Businesses

Cringley Predicts Apple is About to Create a Satellite-Based IoT Business (cringely.com) 48

Last summer Chinese market analyst Ming-Chi Kuo reported the iPhone 13 would include satellite communication capability, remembers long-time tech pundit Robert Cringley, who adds that the prediction was denied by Apple. "This, in itself, was weird because Apple generally doesn't react to rumors. But beyond the mere reaction, the way Apple responded to Ming's prediction was especially odd." An unattributed leak from Cupertino said that the iPhone 13 definitely would not include satellite communication capability. And even if some iPhone could communicate with satellites, the leak continued, it wouldn't be offering satellite voice service (which Ming had mentioned), limiting iPhones to satellite text or iMessage.... This was making less and less sense, but it clearly meant there was something happening.

Then came the iPhone 13 launch and Ming was wrong for a change — no satellite communications. So the Cupertino rumor mill went about its business, Ming's satellite rumor apparently forgotten.

But not by me....

And this leads Cringley to another prediction of his own: I am convinced an announcement will be coming soon. Apple will shortly enter the satellite business by acquiring GlobalStar and its 24 satellites. They will use those 24, plus 24 more satellites that Apple has already commissioned, to offer satellite service for iMessage and Apple's Find My network just like they implied in their denial last year.

These apps are proxies for Apple entering — and then dominating — the Internet of Things (IoT) business. After all, iPhones will give them 1.6 billion points of presence for AirTag detection even on sailboats in the middle of the ocean — or on the South Pole.

IoT is already a big business that is going to get even bigger even faster because of Apple. Adding that satellite connection to iMessage and Find My offers the possibility of ubiquity for IoT, though only on Apple's network. Ubiquity (being able to track anything in near real time anywhere on the planet) signals the maturity of IoT, turning it quickly into a $1 TRILLION business — in this case Apple's $1 TRILLION business....

While Apple's stated goals will be only iMessage and Find My, followed by IoT, in the longer run Cupertino plans to dis-intermediate the mobile carriers — becoming themselves a satellite-based global phone and data company. That will require shifting over additional Globalstar bandwidth plus launching another 300-600 satellites, so it is several years away but IS coming. Apple will compete not just with every other mobile carrier including Cupertino's own customers, they will also compete with satellite Internet providers like Starlink, OneWeb, and Amazon's Kuiper. Apple can compete with Starlink with so many fewer satellites because GlobalStar has vastly more licensed spectrum than does SpaceX, which has to reuse the same spectrum over and over again with thousands of satellites.

EU

EU Deal on Single Mobile Charging Port Likely June 7 in Setback for Apple (reuters.com) 151

EU countries and EU lawmakers are set to agree on a common charging port for mobile phones, tablets and headphones on June 7 when they meet to discuss a proposal that has been fiercely criticised by Apple, Reuters reported Friday, citing people familiar with the matter said. From the report: The proposal for a single mobile charging port was first broached by the European Commission more than a decade ago after iPhone and Android users complained about having to use different chargers for their phones. The former is charged from a Lightning cable while Android-based devices are powered using USB-C connectors. The trilogue next Tuesday will be the second and likely the final one between EU countries and EU lawmakers on the topic, an indication of a strong push to get a deal done, the people said.
Operating Systems

Older iPads May Soon Be Able To Run Linux (arstechnica.com) 47

Older iPads with the Apple A7- and A8-based chips may soon be able to run Linux. "Developer Konrad Dybcio and a Linux enthusiast going by "quaack723" have collaborated to get Linux kernel version 5.18 booting on an old iPad Air 2, a major feat for a device that was designed to never run any operating system other than Apple's," reports Ars Technica. From the report: The project appears to use an Alpine Linux-based distribution called "postmarketOS," a relatively small but actively developed distribution made primarily for Android devices. Dybcio used a "checkm8" hashtag in his initial tweet about the project, strongly implying that they used the "Checkm8" bootrom exploit published back in 2019 to access the hardware. For now, the developers only have Linux running on some older iPad hardware using A7 and A8-based chips -- this includes the iPad Air, iPad Air 2, and a few generations of iPad mini. But subsequent tweets imply that it will be possible to get Linux up and running on any device with an A7 or A8 in it, including the iPhone 5S and the original HomePod.

Development work on this latest Linux-on-iDevices effort is still in its early days. The photos that the developers shared both show a basic boot process that fails because it can't mount a filesystem, and Dybcio notes that basic things like USB and Bluetooth support aren't working. Getting networking, audio, and graphics acceleration all working properly will also be a tall order. But being able to boot Linux at all could draw the attention of other developers who want to help the project.

