18,000 Android apps with tens or hundreds of millions of installs on the Google Play Store have been found to violate Google's Play Store Advertising ID policy guidance by collecting persistent device identifiers such as serial numbers, IMEI, WiFi MAC addresses, SIM card serial numbers, and sending them to mobile advertising related domains alongside ad IDs. Bleeping Computer reports: AppCensus is an organization based in Berkeley, California, and created by researchers from all over the world with expertise in a wide range of fields, ranging from networking and privacy to security and usability. The project is supported by "grants from the National Science Foundation, the Department of Homeland Security, and the Data Transparency Lab." By highlighting this behavior, AppCensus shows that while users are being offered the option to reset the advertising ID, doing so will not immediately translate into getting a new "identity" because app developers can also use a multitude of other identifiers to keep their tracking and targeting going.

Google did not yet respond to a report sent by AppCensus in September 2018 containing a list of 17,000 Android apps that send persistent identifiers together with ad IDs to various advertising networks, also attaching a list of 30 recipient mobile advertising related domains where the various IDs were being sent. While looking at the network packets sent between the apps and these 30 domains, AppCensus observed that "they are either being used to place ads in apps, or track user engagement with ads." In a statement to CNET, a Google spokesperson said: "We take these issues very seriously. Combining Ad ID with device identifiers for the purpose of ads personalization is strictly forbidden. We're constantly reviewing apps -- including those listed in the researcher's report -- and will take action when they do not comply with our policies."

Some of the most popular applications found to be violating Google's Usage of Android Adverting ID policies include Clean Master, Subway Surfers, Flipboard, My Talking Tom, Temple Run 2, and Angry Birds Classic. The list goes on and on, and the last app in the "Top 20" list still has over 100 million installations.

A new variant of the multi-stage Shlayer malware known to target macOS users has been observed in the wild, now being capable to escalate privileges using a two-year-old technique and to disable the Gatekeeper protection mechanism to run unsigned second stage payloads. Bleeping Computer reports: This new Shlayer variant unearthed by Carbon Black's Threat Analysis Unit (TAU) targets all macOS releases up to the latest 10.14.3 Mojave, and will arrive on the targets' machines as a DMG, PKG, ISO, or ZIP files, some of them also signed with a valid Apple developer ID to make them look legitimate. Shlayer samples found by TAU also use malicious shell scripts to download additional payloads just like older installments did, and, in the case of samples distributed as DMG images, will surreptitiously launch a .command script in the background after the user launches the fake Flash installer. The malicious script included in the DMG is encoded using base64 and will decrypt a second AES encrypted script which will be executed automatically after being decrypted.

One it successfully downloads the second stage malware payload, Shlayer will "to escalate privileges with sudo using a technique invoking /usr/libexec/security_authtrampoline," presented by Patrick Wardle in his Death by 1000 Installers talk at DEFCON 2017. The next step is to download extra payloads which all contain adware according to TAU and it makes sure they'll be able to run on the compromised Mac by disabling the Gatekeeper protection mechanism. After this is accomplished, all extra payloads downloaded and launched by Shlayer will be seen as whitelisted software because the OS will no longer check if they are signed with an Apple developer ID. Also, just in case the malware is not able to disable Gatekeeper on the infected Mac, some of the second stage payloads are also signed with valid developer IDs.

For those hoping the next iPhone would ditch the Lightning port in favor of the more versatile USB-C port, you'll surely be disappointed by the latest rumor. "Japanese site Macotakara says that not only will the 2019 iPhone use Lightning, Apple will also continue to bundle the same 5W charger and USB-A to Lightning cable in the box," reports 9to5Mac. "This is seen as a cost saving measure. It seems that customers wanting faster iPhone charge times will still have to buy accessories, like the 12W iPad charger." From the report: The site explains that Lightning port is not going anywhere and Apple is resistant to changing the included accessories to maintain production costs. Apple can benefit from huge economies of scale by selling the same accessories for many generation. As such, Apple apparently will keep bundling Lightning EarPods, Lightning to USB-A cable, and the 5W USB power adaptor, with the 2019 iPhone lineup. This is disappointing as Apple began shipping an 18W USB-C charger with its iPad Pro line last fall, and many expected that accessory to become an iPhone standard too. Even if the iPhone keeps the Lightning port, Lightning can support fast-charging over the USB Type-C protocol. It's not clear if the cost savings of this decision would be passed on to consumers with lower cost 2019 iPhone pricing.

