The FBI has solved the final mystery surrounding a strain of Mac malware that was used by an Ohio man to spy on people for 14 years. From a report: The man, 28-year-old Phillip Durachinsky, was arrested in January 2017, and charged a year later, in January 2018. US authorities say he created the Fruitfly Mac malware (Quimitchin by some AV vendors) back in 2003 and used it until 2017 to infect victims and take control off their Mac computers to steal files, keyboard strokes, watch victims via the webcam, and listen in on conversations via the microphone. Court documents reveal Durachinsky wasn't particularly interested in financial crime but was primarily focused on watching victims, having collected millions of images on his computer, including many of underage children. Durachinsky created the malware when he was only 14, and used it for the next 14 years without Mac antivirus programs ever detecting it on victims' computers. [...]

Describing the Fruitfly/Quimitchin malware, the FBI said the following: "The attack vector included the scanning and identification of externally facing services, to include the Apple Filing Protocol (AFP, port 548), RDP or other VNC, SSH (port 22), and Back to My Mac (BTMM), which would be targeted with weak passwords or passwords derived from third party data breaches." In other words, Durachinsky had used a technique know as port scanning to identify internet or network-connected Macs that were exposing remote access ports with weak or no passwords.

An anonymous reader quotes the Bay Area Newsgroup: Apple turned against customers and its own employees after the death of co-founder and CEO Steve Jobs, a fired Apple engineer claims in a lawsuit. "No corporate responsibility exists at Apple since Mr. Jobs' death," Darren Eastman alleged in a lawsuit over his termination and patents related to his work at the Cupertino tech giant... Eastman, who is representing himself in court, started working as an engineer for Apple in 2006, largely because Jobs was interested in his idea for a low-cost Mac for education, and wanted him hired straight out of graduate school, Eastman said in the filing. Eastman claims to have invented the "Find my iPhone" function. When Jobs headed Apple, he told Eastman to notify him of any unresolved problems with the company's products, and employees in general were expected to raise such concerns, Eastman said in a lawsuit filed Thursday in Santa Clara County Superior Court.

That changed after Jobs died in 2011, he claimed. "Many talented employees who've given part of their life for Apple were now regularly being disciplined and terminated for reporting issues they were expected to (report) during Mr. Jobs tenure," Eastman alleged in the filing. "Cronyism and a dedicated effort to ignore quality issues in current and future products became the most important projects to perpetuate the goal of ignoring the law and minimizing tax. Complying with the law and paying what's honestly required is taboo at Apple, with judicial orders and paying tax (of any kind) representing the principal frustration of Apple's executives... Notifying Mr. Cook about issues (previously welcomed by Mr. Jobs) produces either no response, or, a threatening one later by your direct manager," Eastman claimed.... "There's no accountability, with attempts at doing the right thing met with swift retaliation."
Eastman even claims one Apple employee was fired for reporting toxic mold in the building, and alleges that employees were intentionally fired just before their stock options were vesting. In fact, his entire lawsuit is over just $165,000 worth of Apple common stock, plus $326,400 in damages, $32,640 in interest -- and resolution of an alleged patent-ownership issue.

Apple "declined to comment on the claims made in the lawsuit."

Motherboard's Lorenzo Franceschi-Bicchierai spoke with Patrick Wardle, the ex-NSA hacker who's organizing a security conference exclusively dedicated to Macs. Despite what Apple has famously promoted in the mid 2000s that Macs don't get "PC viruses," Mac computers do in fact have bugs, vulnerabilities, and even malware targeted at them. From the report: "People are peeking behind the curtain and realizing that the facade of Mac security is not always what it's cracked to be," Wardle told Motherboard in a phone interview. "Any company that designs software is going to have issues -- but Apple has perfected the art of a flawless public facade that masks many security issues." Wardle would know. After hacking primarily Windows computers at Fort Meade, for the last few years Wardle been finding several issues in MacOS, so many that he considers himself a "thorn" on Apple's side. But his conference is not an exercise in shaming or finger pointing, Wardle said he hopes to educate and teach people about Mac security, especially now that so many companies are using Macs as their corporate computers.

