AirPlay 2 and HomePod stereo pairing arrive with iOS 11.4

iOS 11.4 arrives today, and with it, a bunch of welcome upgrades. The biggest updates here are, unsurprisingly, on the streaming media front, including the arrival of AirPlay 2, and the long awaited ability to pair up two HomePods for some stereo music living room listening.

Among other things, AirPlay 2 brings with it improved multi-room audio, so users can seamlessly move songs from one room to the next or just play the same music in all rooms at once on any iOS device, Apple TV or HomePod, via Siri. You can also play different music in every room, with requests like “Hey Siri, play Crowded House in the kitchen,” which should be a nice addition for families.

There are also a number of third party manufacturers on board for AirPlay 2, meaning you’ll be able to use Siri to control music on speakers from some top names, including,  Bang & Olufsen, Bluesound, Bose, Bowers & Wilkins, Denon, Libratone, Marantz, Marshall, Naim, Pioneer and Sonos. Of course, from the sound of things, the system, naturally, works best with Apple’s own smart speaker.

The other big addition is the ability to pair HomePods. It’s something that Apple’s been promising since the early days of the smart speaker, and now it’s finally available as a free software update — for those who can afford to shell out for two $349 speakers, that is.

Once paired, the speakers rely on the A8 chip to sync and split the left and right stereo channels between the two devices. The speakers will recognize one another during setup and ask the user whether they want to form a stereo pair.

Speaking of the HomePod, the company also announced this morning that its smart speaker will be available in Canada, France and Germany on June 18.

from Apple – TechCrunch https://ift.tt/2xnRCVb

Apple releases iOS 11.4 with support for Messages in iCloud, AirPlay 2 and more

Apple this afternoon will officially release the latest version of its iOS software for your iPhone and iPad, iOS 11.4, which at last adds support for Messages in iCloud, along with other new features, including most notably, AirPlay 2 and an update that allows two HomePod speakers to work together as a stereo pair.

Messages in iCloud was first announced a year ago at WWDC 2017 as a way of keeping conversations up-to-date across all your Apple devices, including iPhone, iPad, Apple Watch and Mac. Its introduction means you’ll now be able to access your entire Messages history when you set up a new Apple device, and, when you delete a message from one device, that change syncs to all your devices.

In addition to the benefit of being able to access your entire conversation history, Messages in iCloud will be especially helpful to those who tend to save their all their conversations, but have a device without a lot of storage.

Typically, this has led to those conversations taking up a sizable amount of space – sometimes even gigabytes of storage, thanks to all the photos and attachments that are shared across iMessage these days. With Messages in iCloud, however, everything – including attachments – are stored in iCloud, which frees up local storage space for other things – like music downloads, videos, podcasts, books and apps, for example.

The messages are also end-to-end encrypted for security purposes. They’re protected with a key derived from information unique to the device, combined with the device passcode – which only the device owner should know. That means no one else could access or read the data.

The Messages in iCloud feature had first appeared in early betas of iOS 11 last summer, but was later pulled before the iOS public release. It later popped up again in the iOS 11.3 beta, but it was unclear when Apple would launch it, given that it had been left out of earlier iOS releases, despite all the beta testing.

Today, the feature is rolling out to all users, via iOS 11.4.

Also new in iOS 11.4 are features focused on media and entertainment, including the launch of AirPlay 2 and support stereo pair for HomePod.

AirPlay 2 allows you to stream your music or podcasts in your home to different devices, all in-sync. You can play music in any room from any room, move music from one room to another, or play the same song everywhere using an iOS device, HomePod, Apple TV, or by asking Siri. For example, you could say, “Hey Siri, play jazz in the kitchen,” while continuing to have different music played in another room. You can also adjust the volume across all devices (“Hey Siri, turn the volume up everyone”), or play or stop music across devices. 

A number of speaker manufacturers are already committing to support AirPlay 2, including Bang & Olufsen, Bluesound, Bose, Bowers & Wilkins, Denon, Libratone, Marantz, Marshall, Naim, Pioneer and Sonos.

The previously announced support for HomePod stereo pairs, meanwhile, lets you add a second HomePod to a room and create a stereo pair which play left and right channel content separately. The HomePod devices will automatically detect and balance with each other, and detect their place in the room in order to offer a better sound.

Apple has been positioning its speaker to better compete with more high-end audio systems, like Sonos or Bose. Stereo pair support will allow it to better compete on that front, but device sales could be held back by those who prefer Amazon’s Alexa assistant, which ships on the Sonos One, to Apple’s Siri.

Calendar support is also arriving for HomePod with iOS 11.4, along with the usual bug fixes and performance tweaks.