Compared to modern hardware with an Apple M1 chip, A7 and A8-powered devices wouldn't be great as general-purpose Linux machines. While impressive at the time, their CPUs and GPUs are considerably slower than modern Apple devices, and they all shipped with either 1GB or 2GB of RAM. But their performance still stacks up well next to the slow processors in devices like the Raspberry Pi 4, and most (though not all) A7 and A8 hardware has stopped getting new iOS and iPadOS updates from Apple at this point; Linux support could give some of these devices a second life as retro game consoles, simple home servers, or other things that low-power Arm hardware is good for.
Further reading: Linux For M1 Macs? First Alpha Release Announced for Asahi Linux
Apple

Newest Apple Museum Claims To Be 'Biggest and Most Complete' With 1,600 Exhibits (9to5mac.com) 43

An anonymous reader quotes a report from 9to5Mac: Apple Museum of Poland is now open, boasting to be the "biggest and most complete" collection in the world. With over 1,600 exhibits, the museum is the result of years of dedication from Polish collector and architect Jacek Lupina and spans the company's 46-year history. The Apple Museum, located in a former metalworking factory in Warsaw, features a replica of the Apple 1 at its entrance. Released in 1976, the Apple 1 was the first personal computer that Steve Jobs and Steve Wozniak sold. Additionally, the motherboard of the museum's Apple 1 replica includes a signature from Steve Wozniak himself.

Lupina's goal is to showcase how far the company has come and how much things have changed in over four decades. [...] While there's a lot to show, the Apple Museum isn't holding all exhibits at once as it is rotating subjects periodically. The collection exhibits Apple, Macintosh, and NeXT computers as well as iPhones, iPods, and iPads. Also, on the walls, there are vintage advertisements like the well-known "Think Different" campaign from 1997.

Iphone

The Underground Company That Hacks iPhones for Ordinary Consumers (vice.com) 17

Researchers suspect the checkm8[dot]info service is used by criminals to launder stolen iPhones. The tool's administrator claims the service is just a response to Apple's poor right to repair policies. From a report: "Activation Lock," a message displayed across the iPhone's screen read. "This iPhone is linked to an Apple ID. Enter the Apple ID and password that were used to set up this iPhone." This lock essentially turns iPhones into very expensive paperweights until the owner enters the requested credentials. The feature is designed to stop anyone else from using the phone if it's lost, or thieves from making money by reselling a stolen device. In part, Activation Lock is intended to make iPhones less attractive to thieves because stolen devices can't be used.

Now, an underground group is offering people a way to strip that lock from certain iPhones with its pay-for-hacking service. iOS security experts suspect it is being used to remove protections from stolen iPhones. The hacking group called Checkm8[dot]info offering the service, which lifts its name from a popular free-to-use jailbreak, insists its tool cannot be used by thieves. "Our goal is the ability to repair electronics as it's the key to saving resources, tackling e-waste and environmental damage," the administrator of Checkm8[dot]info told Motherboard in an email. Motherboard has previously written about how criminals have used phishing emails to grab necessary login credentials to remove the Activation Lock. Checkm8[dot]info provides a much easier method, and appears to streamline what is ordinarily a complicated process into one that non-technical users can follow. Checkm8[dot]info is correct in that Activation Lock can be frustrating to iPhone repair professionals, electronic waste facilities, and refurbishers, and has caused many perfectly good phones obtained through legal means to be shredded or destroyed. A user of the Checkm8[dot]info site told Motherboard they used the service as part of their legal phone reselling business.

Iphone

Cydia's Antitrust Case Against Apple Can Proceed, Judge Rules (engadget.com) 69

In 2018, Engadget described Cydia as the maker of an app store for jailbroken iPhones that shut down claiming it just wasn't profitable (after operating for nearly a decade).

But now Cydia has filed an antitrust case against Apple, Engadget reports: On Thursday, Judge Yvonne Gonzalez Rogers, the same judge that oversaw the case between Apple and Epic Games, ruled Cydia's creator, Jay "Saurik" Freeman, could present his claim against the company after rejecting a bid by Apple to dismiss the complaint. [According to a paywalled article from Reuters.]