Linuz Henze, a credible researcher, has revealed an exploit that in a single button press can reveal the passwords in a Mac's keychain. From a report: Keychain is where macOS stores most of the passwords used on the machine, ranging from iMessage private encryption keys to certificates, secured notes, Wi-Fi, and other Apple hardware passwords, app passwords, and web passwords. A pre-installed app called Keychain Access enables users to view the entire list of stored items, unlocking each one individually by repeatedly entering the system password, but Henze's KeySteal exploit grabs everything with a single press of a "Show me your secrets" button.

While the demo is run on a 2014 MacBook Pro without Apple's latest security chips, Henze says that it works "without root or administrator privileges and without password prompts, of course." It appears to work on the Mac's login and system keychains, but not iCloud's keychain. Generally, white hat security researchers publicly reveal flaws like this only after informing the company and giving it ample time to fix the issues. But Henze is refusing to assist Apple because it doesn't offer paid bug bounties for macOS.

Following Mozilla's footsteps, Google has released Chrome 72 for Windows, Mac, and Linux. From a report: The release includes code injection blocking and new developer features. You can update to the latest version now using Chrome's built-in updater or download it directly from google.com/chrome. With over 1 billion users, Chrome is both a browser and a major platform that web developers must consider. In fact, with Chrome's regular additions and changes, developers often must make an effort to stay on top of everything available -- as well as what has been deprecated or removed -- most notably, Chrome 72 removes support for Chromecast setup on a computer. To set up a Chromecast, you'll now need to use a mobile device.

As this isn't a major release, there aren't many new features to cover. Chrome 72 for Windows, however, blocks code injections, reducing crashes caused by third-party software. The initiative to block code injections in Chrome started last year, with warnings letting users know that Chrome was fighting back. Those warnings are now gone, and Chrome blocks code injections full stop. Further reading: All the Chromium-based browsers.

Due to an economic slowdown in China and diminishing demand for new iPhones, Apple's profits in its most recent quarter were flat compared with a year earlier. "The disappointing financial performance had been expected since Jan. 2, when Apple, for the first time in 16 years, revised its forecast for the quarter," reports The New York Times. "But the announcement on Tuesday indicates a difficult road head for Apple, which just five months ago became the first company to be worth more than $1 trillion. The company said it expected between $55 billion and $59 billion in revenue in the current quarter, just below analysts' expectations for $59 billion. Apple's earnings per share were $4.18, beating analysts' expectations by a penny."

In addition to the quarterly earnings, Apple reported revenue of $84.3 billion, a decline of 5 percent from one year ago. "Revenue from iPhone declined 15 percent from the prior year, while total revenue from all other products and services grew 19 percent," Apple said in a press release. Analysts had estimated revenue of $83.97 billion and earnings of $4.17 per share. "While it was disappointing to miss our revenue guidance, we manage Apple for the long term, and this quarter's results demonstrate that the underlying strength of our business runs deep and wide," said Tim Cook. Apple's active install base of 1.4 billion is "a great testament to the satisfaction and loyalty of our customers, and it's driving our services business to new records thanks to our large and fast-growing ecosystem," Cook said. The Verge adds: "iPhones account for 900 million of those devices. iPad revenues were up 17 percent against the year-ago quarter; Mac was up 9 percent; and Wearables/Home/Accessories were up by 33 percent."

