A one-man Bunco Squad is poking holes in Apple's App Store image. From a report: Recently, I reached out to the most profitable company in the world to ask a series of basic questions. I wanted to understand: how is a single man making the entire Apple App Store review team look silly? Particularly now that Apple's in the fight of its life, both in the courts and in Congress later today, to prove its App Store is a well-run system that keeps users safe instead of a monopoly that needs to be broken up. That man's name is Kosta Eleftheriou, and over the past few months, he's made a convincing case that Apple is either uninterested or incompetent at stopping multimillion-dollar scams in its own App Store.

He's repeatedly found scam apps that prey on ordinary iPhone and iPad owners by luring them into a "free trial" of an app with seemingly thousands of fake 5-star reviews, only to charge them outrageous sums of money for a recurring subscription that many don't understand how to cancel. "It's a situation that most communities are blind to because of how Apple is essentially brainwashing people into believing the App Store is a trusted place," he tells The Verge. There's a lot to unpack there: fake free trials, fake reviews, subscription awareness. We could write an entire story about each. Today, I'd like to focus on how one guy could find what Apple's $64-billion-a-year App Store apparently cannot, because the answer is remarkable.

An anonymous reader quotes a report from Vox: The company plans to start selling subscriptions to podcasts and keeping a slice of each transaction for itself. Apple CEO Tim Cook briefly mentioned plans to roll out a subscription feature during the company's keynote event Tuesday, without offering more details. But a person familiar with Apple's plans has spelled it out to Recode:

- Starting next month, Apple will let podcast publishers sell subscriptions to individual shows or groups of shows, and set their own pricing, starting at 49 cents a month in the US.
- Apple won't require podcasters to create Apple-only exclusive shows, but it does want them to distinguish between stuff they're already distributing via Apple and stuff going up on other platforms: That could mean ad-free shows or shows with extra content or brand-new shows that only exist on Apple.
- Apple will keep 30 percent of any subscription revenue creators generate in their first year on the platform. After that, Apple's cut will drop to 15 percent. That's the same pricing scheme Apple already uses for other subscription services, like TV streamers.

The new Apple TV sports a more powerful A12 Bionic chip that lets it play HDR video at higher frame rates. It also comes equipped with a redesigned Siri remote. The Verge reports: The new Siri remote has an iPod-style scroll wheel, a five-way click pad, touch controls, a mute button, and a power button that can turn your TV on and off. Meanwhile, the Siri button is now on the side of the remote, and Apple says that the voice assistant now works on Apple TV in Austria, Ireland, and New Zealand, in addition to the 13 countries where it was already supported. Finally, the new Siri remote's enclosure is made out of 100 percent recycled aluminum.

You'll get the new remote with the new $179 4K set-top box, or it's available separately for $59. As well as being compatible with the new Apple TV 4K, it also works with the 2017 model and Apple TV HD. Apple will also sell the remote bundled with the Apple TV HD for $149. Other features of the Apple TV 4K include support for 60fps Dolby Vision playback over AirPlay from a compatible iPhone, and the ability to optimize the colors of your TV screen using the light sensor on an iPhone.

An anonymous reader writes: The operators of the REvil ransomware are demanding that Apple pay a ransom demand to avoid having confidential information leaked on the dark web. The REvil crew claims it came into possession of Apple product data after breaching Quanta Computer, a Taiwanese company that is the biggest laptop manufacturer in the world and which is also one of the companies that assemble official Apple products based on pre-supplied product designs and schematics.

The REvil gang posted 21 screenshots depicting Macbook schematics and threatened to publish new data every day until May 1, or until Apple or Quanta pay the ransom demand. The extortion attempt was also perfectly timed for maximum visibility to coincide with the Spring Loaded event, where Apple announced new products and software updates.

At today's Spring Loaded event, Apple unveiled a new version of the iPad Pro, equipped with the M1 chip that was first introduced on the company's Mac line. TechCrunch reports: The new chip sports an 8-core CPU, with performance up to 50% faster than the A12Z Bionic found on the previous generation. There's also an 8-core GPU, which it claims is up to 40% faster. The system can be decked out to up to 16 GB of RAM and 2 TB of storage. The device further blurs the line between the company's tablet and desktop offerings, as well as improved battery life now listed as "all day." The Pro also adds Thunderbolt support to the USB-C, which allows for a number of new features including external display support and wired transfers up to 40 Gbps.

As reported, the new tablet (12.9-inch only for now) features an improved display -- Liquid Retina XDR, according to Apple's marketing terms. Among other things that brings much improved high dynamic range. The display is powered by 10,000 micro-LED. That allows for a hugely improved contrast ratio and 1,000 nits of brightness, without hammering the battery life. The 11-inch version starts at $799 and the 12.9-inch, which adds the Liquid Retina display, starts at $1,099. Pre-orders on the tablets starts April 30 and the product is set to start shipping in the second half of May -- along with a number of other products introduced at today's show.

