Vue normale

Il y a de nouveaux articles disponibles, cliquez pour rafraîchir la page.
Hier — 27 mars 2024Flux principal

Recent 'MFA Bombing' Attacks Targeting Apple Users

Par : BeauHD
27 mars 2024 à 22:40
An anonymous reader quotes a report from KrebsOnSecurity: Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple's password reset feature. In this scenario, a target's Apple devices are forced to display dozens of system-level prompts that prevent the devices from being used until the recipient responds "Allow" or "Don't Allow" to each prompt. Assuming the user manages not to fat-finger the wrong button on the umpteenth password reset request, the scammers will then call the victim while spoofing Apple support in the caller ID, saying the user's account is under attack and that Apple support needs to "verify" a one-time code. [...] What sanely designed authentication system would send dozens of requests for a password change in the span of a few moments, when the first requests haven't even been acted on by the user? Could this be the result of a bug in Apple's systems? Kishan Bagaria is a hobbyist security researcher and engineer who founded the website texts.com (now owned by Automattic), and he's convinced Apple has a problem on its end. In August 2019, Bagaria reported to Apple a bug that allowed an exploit he dubbed "AirDoS" because it could be used to let an attacker infinitely spam all nearby iOS devices with a system-level prompt to share a file via AirDrop -- a file-sharing capability built into Apple products. Apple fixed that bug nearly four months later in December 2019, thanking Bagaria in the associated security bulletin. Bagaria said Apple's fix was to add stricter rate limiting on AirDrop requests, and he suspects that someone has figured out a way to bypass Apple's rate limit on how many of these password reset requests can be sent in a given timeframe. "I think this could be a legit Apple rate limit bug that should be reported," Bagaria said.

Read more of this story at Slashdot.

À partir d’avant-hierFlux principal

iOS 18 sur iPhone : nouveautés, date de sortie, compatibilité… tout savoir sur la mise à jour

26 mars 2024 à 18:42

Le 10 juin 2024, Apple dévoilera iOS 18, qui s'annonce comme « la plus grande mise à jour de l'histoire de l'iPhone ». Que sait-on sur ses nouveautés ? Sans surprise, iOS 18 devrait mettre l'intelligence artificielle générative à l'honneur.

Les rivaux de Safari connaissent leur heure de gloire en France sur iOS

19 mars 2024 à 09:41

Les navigateurs web qui concurrencent Safari sur iOS connaissent un boom. La raison ? Le Digital Markets Act (DMA) est entré en vigueur et force Apple à desserrer sa poigne sur iOS. Les internautes font le choix de Brave, Firefox ou encore Opera. Mais des interrogations perdurent.

Apple continue de desserrer sa poigne sur l’App Store

12 mars 2024 à 17:22

main poigne

Les effets du DMA bousculent encore Apple, l'obligeant à lâcher du lest. L'entreprise américaine annonce la possibilité prochaine de télécharger des applications directement depuis des sites web.

AirPods Pro To Gain 'Hearing Aid Mode' In iOS 18

Par : BeauHD
11 mars 2024 à 22:40
According to Bloomberg's Mark Gurman, AirPods Pro will gain a new "hearing aid mode" with the release of iOS 18 later this year. MacRumors reports: Writing in the subscriber edition of his regular Power On newsletter, Gurman claims that the "big news" for AirPods Pro in the near term will be support for a hearing aid-style function when iOS 18 drops in the fall. To be clear, this isn't the first time we have heard a potential hearing aid feature for AirPods Pro. The first rumor appeared in a 2021 Wall Street Journal report, but it was previously framed as a feature that would be exclusive to a next-generation model of AirPods Pro. However, Apple in September 2022 released the second-generation AirPods Pro, while the company more recently released a refreshed model with a USB-C port. AirPods Pro already offer a Conversation Boost feature, which boosts the volume and clarity of people directly in front of the wearer, but Apple has not advertised the earbuds as a hearing aid device, because this would require FDA regulatory approval. As per the FDA, a hearing aid is defined as "any wearable device designed for, offered for the purpose of, or represented as aiding persons with or compensating for, impaired hearing." This definition encompasses both air-conduction and bone-conduction devices in a variety of styles (for example, behind-the-ear, in-the-canal, or body worn). [...] It is not yet clear whether Apple will need FDA clearance in order to make explicit or implicit claims about the rumored "hearing aid mode," which may not even adopt this exact name. If, for example, Apple subsequently suggests that AirPods Pro are for users with certain types or severity of hearing loss/impaired hearing, or for use as an alternative to a hearing aid, then they will require FDA regulatory approval to be marketed as such.