Firefox 65, the latest version of Mozilla's web browser, is now available for Windows, Mac, Linux, and Android platforms. The release brings simplified Content Blocking controls for Enhanced Tracking Protection, support for WebP image support with the Windows client getting an additional feature: support for AV1 format. From a report: Across all platforms, Firefox can now handle Google's WebP image format. WebP supports both lossy and lossless compression and promises the same image quality as existing formats at smaller file sizes. Firefox 65 for desktop brings redesigned controls for the Content Blocking section to let users choose their desired level of privacy protection. You can access it by either clicking on the small "i" icon in the address bar and clicking on the gear on the right side under Content Blocking or by going to Preferences, Privacy & Security, and then Content Blocking.

Next, Firefox now supports AV1, the royalty-free video codec developed by the Alliance for Open Media. AV1 improves compression efficiency by more than 30 percent over the codec VP9, which it is meant to succeed. Lastly, Firefox's new Task Manager page (just navigate to about:performance or find it under "Other" in the main menu) is complete. Introduced in Firefox 64, Task Manager now reports memory usage for tabs and add-ons.

An anonymous reader quotes a report from ZDNet: A Microsoft program manager has caused a stir on Twitter over the weekend by suggesting that Firefox-maker Mozilla should give up on its own rendering engine and move on with Chromium. "Thought: It's time for @mozilla to get down from their philosophical ivory tower. The web is dominated by Chromium, if they really 'cared' about the web, they would be contributing instead of building a parallel universe that's used by less than five percent?" wrote Kenneth Auchenberg, who builds web developer tools for Microsoft's Visual Studio Code.

Auchenberg's post referred to Mozilla's response to Microsoft's announcement in December that it would scrap Edge's EdgeHTML rendering engine for Chromium's. The move will leave Firefox's Gecko engine as the only alternative to Chromium, which is used by Opera and dozens of other browsers. Few people agreed with Auchenberg, including engineers from both Mozilla and Chromium. Long-serving Mozillian Asa Dotzler was not impressed. "Just because your employer gave up on its own people and technology doesn't mean that others should follow," Dotzler replied to Auchenberg. Auchenberg clarified that he didn't want to see Mozilla vanish, but said it should reorganize into a research institution "instead of trying to to justify themselves with the 'protectors of the web' narrative."

An anonymous reader shares a report: Despite a trade war between the United States and China and past admonishments from President Trump "to start building their damn computers and things in this country," Apple is unlikely to bring its manufacturing closer to home. A tiny screw illustrates why. [Editor's note: the link may be paywalled; alternative source.]

In 2012, Apple's chief executive, Timothy D. Cook, went on prime-time television to announce that Apple would make a Mac computer in the United States. It would be the first Apple product in years to be manufactured by American workers, and the top-of-the-line Mac Pro would come with an unusual inscription: "Assembled in USA." But when Apple began making the $3,000 computer in Austin, Tex., it struggled to find enough screws, according to three people who worked on the project and spoke on the condition of anonymity because of confidentiality agreements.

In China, Apple relied on factories that can produce vast quantities of custom screws on short notice. In Texas, where they say everything is bigger, it turned out the screw suppliers were not. Tests of new versions of the computer were hamstrung because a 20-employee machine shop that Apple's manufacturing contractor was relying on could produce at most 1,000 screws a day. The screw shortage was one of several problems that postponed sales of the computer for months, the people who worked on the project said. By the time the computer was ready for mass production, Apple had ordered screws from China.