The conference is called Objective By the Sea, a wordplay on Objective-See, the name of Wardle's suite of free Mac security products (which is itself a wordplay on Apple's main programming language called Objective-C.) It will be held in Maui, Hawaii on November 3 and 4. The conference will be free for residents of Hawaii, and for patrons of Objective-See. That's why Wardle said he can't afford to pay for all speakers to attend, but he had no trouble finding people who wanted to participate. One group that doesn't want to come to Maui, at least for now, is Apple. Wardle said he reached out to the company, essentially offering it carte blanche to talk about whatever it wanted. But the company, so far, has not responded, according to him.

An anonymous reader writes: For those unfamiliar with the project, Stage 9 is a beautiful virtual recreation of the Enterprise ship from Star Trek: The Next Generation for Windows, Mac and Linux. More experience than game, Stage 9 was built by fans over two years in the Unreal Engine. "There were two things that we were always pretty careful with," says project leader 'Scragnog'. "We made it as clear as we possibly could that this was NOT an officially licensed project. We had no affiliation with CBS or Paramount and the IP we were trying our hardest to treat with respect was not our own. We were fans, just creating fan art."

In an announcement this week, Scragnog reminded fans that no one involved in the project was in it for any financial reason and everyone was well aware that throwing money into the mix could be a problem. However, the team says it has always known that they could be shut down at any time on the whim of a license holder because in this world, that's what can happen. Unfortunately, that day has come all too soon for the impressive project. Stage 9 was hit with an intellectual property complaint from CBS just over two weeks ago and has now been shut down.

"This letter was a cease-and-desist order," Scragnog explains. "Over the next 13 days we did everything we possibly could to open up a dialog with CBS. The member of the CBS legal team that issued the order went on holiday for a week immediately after sending the letter through, which slowed things down considerably."

harrymcc writes: On September 24, 1993, Myst debuted as a CD-ROM game for the Mac. The mysterious, puzzle-laden adventure went on to become the best-selling game title of its era, inspiring a devoted following and multiple sequels. But for all the people who loved Myst, it was disrespected by many in the gaming industry, who found it less engaging than previous adventures and even blamed it for killing of the earlier genre of more action-packed adventuring. Over at Fast Company, Benj Edwards provides an appreciation of Myst but also talks to game designers about the game's still-complex legacy.

Slack has acquired email app company Astro to incorporate it into Slack channels. As a result, Astro is shutting down its Mac, iOS, Android, Alexa and Slack apps. They're no longer taking new users and existing ones will lose access on October 10th. Engadget reports: The company said that with over 50 million channels created to date, they're increasingly becoming the platform through which teams collaborate. "But we all know that email is still a very important tool in business communication," said Slack. "We've taken some steps to make it possible to integrate email into Slack, but now we're in a position to make that interoperability much simpler and much, much more powerful."

Last year, Astro launched its Astrobot Slack app, which let users manage their emails and check their Office 365 or Google calendars from within Slack. It also allowed them to do one search to pull up results from both Slack and email. "As we explored with Slack how to bring together messaging, email and calendar, it became evident that we would have the biggest impact on workplace communications and realize our original vision by joining Slack," the company said.

Apple on Monday made available to the public macOS Mojave -- aka macOS 10.14, the latest major update to its desktop operating system. From a report: Though Mojave is substantially focused on under-the-hood improvements, it includes several major changes to the Mac's Finder, as well as a small collection of apps that were ported from iOS. On the Finder side, Apple has introduced a system-wide Dark Mode, which optionally reskins the entire user interface with black or dark gray elements. Dark Mode pairs up with Dynamic Desktop, which can automatically adjust certain desktop images in sync with time of day (morning, afternoon, and evening) changes. Minutes ahead of the release, Patrick Wardle, chief researcher officer at Digita Security, tweeted a video of an apparent privacy feature bypass that's designed to prevent apps from improperly accessing a user's personal data. From a report: For years, Macs have forced apps to ask for permission before accessing your contacts and calendar after some iOS apps were caught uploading private data. Apple said at its annual developer conference this year that it would expand the feature to include apps asking for permission to access the camera, microphone, email and backups. Wardle told TechCrunch that his findings are "not a universal bypass" of the feature, but that the bug could allow a malicious app to grab certain protected data, such as a user's contacts, when a user is logged in.