You can check for the iOS update from the Settings app, under “General –> Software Update.” HomePod owners can update from the Home app. The update is expected to start rolling out at 10 AM PT.

from Apple – TechCrunch https://ift.tt/2snbKRs

Google brings its ARCore technology to China in partnership with Xiaomi

Google is ramping up its efforts to return to China. Earlier this year, the search giant detailed plans to bring its ARCore technology — which enables augmented reality and virtual reality — to phones in China and this week that effort went live with its first partner, Xiaomi.

Initially the technology will be available for Xiaomi’s Mix 2S devices via an app in the Xiaomi App Store, but Google has plans to add more partners in Mainland China over time. Huawei and Samsung are two confirmed names that have signed up to distribute ARCore apps on Chinese soil, Google said previously.

Starting today, #ARCore apps are available on Mix 2S devices from the Xiaomi App Store in China. More partners coming soon → https://t.co/16QoOTgqve pic.twitter.com/lT4TYXrzwF

— Google AR & VR (@GoogleARVR) May 28, 2018

Google’s core services remain blocked in China but ARCore apps are able to work there because the technology itself works on device without the cloud, which means that once apps are downloaded to a phone there’s nothing that China’s internet censors can do to disrupt them.

Rather than software, the main challenge is distribution. The Google Play Store is restricted in China, and in its place China has a fragmented landscape that consists of more than a dozen major third-party Android app stores. That explains why Google has struck deals with the likes of Xiaomi and Huawei, which operate their own app stores which — pre-loaded on their devices — can help Google reach consumers.

ARCore in action

The ARCore strategy for China, while subtle, is part of a sustained push to grow Google’s presence in China. While that hasn’t meant reviving the Google Play Store — despite plenty of speculation in the media — Google has ramped up in other areas.

In recent months, the company has struck a partnership with Tencent, agreed to invest in a number of China-based startups — including biotech-focused XtalPi and live-streaming service Chushou — and announced an AI lab in Beijing. Added to that, Google gained a large tech presence in Taiwan via the completion of its acquisition of a chunk of HTC, and it opened a presence in Shenzhen, the Chinese city known as ‘the Silicon Valley of hardware.’

Finally, it is also hosting its first ‘Demo Day’ program for startups in Asia with an event planned for Shanghai, China, this coming September. Applications to take part in the initiative opened last week.

from Android – TechCrunch https://ift.tt/2Ly9wHL
via IFTTT

Google’s Duo and Cisco’s Webex Teams among the VoIP apps pulled from the China App Store

Earlier this week, it came to light that Apple had removed a number of VoIP-based calling apps from the App Store, at the request of the Chinese government. The apps had been using CallKit, Apple’s new developer toolset that provides the calling interface for VoIP apps, freeing up developers to handle the backend communications. China’s government asked developers, by way of Apple, to remove CallKit from their apps sold on the China App Store, or they can remove their apps entirely.

Notices Apple sent out to the developers were first spotted by 9to5Mac, who shared a snippet from of one of the emails.

The email states that the Chinese Ministry of Industry and Information Technology (MIIT) “requested that CallKit be deactivated in app apps available on the China App Store,” and informed the developer they would need to comply with this regulation in order to have their app approved.

The regulation only impacts apps distributed in the China App Store.

We understand that the apps can still use CallKit and be sold in other markets outside the region.

Apple is not publicly commenting on the matter.

The pushback against CallKit is another means of discouraging people from developing or using VoIP services in China, without having to go so far as to ban the apps directly. It wouldn’t be the first time China has cracked down in this area. In November, Microsoft’s Skype was also pulled from the Apple and Android app stores.

The government also last year ordered VPN apps, which help users route around the Great Firewall, to be pulled from app stores – another order with which Apple complied.

Other social media apps, like WhatsApp and Facebook, are also disrupted at times, and newspapers’ apps like those from The NYT and WSJ are blocked, too.

According to data pulled by app store intelligence firm Sensor Tower, two dozen apps with CallKit had been removed during the week prior to the news reports.

That list, along with the date removed and publisher name, is below:

Sensor Tower notes it’s possible that there are other apps removed from additional stores, but doesn’t have that data.

In addition, this list only includes those apps that have been downloaded enough times to rank in the top 1,500 of an app category at some point – beyond that Sensor Tower wouldn’t pick it up. But an app that wasn’t ranked would have had so few downloads that the impact of its removal would be minimal.

Nevertheless, you can see list includes a few well-known names, including Cisco’s Webex Teams and Google’s Duo video calling app, among those from other operators and VoIP calling providers.

The full text of Apple’s email is below:

From Apple
5. Legal: Preamble
Guideline 5.0 – Legal

Recently, the Chinese Ministry of Industry and Information Technology (MIIT) requested that CallKit functionality be deactivated in all apps available on the China App Store. During our review, we found that your app currently includes CallKit functionality and has China listed as an available territory in iTunes Connect.