On Thursday, Tim Cook took to Twitter to celebrate the 35th anniversary of the Macintosh, recalling how it changed the world. "35 years ago, Macintosh said hello. It changed the way we think about computers and went on to change the world. We love the Mac, and today weâ(TM)re proud that more people than ever are using it to follow their passions and create the future," Cook tweeted. The Register provides a brief history lesson on how the Mac changed how users interact with computers. Here is an excerpt from the report: After the disastrous debut of the Lisa, and the abject failure of the Apple III, it was down to the Steve Jobs-led Macintosh project to save the day for the troubled computer manufacturer. Rival IBM had launched the Personal Computer XT just under a year earlier, in March 1983, with up to 640KB of RAM and a mighty Intel 8088 CPU. It also included PC-DOS 2, which would go on to underpin Microsoft's operating system efforts in subsequent decades. IBM had started to rule the PC industry, but what the IBM PC XT did not have was a graphical user interface, sticking instead with the sober command line of DOS. The Macintosh, on the other hand, had a GUI lifted from Apple's ill-fated Lisa project, except (and unusually, as things would turn out) retailed at a lower price of $2,495 (just over $6,000 in today's money). It ran faster than the Lisa too, with its Motorola 68000 CPU clocked at 7.8MHz.

The good news ended there. The machine shipped with a woeful 128KB of RAM, which was shared with the black and white 512 x 342 pixel display built into the box. That 128KB was resolutely not upgradable, and fans would have to wait until September for Apple to unleash a 512KB version for another $300. The only storage provided was a single 400KB 3 1/2;-inch disk, an improvement over the 360KB 5¼-inch floppies of IBM's PC XT and the nature of the box meant that any extra storage would have to be external. Users became quickly accustomed to swapping floppies in order to do what little useful work the pitiful 128K would afford. Third parties eventually launched hard drives for the machines, which had to be attached via the serial port. Apple would make a 20MB drive in the form of the Hard Disk 20 available in September 1985 for the 512KB Mac at a cost of $1,495. Owners of the original 128K Mac, however, needed not apply. The limited RAM made the new Hierarchical File System a non-starter.

Apple has hired an executive from the battery-making division of Samsung to help lead its own battery work. The new hire suggests that the company might start making its own batteries for iPhones and Macs. Bloomberg reports: Soonho Ahn joined Apple in December as global head of battery developments, after working as a senior vice president at Samsung SDI since 2015, according to his LinkedIn profile. At Samsung SDI, Ahn led development of lithium battery packs and worked on "next-generation" battery technology, the profile says. Apple has used batteries from Samsung SDI to power its own products in the past. The iPhone maker has been trying to reduce reliance on third-party components, and the notable battery technology hire suggests it may be doing the same for batteries. Apple has been working on its own MicroLED display technology for future devices, which would help wean itself off Samsung in other areas. It's also increasingly building its own processors and is investigating the development of its own cellular modems.

The next time you open up a new Apple computer, go to the App Store to start downloading apps, and type in "Microsoft Office," you'll actually get something. From a report: Until now, anyone who wanted to use Microsoft Office and its popular Word, Excel, PowerPoint and OneNote apps had to do so by going to Microsoft's website and downloading it all from there. Now, the are available on the Mac App Store as well, making it even easier for people to download and use.

An anonymous reader quotes a report from Ars Technica, written by Sean Gallagher: Want to be able to run classic Mac OS applications compiled for the Motorola 68000 series of processors on your ever-so-modern Mac OS X machine? Or maybe you'd rather run them on a Raspberry Pi, or an Android device for that matter? There's an emulation project that's trying to achieve just that: Advanced Mac Substitute (AMS). Advanced Mac Substitute is an effort by long-time Mac hacker Josh Juran to make it possible to run old Mac OS software (up to Mac OS 6) without a need for an Apple ROM or system software. Other emulators out there for 64000 Mac applications such as Basilisk II require a copy of MacOS installation media -- such as install CDs from Mac OS 7.5 or Mac OS 8. But AMS uses a set of software libraries that allow old Mac applications to launch right within the operating environment of the host device, without needing to have a full virtual hardware and operating system instance behind them. And it's all open source.