Microsoft is releasing Office 2019 for Windows and Mac today. The update is designed for businesses and consumers that haven't opted into Microsoft's Office 365 service with monthly feature updates. The Verge: Office 2019 is essentially a subset of features that have been added to Office 365 over the past three years, and it includes updates to Word, Excel, PowerPoint, Outlook, Project, Visio, Access, and Publisher. Office 2019 will include a roaming pencil case and ribbon customizations across all Office apps. Microsoft is also bringing focus mode to Word, alongside a new translator, and accessibility improvements. Morph transitions, SVG and 3D model support, play in-click sequence, and 4k video export are all coming to PowerPoint. According to VentureBeat, which cites a Microsoft executive, the new versions of Word, Excel, PowerPoint, Outlook won't receive future updates.

According to Bloomberg, the next round of China tariffs won't include devices that receive and transmit voice data, a category that includes the Apple Watch, Fitbits, Sonos Speakers, and a host of other fitness trackers and home assistants. The Verge reports: The White House recently backed down on the rate at which the imports would be taxed. Over the weekend, The Wall Street Journal reported that listed goods would likely be taxed at only 10 percent. As recently as August, President Trump had considered setting the rate at 25 percent. Customs documents describe the category in vague terms, listing the devices as "machines for the reception, conversion and transmission or regeneration of voice, images or other data." But that vague category has come to encompass a wide range of personal tech, including fitness trackers and personal voice assistants. The Apple Watch, AirPods, HomePod, BeatsWL, AirPort, and Time Capsule all fall under the code, according to a letter submitted by Apple to the U.S. Trade Representative. Other categories of Apple products will still be affected by the tariff, including adapters, the Mac mini, and any circuit boards or internal components shipped individually to the United States.

Longtime Slashdot reader DrYak writes: Phoronix is reporting that multiple users who all use Wine and DXVK compatibility layers have seen their Overwatch accounts banned by Blizzard. Previously, Blizzard has stated: "playing on Linux or even a Mac while on an emulated Windows environment is not bannable." But users report on Reddit getting banned simply after testing some rendering options. Tech support has answered that they are escalating the ticket and trying to take a closer look, hoping to avoid this from happening to other Linux users. According to Phoronix, the most common explanation for the bans "is a false-positive from Blizzard's anti-cheat technology having issue with DXVK."

According to reliable analyst Ming-Chi Kuo, Apple's next iPad Pro will be switching from the Lightning Port to USB-C for the first time. It will also ship with a new 18W USB-C charger. 9to5Mac reports: While Kuo's memo mentions both the new iPad Pro with USB-C (wow) and MacBook with Touch ID, it's still unclear at this point if we'll see the iPad and Mac on stage at Wednesday's event, or if the September 12 date will be dedicated to iPhone and Apple Watch. That would be a massive change for an iOS device but one that could improve the iPad accessory ecosystem -- and be a boon for productivity. Kuo's memo does not suggest that this is simply a change from USB-A Lightning to USB-C Lightning but instead an actual port change on the iPad itself. Daring Fireball's John Gruber notes that if Kuo is correct, "someone with a Mac, iPhone, and iPad would need three different headphone adapters." That takes courage, Apple...

Ahead of Apple's big iPhone event later this week, the company appears to be grappling with a PR problem: Third-party apps on both its desktop and mobile app stores have been caught doing shady stuff. Last week, Apple pulled a top selling app from the App Store, a month after it was alerted about it, but only hours after it started making headlines. Since then, tens of new iOS apps have been caught indulging in a similar offense -- collecting and selling users data such as GPS coordinates, WiFi network IDs and more. Amid all of this, more desktop apps, curiously all from security service provider Trend Micro -- have been caught collecting browser history and information about users' computers. Apple has pulled Trend Micro's apps from the store. Do note that Trend Micro still has some apps -- both for desktop and mobile -- listed on the store. Would be interesting to learn what sort of conversations Trend Micro and Apple have had in the recent days. BleepingComputer: The apps are Dr. Antivirus, Dr. Cleaner, and Dr. Unarchiver, all under the developer account Trend Micro, Incorporated. Until removal, all products were top-sellers, with thousands of positive reviews that averaged their ratings between 4.6 and 4.9. The first public report of a Trend Micro product in the App Store engaging in shady activities came in late 2017 when user PeterNopSled told Malwarebytes forum members that "that his Mac was taken over by Open Any Files: RAR Support," and it did not let him open Word or Excel files. Trend Micro's privacy and data collection disclosure.

"Have you heard of Google AMP? That stands for Accelerated Mobile Pages, and it's a way of making webpages so that they load faster and display more efficiently on mobile devices. Oh, and it puts your website under Google's control."