Read more of this story at Slashdot.

Alternative iOS App Stores Won't Work (For Long) Outside of the EU

Par : msmash
6 mars 2024 à 16:05
Alternative iOS app stores won't work (for long) outside of the EU. From a report: With iOS 17.4, iPhone users in the EU can now access third-party app marketplaces -- pending availability which is expected any day -- but extended overseas travel could change that, according to Apple.

Read more of this story at Slashdot.

iOS 17.4 Is Here and Ready For a Whole New Europe

Par : BeauHD
5 mars 2024 à 22:40
Jess Weatherbed reports via The Verge: Apple's iOS 17.4 update is now available, introducing new emoji and a cryptographic security protocol for iMessage, alongside some major changes to the App Store and contactless payments for the iPhone platform in Europe. Apple is making several of these changes to comply with the EU's Digital Markets Act (DMA), a law that aims to make the digital economy fairer by removing unfair advantages that tech giants hold over businesses and end users. iOS 17.4 will allow third-party developers to offer alternative app marketplaces and app downloads to EU users from outside the iOS App Store. Developers wanting to take advantage of this will be required to go through Apple's approval process and pay Apple a "Core Technology Fee" that charges 50 euro cents per install once an app reaches 1 million downloads annually. iPhone owners in the EU will see different update notes that specifically mention new options available for app stores, web browsers, and payment options. The approval process may take some time, but we know that at least one enterprise-focused app marketplace from Mobivention will be available on March 7th. Epic is also working on releasing the Epic Game Store on iOS in 2024, and software company MacPaw is planning to officially launch its Setapp store in April. iOS 17.4 allows people in the EU to download alternative browser engines that aren't based on Apple's WebKit, such as Chrome and Firefox, with a new choice screen in iOS Safari that will prompt users to select a default browser when opened for the first time. While no browser alternatives have been officially announced, both Google and Mozilla are currently experimenting with new iOS browsers that could eventually be released to the public. Apple is also introducing new APIs that allow third-party developers to utilize the iPhone's NFC payment chip for contactless payment services besides Apple Pay and Apple Wallet in the European Economic Area. No alternative contactless providers have been confirmed yet, but users will find a list of apps that have requested the feature under Settings > Privacy & Security > Contactless & NFC. While Apple previously revealed it was planning to drop support for progressive web apps (PWAs) in the EU to avoid building "an entirely new integration architecture" around DMA compliance, the company now says it will "continue to offer the existing Home Screen web apps capability" for EU users. However, these homescreen apps will still run using WebKit technology, with no option to be powered by third-party browser engines.

Read more of this story at Slashdot.

iOS 17.4 est disponible : voici ses nombreuses nouveautés sur iPhone

5 mars 2024 à 18:05

En Europe, iOS 17.4 est sans doute une des plus grandes mises à jour de l'histoire de l'iPhone. Elle introduit plusieurs changements liés au Digital Markets Act, comme la possibilité d'installer des applications en dehors de l'App Store. D'autres nouveautés plus mineures, comme de nouveaux émojis, sont au programme.