Freeman first sued Apple at the end of 2020, alleging the company had an "illegal monopoly over iOS app distribution." Judge Gonzalez Rogers dismissed Cydia's initial complaint against Apple, ruling the suit fell outside the statute of limitations. But she also granted Freeman leave to amend his case, which is what he did. In its latest complaint, Cydia argues that iOS updates Apple released between 2018 and 2021 constituted "overt" acts that harmed distributors like itself. That's a claim Judge Gonzalez Rogers found credible enough to explore.

Portables (Apple)

'Why Won't Corsair and Dell Just Let Apple's Touch Bar Die Already?' (macworld.com) 86

An anonymous reader shares an excerpt from an opinion piece, written by Macworld's Michael Simon: Apple killed its Touch Bar on the 14-inch and 16-inch MacBook Pro last year, but PC makers seem determined to prove the company wrong. First Dell introduced the XPS 13 Plus which sports a "new capacitive touch experience that allows you to switch between media and function keys easily." The laptop is available for purchase but back-ordered for weeks, and there haven't been any reviews so we don't know for sure how it will be received, but Dell's touch bar concept seems even less useful than Apple's: the buttons are static, they merely float above the actual keyboard, and they don't appear to add any functionality. Then Dell added a touch bar to the trackpad on the Latitude 9330. [...]

Now there's a new PC touch bar, this time on the Voyager a1600, Corsair's first-ever gaming laptop. Corsair hasn't named or even officially announced the new feature -- it only appeared as a sneak peek -- but the company told The Verge that the strip features "10 easy-access customizable S-key shortcut buttons." [...] Corsair's Touch Bar doesn't replace the row of function keys but it is in an odd location -- on the hinge below the display. Even in pictures, it looks incredibly uncomfortable to reach. According to renders, you can still access the Touch Bar when the laptop is closed, which seems like an accident waiting to happen (not to mention a battery drain).

But the biggest question I have is: why? No one shed a tear for the Touch Bar when it was killed. While it has its merits, it was never a proper pro-level feature and the implementation didn't evolve past the original idea. It was too skinny, lacked tactile feedback, required constant scrolling, and didn't actually save time. It looked nice, but even Apple didn't seem to know what to do with it. The MacBook Pro Touch Bar was one of Apple's most polarizing features and it never really caught on with developers. Maybe a niche use like gaming or video conferencing will have better results, but ultimately the Touch Bar, Apple's or otherwise, is a failed concept that should stay in the past.

Google

US Bill Would Bar Google, Apple From Hosting Apps That Accept China's Digital Yuan (reuters.com) 52

Republican Senators want to bar U.S. app stores including Apple and Google from hosting apps that allow payments to be made with China's digital currency, according to a copy of proposed legislation seen by Reuters, amid fears the payment system could allow Beijing to spy on Americans. From a report: The bill to be unveiled on Thursday by Senators Tom Cotton, Marco Rubio and Mike Braun states that companies that own or control app stores "shall not carry or support any app in [their] app store(s) within the United States that supports or enables transactions in e-CNY." According to Cotton's office, digital yuan could provide the Chinese government with "real-time visibility into all transactions on the network, posing privacy and security concerns for American persons who join this network."
The Courts

Epic Games Points To Mac's Openness and Security in Its Latest Filing in App Store Antitrust Case (techcrunch.com) 71

In a new court filing, Epic Games challenges Apple's position that third-party app stores would compromise the iPhone's security. And it points to Apple's macOS as an example of how the process of "sideloading" apps -- installing apps outside of Apple's own App Store, that is -- doesn't have to be the threat Apple describes it to be. From a report: Apple's Mac, explains Epic, doesn't have the same constraints as found in the iPhone operating system, iOS, and yet Apple touts the operating system used in Mac computers, macOS, as secure. The Cary, N.C.-based Fortnite maker made these points in its latest brief, among several others, related to its ongoing legal battle with Apple over its control of the App Store. Epic Games wants to earn the right to deliver Fortnite to iPhone users outside the App Store, or at the very least, be able to use its own payment processing system so it can stop paying Apple commissions for the ability to deliver its software to iPhone users.
Hardware

Samsung Allegedly Assembling a 'Dream Team' To Take Down Apple's M1 In 2025 (neowin.net) 47

