Craig Federighi on Encryption and the FBI’s Demands

Craig Federighi, Senior Vice President of Software Engineering at Apple, writing for The Washington Post:

That’s why it’s so disappointing that the FBI, Justice Department and others in law enforcement are pressing us to turn back the clock to a less-secure time and less-secure technologies. They have suggested that the safeguards of iOS 7 were good enough and that we should simply go back to the security standards of 2013. But the security of iOS 7, while cutting-edge at the time, has since been breached by hackers. What’s worse, some of their methods have been productized and are now available for sale to attackers who are less skilled but often more malicious.

A cogent argument from Federighi. It follows on from Tim Cook’s open letter and interview with ABC News, as well as Bruce Sewell’s testimony to a congressional committee.

Permalink

Transmission Infected with KeRanger Ransomware

It was discovered this weekend that popular BitTorrent client Transmission was infected with what is believed to be the first fully functional ransomware on OS X. Palo Alto Networks discovered the infection and report that attackers infected two installers of version 2.90 of Transmission’s Mac app with the ransomware, dubbed KeRanger, on March 4. The ransomware works by encrypting all files in the “/Users” and “/Volumes” directories and then demands payment of 1 Bitcoin (~US$400) from victims in order to decrypt and retrieve their files.

It is not yet known how the Transmission installers were infected. Palo Alto Networks promptly disclosed the ransomware to the Transmission Project and Apple, and both have taken swift action. Transmission has since been updated to 2.9.1 (removing the ransomware from the installer) and 2.9.2 (automatically removing KeRanger if it had been installed on a user’s system). Whilst Apple has revoked the certificate used to install KeRanger, updated Gatekeeper to block the malicious installer, and updated its XProtect (Apple’s built-in anti-malware software) signatures.

How to Protect Yourself

The following is excerpted from Palo Alto Networks’ report on KeRanger. We recommend you read their full report if you would like further, and more detailed, information.

Users who have directly downloaded Transmission installer from official website after 11:00am PST, March 4, 2016 and before 7:00pm PST, March 5, 2016, may be been infected by KeRanger. If the Transmission installer was downloaded earlier or downloaded from any third party websites, we also suggest users perform the following security checks. Users of older versions of Transmission do not appear to be affected as of now.

[via MacRumors, Palo Alto Networks]

Pixelmator as a Screenshot Editor

Gabe Weatherhead at Macdrifter highlights something that puzzled me when I wrote a roundup of screenshot apps last December:

While there’s a wealth of options on the Mac for image annotation, there are very few complete options on iOS. PointOut is wonderful for creating magnifier callouts but not much else. Pinpoint has really easy redaction, annotation and arrows but nothing more. Omnigraffle has everything plus a great deal of control but it’s too many taps to do anything basic.

The problem is compounded by the fact that many screenshot apps on iOS are unable to detect a screenshot once it has been edited by another app. As a result, there is often no good way to pass a screenshot from one app to another to apply multiple edits.

Gabe’s solution is clever. He uses Pixelmator, one of the most powerful image editors available on iOS, to create call-outs, redact sections of a screenshot, and draw arrows. I use Screenshot++ and Pinpoint regularly, but it’s good to have Pixelmator as an option for more complicated combinations of edits. Check out Gabe’s post to see how it’s done.

Permalink

Connected: I’m Like a Butterfly

This week, Myke and Federico console Stephen over the Mac mini before discussing Siri and the next version of iOS.

This week on Connected, a discussion on Siri for iPhone (and maybe Mac in the future), plus some first thoughts on what iOS 10 could bring. You can listen here.

Sponsored by:

  • Braintree: Code for easy online payments.
  • PCalc : Ideal for scientists, engineers, students, professional podcasters, or indeed anybody looking for a feature-rich calculator.
Permalink

App Store Shifts to Updating ‘Best New Apps’ More Often

Jeff Benjamin, writing at 9to5Mac:

Schiller is now in charge of all App Stores, taking over responsibilities from Eddy Cue, which most prominently include the iOS App Store and the Mac App Store.

It’s been less than three months since the move occurred, but we’re already beginning to see a change in the way the App Store operates. For example, we’re now seeing more regular updates of the Best New Apps section at the top of the App Store’s Featured page. In a tweet today, Schiller acknowledged the changes and indicated that more changes were on the way.

I’ve been noticing the same, particularly on the front page, which makes sense. The App Store used to be refreshed every Thursday with Editor’s Choice and featured apps. Frequent updates to the ‘Best New Apps’ section could help in promoting apps multiple times throughout the week.

Permalink

Amazon Expands Echo Line

Amazon announced two additions to the Echo family this morning – the portable Tap and the Chromecast-like Dot. Dan Moren has a breakdown of the announcement and details.

I’m relatively new to the Amazon Echo (I shared the story of how and why I bought one on Connected), but, like many others, I’m liking it a lot. In my three weeks with the Echo, the ability to play music, set timers, and turn my lights and espresso maker on and off from anywhere around the kitchen without having to wait for Siri is starting to become second nature.

(In theory, this is exactly what Siri on the Apple Watch should do. Realistically, though, the Watch is simply too slow and HomeKit commands fail too often.)

Amazon is doing good work with expanding the Echo’s list of supported third-party services (unlike Apple). I’m intrigued by the Dot.

Permalink

Apple Launches @AppleSupport Account on Twitter

As first reported by MacRumors, Apple has today launched @AppleSupport, a support account on Twitter:

Apple today created an official Twitter support account to provide customers with tips, tricks, and tutorials about the company’s product and services. One of the account’s first tweets provides users with step-by-step instructions on how to turn lists into checklists in the stock Notes app on iPhone.

Apple’s presence on social media is slowly but surely expanding. This is now the second support account that Apple runs on Twitter, following last October’s launch of @AppleMusicHelp which provides help and tips relating to Apple Music.

Permalink

Life and Death in the App Store

Casey Newton has a must-read story on the struggles of Pixite (makers of Pigment, among other apps) and the modern app economy:

For a time, Pixite was a shining example of the businesses made possible by the app economy. Like thousands of other developers, Pixite’s founders took what had been a side project and turned it into a full-fledged career. But the company’s recent financial problems illustrate a series of powerful shifts in the industry toward consolidation and corporatization.

For all but a few developers, the App Store itself now resembles a lottery: for every breakout hit like Candy Crush, hundreds or even thousands of apps languish in obscurity. Certain segments of the app economy remain vibrant — ludicrously profitable, even. Apps for massive social networks, on-demand services like Uber, and subscription businesses like Netflix and Spotify remain in high demand. Then there’s gaming: Last year, 85 percent of all app revenues went to games, according to App Annie. Supercell, the top-grossing developer of Clash of Clans, reported revenue of $1.7 billion in 2014. (It spent $440 million on marketing.)

The folks at Pixite have made some mistakes along the way, but the general shift on the App Store is undeniable.

Permalink