Earlier this year, Apple patched one of the most breathtaking iPhone vulnerabilities ever: a memory corruption bug in the iOS kernel that gave attackers remote access to the entire device—over Wi-Fi, with no user interaction required at all.
The tech giant Apple has been fined 10 million Euros ($12 million) by the Italian Competition Authority over what it says were “aggressive and misleading” advertising practices for its iPhones.
The company’s director of global privacy, Jane Horvath, made the criticism in a letter to a coalition of privacy groups, reassuring them that the feature, which will require users to actively allow developers to track how they use other apps, would still be launched.
He set Lulu and Little Snitch to block all outgoing traffic on a Mac running Big Sur and then ran a small programming script that had exploit code interact with one of the apps that Apple exempted.
Namely, the Apple App store and 50 other Apple apps are allowed to bypass user based internet routing rules which means Apple could know your real IP address even when you try to get behind a VPN on MacOS Big Sur. Additionally, this type of exemption can be exploited by malware.
Apple is facing criticism over a new iOS 14 feature officially called ATT or App Tracking Trasnpsereny that will roll out next year that requires apps to ask users for their permission before tracking them across other apps and websites.
In a statement that seems aimed directly at Facebook's complaint about the impact on small businesses, Apple says that advertising that respects privacy was the standard prior to the growth of the internet.
In a letter sent to the Ranking Digital Rights organization, Apple’s Jane Horvath, senior director of global privacy, reiterated that the company believes that “privacy is a fundamental human right.” Horvath explains that Apple delayed the App Tracking Transparency (ATT) feature in an effort to give developers more time to prepare for the changes.
Google is directly offering RCS chat services through its Android Messages app to anybody who installs it and uses it as their default texting app, which partly bypasses a carrier rollout that, at times, has ranged from sluggish to incoherent to broken.
BERLIN (Reuters) - An Austrian privacy advocacy group drew a strongly critical response from Apple on Monday after it said an online tracking tool used in its devices breached European law.
But the non-profit group says that Apple's iOS operating system creates unique codes for each iPhone that allow the company and other third parties to "identify users across applications and even connect online and mobile behaviour.".
Next year, however, Apple will require apps to seek customer consent before the IDFA can be used in iOS 14 to track user behavior and preference across apps and websites for ad targeting purposes.
BERLIN (Reuters) - A group led by privacy activist Max Schrems on Monday filed complaints with German and Spanish data protection authorities over Apple's AAPL.O online tracking tool, alleging that it allows iPhones to store users' data without their consent in breach of European law.
On top of this, Apple says “over the next year we will introduce several changes to our security checks,” specifically: a new encrypted protocol for Developer ID certificate revocation checks strong protections against server failure a new preference for users to opt out of these security protections Apple also gave some further technical information on the situation to iPhone in Canada.
At WIRED's request, Albright then broke down the dataset further to focus specifically on the 359 apps that handle contact tracing, exposure notification, screening, reporting, workplace monitoring, and COVID-19 information from public health authorities around the globe.
macOS uses OCSP to make sure that the developer certificate hasn’t been revoked before an app is launched.As Jeff Johnson explains in his tweet above, if macOS cannot reach Apple’s OCSP responder it skips the check and launches the app anyway - it is basically a fail-open behaviour.
Inrupt will let people put their private information in data pods and then release those pods to tech companies only when needed – giving users much more control over their data and privacy than they currently have.Privacy News Online is brought to you by Private Internet Access, the world’s most trusted VPN service.
Solid was first announced back in 2018 as a way of giving control of user data to individuals, rather than to online services .
"Actions planned by platform companies like Apple could have a meaningful negative effect on small businesses and economic recovery in 2021 and beyond," Zuckerberg told investors Thursday during Facebook's Q3 earnings call.
This metric is used to measure Facebook's total user base across its main app, Instagram, Messenger and WhatsApp. The StopHateForProfit ad boycott did not seem to impact the company's advertising business, with ad revenue up 22% compared to a year ago.
Earlier this week, the U.S. Department of Justice, in a landmark lawsuit said, Google is monopolizing the search space by entering into multi-billion dollar deals with mobile companies like Apple, Motorola, and network carriers like AT&T and Verizon, to be the default search engine on devices.
It’s a huge round for a phone forensics company, especially one that’s focused almost exclusively on breaking through the security of Apple’s famous device.The GrayKey is believed to be capable of hacking iPhones up to the iPhone 11, though it’s unclear how effective the tool is against the iPhone 12.
Brian Acton is an entrepreneur and computer programmer who co-founded the messaging app WhatsApp in 2009.Prior to founding WhatsApp and Signal Foundation, Acton worked as a software builder for more than 25 years at companies like Apple, Yahoo, and Adobe.
Today, the Department of Justice — along with eleven state Attorneys General — filed a civil antitrust lawsuit in the U.S. District Court for the District of Columbia to stop Google from unlawfully maintaining monopolies through anticompetitive and exclusionary practices in the search and search advertising markets and to remedy the competitive harms.
The US Department of Justice, in conjunction with the "Five Eyes" nations, has issued a statement asking Apple and other tech companies to effectively create backdoors that will weaken encryption strength overall to provide law enforcement access to data.
The browser, which Google introduced in 2008 and has the largest market share in the U.S., has been at the center of rivals’ accusations that the search giant uses its access to users’ web histories to aid its advertising business.
A recently released tool is letting anyone exploit an unusual Mac vulnerability to bypass Apple's trusted T2 security chip and gain deep system access.
What Happened: The hackers found 55 vulnerabilities — 11 of which were of critical severity and 29 of high severity — in a period between July and October this year, according to a blog post written by Sam Curry, one of the five beneficiaries of the bounty.