Samsung is rumored to be assembling a special task force dubbed "Dream Platform One team" tasked with designing a custom in-house Samsung mobile Application Processor (AP) that can take on Apple Silicon. Neowin reports: It's probably fair to say that Samsung hasn't had the best time with its Exynos offerings when compared against rivals like Qualcomm or Apple. To shake its fortunes up, the company also paired up with AMD for its Exynos 2200 GPU, and results were a mixed bag. Both the AMD RDNA 2 Xclipse 920 graphics and the Exynos 2200 CPU were found to be pretty disappointing in terms of power efficiency as they were not much better than the previous Exynos 2100 offering. In a nutshell, the new CPU was around 5% faster while the AMD graphics was around 17% better, both of which were clearly not enough (via TechAltar on Twitter). However, the company is looking to get real serious and down to business come 2025. The new report coincides with a separate report suggesting that Samsung was working on a custom chipset for its Galaxy S series. The downside is that it's not slated for 2025 and will obviously have to compete against whatever Apple offers at that time.
Apple

Apple Shipped Me a 79-Pound iPhone Repair Kit To Fix a 1.1-Ounce Battery (theverge.com) 219

An anonymous reader shares a report: Last month, Apple launched its Self-Service Repair program, letting US customers fix broken screens, batteries, and cameras on the latest iPhones using Apple's own parts and tools for the first time ever. I couldn't wait. I'd never successfully repaired a phone. This time, armed with an official repair manual and genuine parts, I'd make it right. That Apple would even let me buy those parts, much less read its manuals and rent its tools, is a major change of pace for the company. For years, Apple has been lobbying to suppress right-to-repair policies around the country, with the company accused of doing everything it can to keep customers from repairing their own phones. It's easy to see this as a huge moment for DIY advocates. But having tried the repair process, I actually can't recommend it at all -- and I have a sneaking suspicion that Apple likes it that way.

The thing you should understand about Apple's home repair process is that it's a far cry from traditional DIY if you opt for the kit -- which I did, once I saw the repair manual only contains instructions for Apple's own tools. (You can just buy a battery if you want.) I expected Apple would send me a small box of screwdrivers, spudgers, and pliers; I own a mini iPhone, after all. Instead, I found two giant Pelican cases -- 79 pounds of tools -- on my front porch. I couldn't believe just how big and heavy they were considering Apple's paying to ship them both ways. I lugged those cases onto a BART train to San Francisco and dragged them down the streets to our office. Then, I set everything out on a table and got started.

Apple

Apple In Talks To Buy EA Gaming; Disney and Amazon Also Potential Suitors (9to5mac.com) 78

Video game publisher Electronic Arts (EA) is actively seeking a potential buyer or merger. Apple has reportedly been in talks with the company about buying EA out according to Puck. Disney and Amazon have also been in talks about purchasing the video game company. 9to5Mac reports: The Redwood City-based firm has published hits like Apex Legends, Madden, and The Sims franchise. According to Puck, EA ideally would like a merger so Andrew Wilson can remain CEO of the combined company. [...] EA's roots actually go back to Apple. Back in 1982, Apple's then Director of Strategy and Marketing, Trip Hawkins, left the company to start EA. A buyout wouldn't be Apple's first venture into gaming, however. The Cupertino company unveiled its gaming service Apple Arcade back in 2019. Through Apple Arcade, users can play ad-free games on their iOS, macOS, and tvOS devices.
Apple

Apple's Headset Said To Feature 14 Cameras Enabling Lifelike Avatars (macrumors.com) 15

Citing a report from The Information's Wayne Ma (paywalled), MacRumors reports Apple's long-rumored AR/VR headset is said to feature 14 cameras that enable lifelike avatars with accurate facial expressions. The company is also working with former design chief Jony Ive on the project. From the report: For starters, one of the headset's marquee features is said to be lifelike avatars with accurate facial expressions captured by 14 cameras: "Other challenges, such as incorporating 14 cameras on the headset, have caused headaches for hardware and algorithm engineers. The cameras include those that will track the user's face to ensure virtual avatars accurately represent their expressions and mouth movements, a marquee feature."

The report adds that Apple's former design chief Jony Ive has remained involved with the headset project as an external consultant to the company: "One person familiar with the matter said Ive's consulting work for Apple since he left includes the headset, adding that he is often brought in to help his former team push through their preferences in areas such as battery, camera placement and ergonomics over those of engineers. Two people said even after Ive left Apple, some employees on the headset project were still required to make the trek from Cupertino to San Francisco, where Ive has a home, to get his approval on changes. Ive has continued to tweak the headset's design. While earlier prototypes had the battery in the headband, he prefers a design that would tether the headset to a battery the user wears, similar to Magic Leap's headset design. It couldn't be learned if this approach will make it into the final design."