Next Steps

This app cannot be approved with CallKit functionality active in China. Please make the appropriate changes and resubmit this app for review. If you have already ensured that CallKit functionality is not active in China, you may reply to this message in Resolution Center to confirm. Voice over Internet Protocol (VoIP) call functionality continues to be allowed but can no longer take advantage of CallKit’s intuitive look and feel. CallKit can continue to be used in apps outside of China.

from Apple – TechCrunch https://ift.tt/2scoieq

Facebook, Google face first GDPR complaints over “forced consent”

After two years coming down the pipe at tech giants, Europe’s new privacy framework, the General Data Protection Regulation (GDPR), is now being applied — and long time Facebook privacy critic, Max Schrems, has wasted no time in filing four complaints relating to (certain) companies’ ‘take it or leave it’ stance when it comes to consent.

The complaints have been filed on behalf of (unnamed) individual users — with one filed against Facebook; one against Facebook-owned Instagram; one against Facebook-owned WhatsApp; and one against Google’s Android.

Schrems argues that the companies are using a strategy of “forced consent” to continue processing the individuals’ personal data — when in fact the law requires that users be given a free choice unless a consent is strictly necessary for provision of the service. (And, well, Facebook claims its core product is social networking — rather than farming people’s personal data for ad targeting.)

“It’s simple: Anything strictly necessary for a service does not need consent boxes anymore. For everything else users must have a real choice to say ‘yes’ or ‘no’,” Schrems writes in a statement.

“Facebook has even blocked accounts of users who have not given consent,” he adds. “In the end users only had the choice to delete the account or hit the “agree”-button — that’s not a free choice, it more reminds of a North Korean election process.”

We’ve reached out to all the companies involved for comment and will update this story with any response.

The European privacy campaigner most recently founded a not-for-profit digital rights organization to focus on strategic litigation around the bloc’s updated privacy framework, and the complaints have been filed via this crowdfunded NGO — which is called noyb (aka ‘none of your business’).

As we pointed out in our GDPR explainer, the provision in the regulation allowing for collective enforcement of individuals’ data rights in an important one, with the potential to strengthen the implementation of the law by enabling non-profit organizations such as noyb to file complaints on behalf of individuals — thereby helping to redress the imbalance between corporate giants and consumer rights.

That said, the GDPR’s collective redress provision is a component that Member States can choose to derogate from, which helps explain why the first four complaints have been filed with data protection agencies in Austria, Belgium, France and Hamburg in Germany — regions that also have data protection agencies with a strong record defending privacy rights.

Given that the Facebook companies involved in these complaints have their European headquarters in Ireland it’s likely the Irish data protection agency will get involved too. And it’s fair to say that, within Europe, Ireland does not have a strong reputation for defending data protection rights.

But the GDPR allows for DPAs in different jurisdictions to work together in instances where they have joint concerns and where a service crosses borders — so noyb’s action looks intended to test this element of the new framework too.

Under the penalty structure of GDPR, major violations of the law can attract fines as large as 4% of a company’s global revenue which, in the case of Facebook or Google, implies they could be on the hook for more than a billion euros apiece — if they are deemed to have violated the law, as the complaints argue.

That said, given how freshly fixed in place the rules are, some EU regulators may well tread softly on the enforcement front — at least in the first instances, to give companies some benefit of the doubt and/or a chance to make amends to come into compliance if they are deemed to be falling short of the new standards.

However, in instances where companies themselves appear to be attempting to deform the law with a willfully self-serving interpretation of the rules, regulators may feel they need to act swiftly to nip any disingenuousness in the bud.

“We probably will not immediately have billions of penalty payments, but the corporations have intentionally violated the GDPR, so we expect a corresponding penalty under GDPR,” writes Schrems.

Only yesterday, for example, Facebook founder Mark Zuckerberg — speaking in an on stage interview at the VivaTech conference in Paris — claimed his company hasn’t had to make any radical changes to comply with GDPR, and further claimed that a “vast majority” of Facebook users are willingly opting in to targeted advertising via its new consent flow.

“We’ve been rolling out the GDPR flows for a number of weeks now in order to make sure that we were doing this in a good way and that we could take into account everyone’s feedback before the May 25 deadline. And one of the things that I’ve found interesting is that the vast majority of people choose to opt in to make it so that we can use the data from other apps and websites that they’re using to make ads better. Because the reality is if you’re willing to see ads in a service you want them to be relevant and good ads,” said Zuckerberg.

He did not mention that the dominant social network does not offer people a free choice on accepting or declining targeted advertising. The new consent flow Facebook revealed ahead of GDPR only offers the ‘choice’ of quitting Facebook entirely if a person does not want to accept targeting advertising. Which, well, isn’t much of a choice given how powerful the network is. (Additionally, it’s worth pointing out that Facebook continues tracking non-users — so even deleting a Facebook account does not guarantee that Facebook will stop processing your personal data.)