I got a demo of AMS from Juran at Shmoocon in Washington, DC, this past weekend. He showed me an early attempt at getting the game LoadRunner to work with the emulator -- it's not yet interactive. A version of the project, downloadable from Github, includes a "Welcome" screen application (a sort of Mac OS "hello world"), Mac Tic-Tac-Toe, and an animation of NyanCat. Applications are launched from the command line for now and are executed by the emulation software, which interprets the system and firmware calls. Unfortunately, there's still a lot of work to be done. While AMS works on Mac OS X up to version 10.12 -- both on Intel and PowerPC versions of the operating system -- the code currently won't compile on MacOS Mojave. And the Linux implementation of AMS does not yet support keyboard input. I was unable to get the front end to execute at all on Debian 9 on Intel.

"Google engineers have proposed changes to the open-source Chromium browser that will break content-blocking extensions, including various ad blockers," reports The Register. "The drafted changes will also limit the capabilities available to extension developers, ostensibly for the sake of speed and safety. Chromium forms the central core of Google Chrome, and, soon, Microsoft Edge." From the report: In a note posted Tuesday to the Chromium bug tracker, Raymond Hill, the developer behind uBlock Origin and uMatrix, said the changes contemplated by the Manifest v3 proposal will ruin his ad and content blocking extensions, and take control of content away from users. Manifest v3 refers to the specification for browser extension manifest files, which enumerate the resources and capabilities available to browser extensions. Google's stated rationale for making the proposed changes is to improve security, privacy and performance, and supposedly to enhance user control.

But one way Google would like to achieve these goals involves replacing the webRequest API with a new one, declarativeNetRequest. The webRequest API allows extensions to intercept network requests, so they can be blocked, modified, or redirected. This can cause delays in web page loading because Chrome has to wait for the extension. In the future, webRequest will only be able to read network requests, not modify them. The declarativeNetRequest allows Chrome (rather than the extension itself) to decide how to handle network requests, thereby removing a possible source of bottlenecks and a potentially useful mechanism for changing browser behavior. The report notes that Adblock Plus "should still be available" since "Google and other internet advertising networks apparently pay Adblock Plus to whitelist their online adverts."

An anonymous reader quotes a report from Motherboard: Apple security expert Jon Callas, who helped build protection for billions of computers and smartphones against criminal hackers and government surveillance, is now taking on government and corporate spying in the policy realm. Jon Callas is an elder statesman in the world of computer security and cryptography. He's been a vanguard in developing security for mobile communications and email as chief technology officer and co-founder of PGP Corporation -- which created Pretty Good Privacy, the first widely available commercial encryption software -- and serving the same roles at Silent Circle and Blackphone, touted as the world's most secure Android phone.

As a security architect and analyst for Apple computers -- he served three stints with the tech giant in 1995-1997, 2009-2011, and 2016-2018 -- he has played an integral role in helping to develop and assess security for the Mac and iOS operating systems and various components before their release to the public. His last stretch there as manager of a Red Team (red teams hack systems to expose and fix their vulnerabilities) began just after the FBI tried to force the tech giant to undermine security it had spent years developing for its phones to break into an iPhone belonging to one of the San Bernardino shooters. But after realizing there's a limit to the privacy and surveillance issues technology companies can address, Callas decided to tackle the issues from the policy side, accepting a two-year position as senior technology fellow for the American Civil Liberties Union. Callas spoke to Motherboard about government backdoors, the need for tech expertise in policymaking, and what he considers the biggest challenge for the security industry.

Windows 10 Mobile devices will be officially unsupported starting on December 10, 2019. As a result, Microsoft is recommending users move to an Android or iOS device instead. Mac Rumors reports: Microsoft made the recommendation in a Windows 10 Mobile support document (via Thurrott) explaining its plans to stop offering security updates and patches for Windows 10 Mobile: "With the Windows 10 Mobile OS end of support, we recommend that customers move to a supported Android or iOS device. Microsoft's mission statement to empower every person and every organization on the planet to achieve more, compels us to support our Mobile apps on those platforms and devices." All customers who have a Windows 10 Mobile device will be able to keep using it after December 10, 2019, but no further updates will be available.