The initial version of Apple's headset is said to lack a focus on gaming: "Four people who have worked on the project also criticized its lack of focus on gaming, a category of software that appeals to early adopters, which was important to the success of the iPhone and has been a big priority for Meta's VR group. Those people said Rockwell's group almost never mentioned games in internal presentations about possible uses for the headset. Apple isn't developing game controllers for the device and is aiming to use hand tracking or in combination with a clothespin-like finger clip as inputs for the device, multiple people familiar with the project say."
On Thursday, Bloomberg reported that Apple executives previewed the upcoming headset to the company's board last week, "indicating that development of the device has reached an advanced stage."
Apple

Apple Shows Headset To Board in Sign of Progress on Project (bloomberg.com) 32

Apple executives previewed its upcoming mixed-reality headset to the company's board last week, indicating that development of the device has reached an advanced stage, Bloomberg News reported Thursday, citing people with knowledge of the matter. From the report: The company's board, made up of eight independent directors and Apple Chief Executive Officer Tim Cook, convenes at least four times a year. A version of the device was demonstrated to the directors during the latest gathering, said the people, who asked not to be identified because the meeting was private.

In recent weeks, Apple has also ramped up development of rOS -- short for reality operating system -- the software that will run on the headset, according to other people familiar with the work. That progress, coupled with the board presentation, suggests that the product's debut could potentially come within the next several months. The headset, which combines elements of virtual and augmented reality, is Apple's next big bet.

Google

Apple Reverses Remote Work Policy After Machine Learning Head Decamps To Alphabet (gizmodo.com) 79

An anonymous reader quotes a report from Gizmodo: One of Apple's highest-profile return-to-office detractors reportedly landed a new gig at Alphabet's DeepMind, marking the latest drama over Big Tech's remote work scuffles. That move, ironically, comes right around the same time Apple decided to walk back its most recent return-to-office push. In an internal memo viewed by Bloomberg Tuesday, the company said it will delay its three-day in-office work requirement set to take effect on May 23. The memo reportedly cited the recent uptick in covid-19 cases for the delay and didn't provide any hard date for when they'd try again. Apple workers are still required to work in the office two days per week and will now have to wear masks in common areas.

At the same time, Ian Goodfellow, Apple's former Director of Machine Learning, who dramatically left the company at least in part over its remote work restrictions, will reportedly join Alphabet's DeepMind. Sources told Bloomberg Goodfellow will join DeepMind as an "individual contributor." He had previously worked as a senior researcher at Google back in 2019. That job switch marks a major blow for Apple, a company that's struggled to appease workers at odds with its return to work strategy. Goodfellow, who's the most senior member known to have jumped ship over remote work so far, reportedly addressed the issue directly in a note to staff obtained by The Verge's Zoe Schiffer. "I believe strongly that more flexibility would have been the best policy for my team," Goodfellow reportedly wrote.
The report notes that Alphabet hasn't fully embraced a remote-first office either, "thought previous reports suggest Google more regularly approves remote requests [than Apple]."

As office returns accelerate, many workers are willing to give up their jobs over workplace flexibility. According to a survey of 1,000 U.S. adults last year, 39% said they "would consider quitting if their employers weren't flexible about remote work." That figure was 49% among millennials and Gen Z.
Apple

Apple Reportedly Testing E Ink Outer Display for Upcoming Foldable (techcrunch.com) 24

An anonymous reader shares a report: Ming-Chi Kuo is one of a handful of Apple analysts whose reports always warrant a second look, regardless of how strange they might seem at first blush. We've heard plenty of reports that the company is testing its own version of a foldable device, in its customary style of being fashionably late to the party, while also being the best dressed there. It stands to reason that the company is experimenting with all sorts of takes on the form factor. While companies like Samsung and Huawei have made great strides since the first generation of foldable devices, one can certainly make the argument that no one has perfectly cracked the code just yet. The screen technology has improved a good bit in recent years -- and so, too, has E Ink technology. "Apple is testing E Ink's Electronic Paper Display (EPD) for future foldable device's cover screen and tablet-like applications," Kuo reported on Twitter earlier today. "The color EPD has the potential to become a mainstream solution for foldable devices' must-have cover/second screen thanks to its excellent power-saving."
Android

'I Want An iPhone Mini-Sized Android Phone!' (smallandroidphone.com) 167

Eric Migicovsky, founder of smartwatch company Pebble and lover of small Android phones, decided to take matters into his own hands and "rally other fans of small phones together" to put pressure on phone manufacturers to consider making a small Android phone -- complete with all the premium features one could expect to find in a larger device. Essentially, what he wants is an iPhone Mini-sized phone running Android. Is that too much to ask?