Asked about how Facebook’s business model will be affected by the new rules, Zuckerberg essentially claimed nothing significant will change — “because giving people control of how their data is used has been a core principle of Facebook since the beginning”.

“The GDPR adds some new controls and then there’s some areas that we need to comply with but overall it isn’t such a massive departure from how we’ve approached this in the past,” he claimed. “I mean I don’t want to downplay it — there are strong new rules that we’ve needed to put a bunch of work into into making sure that we complied with — but as a whole the philosophy behind this is not completely different from how we’ve approached things.

“In order to be able to give people the tools to connect in all the ways they want and build committee a lot of philosophy that is encoded in a regulation like GDPR is really how we’ve thought about all this stuff for a long time. So I don’t want to understate the areas where there are new rules that we’ve had to go and implement but I also don’t want to make it seem like this is a massive departure in how we’ve thought about this stuff.”

Zuckerberg faced a range of tough questions on these points from the EU parliament earlier this week. But he avoided answering them in any meaningful detail.

So EU regulators are essentially facing a first test of their mettle — i.e. whether they are willing to step up and defend the line of the law against big tech’s attempts to reshape it in their business model’s image.

Privacy laws are nothing new in Europe but robust enforcement of them would certainly be a breath of fresh air. And now at least, thanks to GDPR, there’s a penalties structure in place to provide incentives as well as teeth, and spin up a market around strategic litigation — with Schrems and noyb in the vanguard.

Schrems also makes the point that small startups and local companies are less likely to be able to use the kind of strong-arm ‘take it or leave it’ tactics on users that big tech is able to use to extract consent on account of the reach and power of their platforms — arguing there’s a competition concern that GDPR should also help to redress.

“The fight against forced consent ensures that the corporations cannot force users to consent,” he writes. “This is especially important so that monopolies have no advantage over small businesses.”

Image credit: noyb.eu

from Android – TechCrunch https://ift.tt/2J1SXp4
via IFTTT

Some low-cost Android phones shipped with malware built in

Avast has found that many low-cost, non-Google-certifed Android phones shipped with a strain of malware built in that could send users to download apps they didn’t intend to access. The malware, called called Cosiloon, overlays advertisements over the operating system in order to promote apps or even trick users into downloading apps. Devices effected shipped from ZTE, Archos and myPhone.

The app consists of a dropper and a payload. “The dropper is a small application with no obfuscation, located on the /system partition of affected devices. The app is completely passive, only visible to the user in the list of system applications under ‘settings.’ We have seen the dropper with two different names, ‘CrashService’ and ‘ImeMess,'” wrote Avast. The dropper then connects with a website to grab the payloads that the hackers wish to install on the phone. “The XML manifest contains information about what to download, which services to start and contains a whitelist programmed to potentially exclude specific countries and devices from infection. However, we’ve never seen the country whitelist used, and just a few devices were whitelisted in early versions. Currently, no countries or devices are whitelisted. The entire Cosiloon URL is hardcoded in the APK.”

The dropper is part of the system’s firmware and is not easily removed.

To summarize:

The dropper can install application packages defined by the manifest downloaded via an unencrypted HTTP connection without the user’s consent or knowledge.
The dropper is preinstalled somewhere in the supply chain, by the manufacturer, OEM or carrier.
The user cannot remove the dropper, because it is a system application, part of the device’s firmware.

Avast can detect and remove the payloads and they recommend following these instructions to disable the dropper. If the dropper spots antivirus software on your phone it will actually stop notifications but it will still recommend downloads as you browse in your default browser, a gateway to grabbing more (and worse) malware. Engadget notes that this vector is similar to the Lenovo “Superfish” exploit that shipped thousands of computers with malware built in.

from Android – TechCrunch https://ift.tt/2koNNFV
via IFTTT

Apple offers a $50 credit for some out-of-warranty iPhone battery purchases

If you bought a battery replacement for an out-of-warranty iPhone last year, you may be eligible for a $50 credit from Apple. The company issued a new support page post this week, announcing the rebate policy, which applies to purchases made at authorized locations.

The move is part of on-going restitution in the wake of an admission that the company was throttling processing speeds on older model phones, in order to save on battery life. Late last year, Apple apologized for not informing users about the issue, promising to be more transparent in the future.

Soon after, the company began offering $29 battery replacements — a $50 discount on out-of-warranty battery replacements. This credit covers those who purchased a battery out-of-warranty any point in 2017, leading up to that new offer.

The company has promised to send an email to all eligible users with instructions on how to get the credit transferred to their account between now and July 27. Those who don’t get a notification, but still believe themselves to be eligible, can contact Apple directly between now and the end of the year.

from iPhone – TechCrunch https://ift.tt/2GIh3ji