An anonymous reader quotes ZDNet: German authorities have asked the public for help in surfacing more details and potentially identifying the owner of a MAC address known to have been used by a bomber in late 2017... The MAC address is f8:e0:79:af:57:eb. Brandenburg police say it belongs to a suspect who tried to blackmail German courier service DHL between November 2017 and April 2018. The suspect demanded large sums of money from DHL and threatened to detonate bombs across Germany, at DHL courier stations, private companies, and in public spaces. [The bomb threats were real, but one caught fire instead of exploding, while the second failed to explode, albeit containing real explosives.]

Investigators called in to negotiate with the bomber managed to exchange emails with the attacker on three occasions, on April 6, 2018, April 13, 2018, and April 14, 2018. One of the details obtained during these conversations was the bomber's MAC address, which based on the hardware industry's MAC address allocation tables, should theoretically belong to a Motorola phone... Now, they're asking router owners to check router access logs for this address, and report any sightings to authorities. Investigators want to know to what routers/networks the bomber has connected before and after the attacks, in order to track his movements and maybe gain an insight into his identity.

Apple CEO Tim Cook told CNBC's Mad Money host Jim Cramer that the company will announce new "services" this year, suggesting that Apple might be planning to launch its long-awaited TV service in the first half of 2019. "While Cook didn't say what kind of services -- Cramer was asking whether Apple had any tricks up its services sleeve, including healthcare or mobile payments -- it's the long-awaited TV service that has recently seen all the pieces fall into place," notes The Verge. From the report: Here at CES 2019, there's been a series of surprise announcements from TV manufacturers that are suddenly supporting Apple's AirPlay 2 and HomeKit features to allow you to cast content directly from your iPhone, iPad and Mac -- including TVs running rival operating systems from Google and Samsung. New TVs from rival Samsung will actually support iTunes, too, letting you access your movies and TV shows there as well. It wouldn't be a stretch to think Apple might be priming the pump with those hardware manufacturers for the upcoming TV service, too.

Then, there's content: We reported last June how Apple has been spending over $1 billion on original TV content with no obvious place for users to watch it. Another report suggested that some of those original shows were slated to debut as soon as this March. And another still claimed that those shows might be free for people who own Apple devices. But even if the TV service is one of the "services" Cook mentioned, it's not clear what other services Apple might be talking about.

Albums sold on vinyl and cassette both saw a growth in sales according to BuzzAngle Music's End-Year Report profiling U.S. music industry consumption for 2018. From a report: Vinyl sales grew by just shy of 12% from 8.6 to 9.7 million sales, while cassette sales grew by almost 19% from 99,400 to 118,200 copies sold in the US, The Verge reported. Sixty-six percent of those vinyl sales were of albums that are more than three years old and feature classic bands like The Beatles, Fleetwood Mac, and Pink Floyd, reported BuzzAngle. Cassettes saw popularity in newer releases. CDs on the other hand have declined by 18.5% in popularity leading to a total decline in physical album sales of over 15%, reported The Verge. Meanwhile, audio streaming saw an increase of 41.8%, the largest of all music consumption.

Rather than serving up platitudes about innovation, the man charged with saving former unicorn Evernote says his priority this year is addressing the long list of user complaints. From a report: Despite some progress, Evernote continued to struggle last year, cutting 15 percent of its staff and losing many top executives.So what doesn't work? Lots of stuff, much of it very basic, new CEO Ian Small says: "Frankly, it's a bit disingenuous for me to try to get our most dedicated users all fired up about inventing the future of Evernote when exactly those same people are the ones who know best that sync doesn't always work right. Or that Evernote on Windows is a bit tired, and is missing features that are found on the Mac version. Or that each version of Evernote seems to work slightly differently, and exhibits its own unique collection of bugs and undesirable behaviors. Or that Evernote on mobile devices sometimes feels like a pared-down version of a powerful desktop app, instead of a mobile-first view into a powerful cloud-enabled productivity environment." Small says these problems have lingered for years and were well-known, but he didn't want to get into why they weren't fixed sooner. Instead, he promises the main focus of 2019 will be dealing with these and numerous other issues.