Archive for May 22, 2020 Was Down…. But All Is Fine Now

Posted in Commentary with tags on May 22, 2020 by itnerd

Just before 4PM EST it seemed that went down. I tried to log in during that time and I got this:

A few minutes later, I couldn’t get this page. Instead I never got to a page. But it is clear that something was wrong. Though if you checked the Office 365 Status page, all was apparently good:

I also noted that email accounts on my iPhone weren’t working as well. But at 4:20PM things came back up. So all is fine now. Thus if you noticed an issue with on the web or on your device, you know why now.

An Alleged Jailbreak Exists For EVERY iDevice With Any Version Of iOS…… Yikes! [UPDATE: Now Available]

Posted in Commentary with tags on May 22, 2020 by itnerd

I rarely cover anything having to do with jailbreaking iOS devices as the process of jailbreaking your iDevice can simply make said device insecure. But conversely, I have to admit that there is a rather healthy jailbreaking community who wants to use jailbreaking to free themselves from the “walled garden” that is iOS.

Well, it appears that there might be a jailbreak exploit that exists in the newly released iOS 13.5 that affects every iDevice on the planet. This is different from previous jailbreaks which tend to only be applicable to a subset of iPhones and iPads.

Here’s the Tweet that brought this to light:

Here’s why you should care. Jailbreaks are taking advantage of bugs in iOS that can be exploited by anyone from nation states who want to spy on other nations, companies like GrayShift and Cellebrite who want to crack iPhones for law enforcement, or companies like NSO Group who use exploits like this to create the means for nation states who want to spy on their citizens. Thus this is bad if this is true as this could threaten you in some way shape or form.

Thus if this is true, you can fully expect Apple to come out with an update to iOS 13.5 to close this hole once this jailbreak becomes public. But until that happens, all the usual advice applies. As in don’t download software from unknown sources, don’t click on shady links in emails. Etc.

UPDATE: This jailbreak has now been released:

Not only that, but it’s been updated in the last day or so. You can fully expect Apple to release an update to kill whatever exploit that this relies on this week. After all, Apple likes control and they do anything to make sure that they have control at all times.

The Siri Listening Controversy Is Back, And Apple Really Needs To Be Open And Transparent About This

Posted in Commentary with tags on May 22, 2020 by itnerd

You might recall that last year, it came to light that contractors hired by Apple were listening to Siri recordings and they were hearing all sorts of “interesting” things. Now this was nothing nefarious on the surface as this is done to improve the ability of Siri to work, but the fact that contractors were doing that was problematic. Apple apologized for that, which is rare for that company to do by the way, and stopped this program while making changes to their operating systems to give users more control over this. Though the fact that they may have been facing a significant fine might have had something to do with all of that.

Well, this controversy is back. According to The Guardian, we are learning that nothing has changed. The whistleblower has now gone public and has a lot to say:

In a letter announcing his decision, sent to all European data protection regulators, Thomas le Bonniec said: “It is worrying that Apple (and undoubtedly not just Apple) keeps ignoring and violating fundamental rights and continues their massive collection of data.

“I am extremely concerned that big tech companies are basically wiretapping entire populations despite European citizens being told the EU has one of the strongest data protection laws in the world. Passing a law is not good enough: it needs to be enforced upon privacy offenders.”

Le Bonniec, 25, worked as a subcontractor for Apple in its Cork offices, transcribing user requests in English and French, until he quit in the summer of 2019 due to ethical concerns with the work. “They do operate on a moral and legal grey area,” he told the Guardian at the time, “and they have been doing this for years on a massive scale. They should be called out in every possible way.”

Well, this is pretty damming. And it suggests that Apple, who claims that “Privacy is a fundamental human right” may be playing fast and loose on that front. This deserves further scrutiny. Oh wait. That’s actually happening:

Ireland’s Data Protection Commissioner (DPC), Apple’s main regulator in the European Union, on Thursday said it was in contact with the company after a whistleblower called for action over a programme that listens to users’ recordings. 

The regulator acted after Thomas Le Bonniec, a former Apple contractor, wrote to European data protection regulators on May 20 to push for investigations into these practices. 

“The DPC engaged with Apple on this issue when it first arose last summer and Apple has since made some changes,” Graham Doyle, Deputy Commissioner at the Irish DPC, said in an emailed statement to Reuters.

“However, we have followed up again with Apple following the release of this public statement and await responses,” he said, in reference to the letter. “In addition, it should be noted that the European Data Protection Board is working on the production of guidance in the area of voice assistant technologies.” 

Apple did not immediately respond to a request for comment on Thursday.

In the meantime if this bothers you in any way, here’s the list of changes that you can make to your iDevice to make this go away:

  • Go to Settings > Privacy > Analytics & Improvement > Improve Siri & Dictation and check it is off
  • Then go to Settings > Siri & Search > Siri History and tap ‘Delete Siri & Dictation History’
  • To enable further restrictions, such as revoking location tracking and third-party app integration with Siri, read Apple’s Ask Siri, Dictation & Privacy page.

In the meantime, Apple truly needs to explain this. Right now they look shady as hell and for a company who claims that “Privacy is a fundamental human right” that’s not a good look. So how about it Apple? Will you come out and be open and transparent for a change about all of this?

Roughly 1.5 billion iDevice users are waiting.