That's Mac Observer co-founder Bryan Chaffin, linking to an "interesting reading" titled "Google AMP Can Go To Hell." AMP allows Google to basically take over hosting the web as well. The Google AMP Cache will serve AMP pages instead of a website's own hosting environment, and also allow Google to perform their own optimisations to further enhance user experience. As a side benefit, it also allows Google full control over content monetisation. No more rogue ad networks, no more malicious ads, all monetisation approved and regulated by Google. If anything happens that falls outside of the AMP standard's restrictions, the page in question simply becomes AMP-invalid and is ejected from the AMP cache -- and subsequently from Google's results. At that point the page might as well not exist any more....

The easy thing to do is to simply obey. Do what Google says. Accept their proclamations and jump when they tell you to. Or you could fight back. You could tell them to stuff it, and find ways to undermine their dominance. Use a different search engine, and convince your friends and family to do the same. Write to your elected officials and ask them to investigate Google's monopoly. Stop using the Chrome browser. Ditch your Android phone. Turn off Google's tracking of your every move. And, for goodness sake, disable AMP on your website.

Don't feed the monster -- fight it.
Here's how web developer Macieg Ceeglowski put it in 2015. "Out of an abundance of love for the mobile web, Google has volunteered to run the infrastructure, especially the user tracking parts of it." But are these assessments too harsh? Leave your own thoughts in the comment.

Should webmasters resist Google's push for AMP pages?

An anonymous reader quotes a report from Bloomberg: Apple, the world's most valuable company, said proposed U.S. tariffs on $200 billion worth of products imported from China will raise prices for some of its popular consumer goods such as the Apple Watch and AirPods headphones. The Mac mini desktop computer, Apple Pencil stylus accessory for iPads, various chargers and adapters and tooling equipment used to manufacturer and design some products in the U.S. will also be affected, the Cupertino, California-based company told the Office of U.S. Trade Representative in a letter dated Sept 5.

The company said the tariffs would "show up as a tax on U.S. consumers" and "increase the cost of Apple products that our customers have come to rely on in their daily lives." Beyond the core products, Apple said accessories like the HomePod speaker, some Beats speakers, AirPort and Time Capsule internet routers, the Magic Mouse and Magic Trackpad, and leather cases for the iPhone, iPad, MacBook and Apple Pencil would be affected. It said some of the parts it relies on for product development, including processors and research equipment, would also be hit by the tariffs. On Friday, President Trump said he's prepared to impose tariffs on an additional $267 billion in Chinese imports, which would affect almost every category of consumer goods, according to analysts. He cites unfair trade practices as a reason for the tariffs.

An anonymous reader shares a report: When a group of security researchers reported a popular but allegedly dangerous Mac App Store utility to Apple, noting that it secretly sends "highly sensitive user information" to an "unscrupulous" developer, Apple's response for a full month was surprising: "crickets." But after a cluster of bad press today, Apple finally pulled Yongming Zhang's app Adware Doctor: Anti Malware &Ad from the store.

Three researchers, including former NSA staffer Patrick Wardle, Thomas Reed of Malwarebytes, and "privacy fighter" @privacyis1st, said in a blog post today that they reported Adware Doctor last month for sending a user's Safari, Chrome, Firefox, and App Store browsing histories alongside lists of the Mac's apps and running processes to a server in China. Despite receiving confirmation that Apple received the report, the $5 app remained in the App Store -- where it was ranked the number one paid app across all Mac utilities.

An anonymous reader writes: Mozilla today released Firefox 62 for Windows, Mac, Linux, and Android. The release builds on Firefox Quantum, which the company calls "by far the biggest update since Firefox 1.0 in 2004." Version 62 brings variable fonts, automatic dark theme on macOS, and better scrolling on Android. Firefox 62 for the desktop is available for download now on Firefox.com, and all existing users should be able to upgrade to it automatically. As always, the Android version is trickling out slowly on Google Play. The latest iOS version is available on Apple's App Store.

An anonymous reader writes: Google today launched Chrome 69 for Windows, Mac, and Linux, Android, and iOS, just a few days after the browser's 10-year anniversary. The release includes a new design, more powerful omnibox, updated password manager, more accurate autofill, plenty of developer-specific changes, and a slew of security improvements. You can update to the latest version now using Chrome's built-in updater, download it directly from google.com/chrome, or grab it from Google Play and Apple's App Store. Further reading: As Chrome turns 10, Google bets on AI and AR, and Google wants to kill the URL.

