessible to all users whether they're free Outlook consumers or commercial business customers. I'm told the app will feature native OS integrations with support for things like offline storage, share targets, notifications, and more. I understand that it's one of Microsoft's goals to make the new Monarch client feel as native to the OS as possible while remaining universal across platforms by basing the app on the Outlook website.

An anonymous reader shares a report: Malware operators who want to know the location of the victims they infect usually rely on a simple technique where they grab the victim's IP address and check it against an IP-to-geo database like MaxMind's GeoIP to get a victim's approximate geographical location. While the technique isn't very accurate, it is still the most reliable method of determining a user's actual physical location based on data found on their computer. However, in a blog post last month, Xavier Mertens, a security researcher with the SANS Internet Storm Center, said he discovered a new malware strain that is using a second technique on top of the first. This second technique relies on grabbing the infected user's BSSID. Known as a "Basic Service Set Identifier," the BSSID is basically the MAC physical address of the wireless router or access point the user is using to connect via WiFi. You can see the BSSID on Windows systems by running the command: netsh wlan show interfaces | find "BSSID" Mertens said the malware he discovered was collecting the BSSID and then checking it against a free BSSID-to-geo database maintained by Alexander Mylnikov.