Popular Meditation App Must Pay 30% App Store Fee On 'Tips' Sent To Teachers

Par : BeauHD
22 février 2024 à 10:00
Sarah Perez reports via TechCrunch: The CEO of meditation app Insight Timer, Christopher Plowman, is frustrated. He doesn't think the teachers who leverage his app's marketplace to reach their students should have to share 30% of their income with Apple -- its commission on in-app purchases -- and for the past 12 months, Apple had also agreed. After Apple loosened its rules around in-app donations in 2022, Insight Timer took advantage of the option to adjust a digital donations feature that allowed Insight Timers' teachers to collect "tips" from their user profiles and during live events. Apple reviewed the app and approved its release on the App Store. Now the tech giant has changed its mind -- it wants to collect a commission from this content, and Insight Timer had no choice but to comply or have its iOS business shut down, Plowman says. [...] In section 3.2.1 of Apple's App Review guidelines, the company explains that apps can route around Apple's in-app purchase if the app enables individual users to "give a monetary gift to another individual" and "100% of the funds" go to the receiver of the gift. Insight Timer capitalized on this option to allow its users to tip meditation teachers, healers, musicians, and others who use its app to teach classes on meditation, managing stress, finding happiness or spiritual enlightenment, and more. Insight Timer implemented the feature using Stripe as the payment provider on the back end, as the rule permits. Users can opt to donate funds to the teacher, but they don't have to. Insight Timer's main business is selling premium subscriptions to its app, which offer additional features, like offline listening, journaling, and unlimited access to its courses. Fifty percent of this revenue is shared with the teachers, so they don't have to rely on donations to fund their work. During the time the commission-free donations feature was live, Insight Timer's users donated roughly $100,000 per month to the app's teachers, Plowman says. Apple appeared to have blessed this use case, as the tech giant went on to approve 47 more updates to Insight Timer's app over the course of a 12-month period. When a question arose, Insight Timer explained that these were donations -- it doesn't take a cut of that revenue -- and Apple would approve the app. Late last year, those approvals stopped. An app reviewer told Insight Timer that these donations were no longer considered monetary gifts -- they were now "digital content." That meant they were also now subject to Apple's commissions. This decision doesn't hurt Insight Timer's bottom line, as the app's main business is subscriptions. Instead, it hurts the community of teachers who generate additional funds via users' donations. Now, with Apple demanding 30% of that revenue, the teachers are getting a 30% pay cut overnight, so to speak. Plowman says he went back and forth with Apple over this feature, trying to understand why the donations option that Apple had previously allowed -- 47 times! -- was now subject to commission. Apple compromised and said it would allow the donations' link on teachers' profiles to be subject to its commission-free rules, but all other donations -- from live events, from meditations themselves -- had to be commissioned. It wouldn't allow those links to point to the donation link on the teachers' profiles, either. "And I was like, well, what's the point of building an ice cream stand across the road if you won't let the customers cross the road to buy the ice cream?" Plowman argued. In the end, the two parties didn't reach any sort of resolution. Plowman was given until February to comply with Apple's decision, or his business would be shut out of the App Store.

Read more of this story at Slashdot.

Apple Unbanned Epic So It Can Make an iOS Games Store In the EU

Par : BeauHD
16 février 2024 à 22:00
An anonymous reader quotes a report from The Verge: Epic is one step closer to opening its iOS games store in the European Union. As part of its 2023 year in review, Epic Games announced Apple has reinstated its developer account, which means it will finally be able to let users download Fortnite on iPhones again. Epic first announced plans to bring its game store and Fortnite to iOS in January, but it wasn't clear whether Apple would grant it a developer account. In 2020, Apple pulled Epic's developer account after the company began using its own in-app payment option in the iOS version of Fortnite, sparking a lengthy legal battle over whether Apple's behavior was anticompetitive. But even after the trial ended, and neither company emerged a clear winner, Apple still refused to reinstate Epic's developer account. Things are changing now that the EU has implemented the Digital Markets Act (DMA). The new rules force Apple to open up its iOS ecosystem to third-party app stores in the EU. Epic Games says it plans to open its iOS storefront in the EU this year. "I'll be the first to acknowledge a good faith move by Apple amidst our cataclysmic antitrust battle, in granting Epic Games Sweden AB a developer account for operating Epic Games Store and Fortnite in Europe under the Digital Markets Act," Sweeney says in a post on X.

Read more of this story at Slashdot.

Deadpool & Wolverine : les 9 détails cachés (ou non) que vous avez pu manquer dans le teaser

12 février 2024 à 10:07

Le premier teaser de Deadpool & Wolverine est sorti. L'occasion de décortiquer la bande-annonce, en attendant le film, prévu pour l'été 2024. Voici 9 détails à noter. Certains seront évidents, d'autres beaucoup moins.

Comment enlever la mention Vu sur Messenger ?

Par : Nelly Lesage
28 janvier 2024 à 12:11

Les mentions « Vu » sur Messenger sont présentes par défaut dans la messagerie de Facebook. Il existe cependant une fonctionnalité pour ne plus afficher ces confirmations de lecture et rendre sa vie un peu plus zen.

Xbox, GeForce Now : le cloud gaming est enfin autorisé sur iPhone et Apple TV

26 janvier 2024 à 09:47

L'Europe dynamite les barrières d'Apple sur le cloud gaming. Alors qu'arrive le Digital Market Act (DMA), un nouveau règlement européen, l'entreprise américaine assouplit ses règles concernant l'App Store. Le cloud gaming va pouvoir se déployer pleinement sur l'iPhone et le reste de l'écosystème Apple.

Fortnite annonce son retour sur iPhone, mais ne vous emballez pas trop vite

26 janvier 2024 à 09:22

Les changements annoncés par Apple pour se plier aux règles du Digital Markets Act européen permettent techniquement à Epic Games de proposer une application Fortnite via son propre Epic Store. Mais les nouvelles conditions d'Apple pourraient l'en dissuader.

❌
❌