Here's an excerpt from his manifesto (via smallandroidphone.com): My Dream Small Android phone Optimizes for only 3 things:

- Sub 6" display, matching size and design of iPhone 13 Mini
- Great cameras
- Stock Android OS

If you can hit these three bullets, you've built the perfect phone. Currently there are ZERO premium Android phones with less than 6" displays. No amount of money can buy one right now. Focus on these three bullets, all other specs are flexible.

Price: $700-800 (again, we have no alternatives so we should be willing to pay a bit more!)
In a call-to-action, Migicovsky asks readers who agree with him to sign up on this page to help "convince a manufacturer to build us our dream phone." He adds: "If no one else makes one I guess I will be forced to make it myself, but I really really don't want it to come to that!"
The Almighty Buck

Apple Now Letting Developers Automatically Charge for Some Subscription Price Increases (macrumors.com) 24

Apple today informed developers that it is implementing a new subscription feature that will allow customers to be charged automatically when an app's subscription price goes up, which is not the way that subscriptions work at the current time. MacRumors reports: Right now, customers must explicitly agree to a pricing change when the cost of a subscription increases through an "Agree to New Price" interface. If a customer does not tap on agree when the warning comes up, their subscription is automatically canceled, but that's changing. Going forward, developers will be able to increase the price of a subscription and have it auto renew, with customers simply being informed rather than needing to outright agree. Apple says that "under specific conditions and with advance user notice" developers can offer an auto-renewable subscription price increase without the user needing to take action and without their subscription being impacted.

There are specific limits that Apple is placing on developers to make sure this functionality is not abused. A pricing increase cannot occur more than once per year, and it cannot exceed $5 and 50 percent of the subscription price, or $50 and 50 percent for an annual subscription price. Apple says that it will always notify users of the pricing increase in advance, via email, push notification, and a message within the app. Apple will also provide instructions on how to view, manage, and cancel subscriptions. [...] In situations where prices increase more often than once a year or exceed Apple's thresholds, subscribers will need to opt in as usual before the pricing increase is applied. Apple says that this will also happen in territories where the law requires it.

Businesses

Apple Delays Plan To Have Staff in Office Three Days a Week (bloomberg.com) 64

Apple delayed a plan to require workers to come back to the office three days a week, citing a resurgence in Covid-19 cases, marking the latest setback in its efforts to return to normal. From a report: The company informed employees Tuesday that it's delaying the requirement, which had been slated to go into effect on May 23, according to a memo seen by Bloomberg. However, the company is still expecting workers to come to the office two days per week. The company said the requirement is being delayed for "the time being" and didn't provide a new date. Apple was set to require employees to work from the office on Mondays, Tuesdays and Thursdays beginning next week -- a policy that had been controversial among some staff. Already, employees have been coming in two days a week as part of a ramp-up effort that began in April. For now, that mandate isn't changing.
Iphone

Researchers Devise iPhone Malware That Runs Even When Device Is Turned Off (arstechnica.com) 54

An anonymous reader quotes a report from Ars Technica: When you turn off an iPhone, it doesn't fully power down. Chips inside the device continue to run in a low-power mode that makes it possible to locate lost or stolen devices using the Find My feature or use credit cards and car keys after the battery dies. Now researchers have devised a way to abuse this always-on mechanism to run malware that remains active even when an iPhone appears to be powered down. It turns out that the iPhone's Bluetooth chip -- which is key to making features like Find My work -- has no mechanism for digitally signing or even encrypting the firmware it runs. Academics at Germany's Technical University of Darmstadt figured out how to exploit this lack of hardening to run malicious firmware that allows the attacker to track the phone's location or run new features when the device is turned off. This video provides a high overview of some of the ways an attack can work.

The findings (PDF) have limited real-world value since infections required a jailbroken iPhone, which in itself is a difficult task, particularly in an adversarial setting. Still, targeting the always-on feature in iOS could prove handy in post-exploit scenarios by malware such as Pegasus, the sophisticated smartphone exploit tool from Israel-based NSO Group, which governments worldwide routinely employ to spy on adversaries. Besides allowing malware to run while the iPhone is turned off, exploits targeting LPM could also allow malware to operate with much more stealth since LPM allows firmware to conserve battery power. And of course, firmware infections are already extremely difficult to detect since it requires significant expertise and expensive equipment.

Slashdot Top Deals