Black Pixel, which acquired popular Mac RSS reader app NetNewsWire in 2011, announced this week that the brand name is returning to the founder Brent Simmons. From the announcement: Since acquiring NetNewsWire from Newsgator in 2011, we've invested a great deal in the continued development and support of the product suite including the addition of a free sync service. Unfortunately, the ongoing cost of support and feature development for these products require more dedicated resources than we are able to provide. With that in mind, today we are removing all versions of the app from sale. We'll continue to run the sync service for another 60 days, then take it offline at the end of October. Brent Simmons, who founded the app, shared what he plans to do with the brand name: [...] I want to thank them [Black Pixel] for a second thing: their incredible generosity in bringing it back to me. When I asked them about it, they told me they'd already been discussing it. There was never a need to convince them: they thought it was the right thing to do before I even said a word.

[...] You probably know that I've been working on a free and open source reader named Evergreen. Evergreen 1.0 will be renamed NetNewsWire 5.0 -- in other words, I've been working on NetNewsWire 5.0 all this time without knowing it! It will remain free and open source, and it will remain my side project. (By day I'm a Marketing Human at The Omni Group, and I love my job.) Black Pixel will stop selling their versions of the app, and will turn off the syncing system and end customer support -- all of which is detailed in their announcement. (Important note: I will not get any customer data from them, nor will I be doing support for Black Pixel's NetNewsWire.)

I want one thing: to make the very best versions of NetNewsWire ever made. And, along the way, I'd love to have your help. Nothing to Download Yet I don't actually have an app bearing the name NetNewsWire ready to download yet. I will have test versions ready soon, though. It's still going to be a while before the final version of 5.0 ships. The Mac community has been thrilled about the announcement. Daniel Jalkut, founder of blogging tool MarsEdit, said, "I appreciate Black Pixel's decision to return NetNewsWire to Brent Simmons. It was the right move strategically, but also very humanistic." Federico Viticci, a prolific blogger on Apple ecosystem, said, "Congrats Brent Simmons on bringing NetNewsWire home. The Mac can use a modern RSS reader that can stand the test of time." John Gruber, a columnist on Apple ecosystem, said, "Black Pixel did a great job taking over NetNewsWire, but times change, and companies change. Handing the NetNewsWire name back to Brent was a classy move, but completely unsurprising to me, knowing George and the other folks at Black Pixel."

nehumanuscrede writes: Adobe ruffled a lot of feathers when they decided to cease selling their standalone products and go subscription only. While a lot of folks complained, it doesn't seem to have had much (if any) of a negative impact on Adobe financially. Now, according to PetaPixel, Adobe is poised to cease support for older operating systems by depriving those users of upgrades and updates beyond the cut-off date, even though those users are paying customers (and have been for years). I'm curious if those impacted will upgrade to the more modern OS, or simply find an alternative to Adobe software (paid or otherwise).

Personally, I'm still rocking Windows 7 because, in my opinion, there isn't anything wrong with it. So, in the near future, it seems I'm going to have a choice to make: Drop my Creative Cloud subscription, upgrade to an OS I absolutely loathe like Windows 10, or continue paying full price for apps that will cease receiving updates (which was Adobe's whole argument for going with the subscription method in the first place so folks will always have the latest updated software). What are your thoughts? "Your Windows won't be supported if you haven't upgraded beyond the Windows 10 Anniversary Update (v1607) that was released to the public on August 2, 2016," reports PetaPixel. "And if you're on a Mac, you won't be supported if you haven't upgraded beyond Mac OS 10.11 (El Capitan), which was released on September 30, 2015."

Trailrunner7 writes: Researchers have discovered a weakness in all version of Android except 9, the most recent release, that can allow an attacker to gather sensitive information such as the MAC address and BSSID name and pinpoint the location of an affected device. The vulnerability is a result of the way that Android broadcasts device information to apps installed on a device. The operating system uses a mechanism known as an intent to send out information between processes or applications, and some of the information about the device's WiFi network interface sent via a pair of intents can be used by an attacker to track a device closely.

A malicious app -- or just one that is listening for the right broadcasts from Android -- would be able to identify any individual Android device and geolocate it. An attacker could use this weaknesses to track a given device, presumably without the user's knowledge. Although Android has had MAC address randomization implemented since version 6, released in 2015, Yakov Shafranovich of Nightwatch Cybersecurity said his research showed that an attacker can get around this restriction.