Now that Apple's lost item finder AirTag has officially been introduced, competitor Tile is going on record ahead of its testimony in front of Congress tomorrow about how it perceives Apple's latest product. In a statement, Tile CEO CJ Prober said today: "Our mission is to solve the everyday pain point of finding lost and misplaced things and we are flattered to see Apple, one of the most valuable companies in the world, enter and validate the category Tile pioneered. The reason so many people turn to Tile to locate their lost or misplaced items is because of the differentiated value we offer our consumers. In addition to providing an industry leading set of features via our app that works with iOS and Android devices, our service is seamlessly integrated with all major voice assistants, including Alexa and Google. And with form factors for every use case and many different styles at affordable prices, there is a Tile for everyone.

Tile has also successfully partnered with top brands like HP, Intel, Skullcandy and fitbit to enable our finding technology in mass market consumer categories like laptops, earbuds and wearables. With over 30 partners, we look forward to extending the benefits of Tile to millions of customers and enabling an experience that helps you keep track of all your important belongings. We welcome competition, as long as it is fair competition. Unfortunately, given Apple's well-documented history of using its platform advantage to unfairly limit competition for its products, we're skeptical. And given our prior history with Apple, we think it is entirely appropriate for Congress to take a closer look at Apple's business practices specific to its entry into this category. We welcome the opportunity to discuss these issues further in front of Congress tomorrow.

Apple has finally given the world a dramatic new iMac redesign, aimed at the company's long-standing goal of "making the computer disappear." From a report: Naturally, the latest version of the 24-inch all-in-one desktop is built around the company's new proprietary M1 chips. The screen sports a 4.5K Retina Display, coupled with a 1080p camera -- a first for the Mac line, and a sign the company is taking both audio and video more seriously as these products are serving as a kind of life line for the work from home crowd. True Tone is, naturally, on board for better color balance, and sound have been improved with six-speaker setup.

The new devices are significantly thinner -- with overall volume reduced by half, according to the company. The rear is also flat, instead of curved. All told, the company says it's up to 85% faster than the last model, coupled with a GPU that's up to twice as fast and 3x the machine learning. Around back are two Thunderbolt ports and a new magnetic power adapter that also delivers Ethernet. The system comes in seven colors. It starts at $1,299.

Apple has launched a Tile-like item tracker that will work with the company's software and services. From a report: Dubbed AirTag, the small circular tag will allow you to track items within Apple's "Find My" app on iOS. Much like Tile, Apple's AirTags will be useful for tracking items like keys or wallets, and you'll be provided with notifications when you're separated from your item. The AirTag itself is a small puck-like device that includes a built-in speaker, accelerometer, Bluetooth LE, and a user-replaceable battery. Apple says the tracker should last for a year of battery life, and you can use an NFC tap to activate a lost mode. AirTag will be available for $29 on April 30th, or $99 for a four-pack of the devices. Apple is also working with accessory makers to create luggage tag and keyring enclosures for the AirTag itself.

Apple has approved Parler's return to the iOS app store following improvements the social media company made to better detect and moderate hate speech and incitement, according to a letter the iPhone maker sent to Congress on Monday. From a report: The decision clears the way for Parler, an app popular with conservatives including some members of the far right, to be downloaded once again on Apple devices. The letter -- addressed to Sen. Mike Lee and Rep. Ken Buck and obtained by CNN -- explained that since the app was removed from Apple's platform in January for violations of its policies, Parler "has proposed updates to its app and the app's content moderation practices." On April 14, Apple's app review team told Parler that its proposed changes were sufficient, the letter continued. Now, all Parler needs to do is to flip the switch. "Apple anticipates that the updated Parler app will become available immediately upon Parler releasing it," Apple's letter said. Parler, an alternative to Facebook and Twitter that bills itself as a haven for free speech, was removed from major tech platforms in early January following the US Capitol riots of Jan. 6.

According to app developer Kosta Eleftheriou, Apple's App Store hosted a kid's game that's actually a front for gambling websites. "The secret password isn't one you'd be likely to guess: you have to be in the right country -- or pretend to be in the right country using a VPN," writes Sean Hollister via The Verge. "But then, instead of launching an ugly monkey-flipping endless runner game filled with typos and bugs, the very same app launches a casino experience." From the report: The app, "Jungle Runner 2k21," has already disappeared from the App Store, presumably thanks to publicity from Gizmodo and Daring Fireball, who each wrote about Eleftheriou's finding earlier today. It's not the only one, though: the same developer, "Colin Malachi," had another incredibly basic game on the App Store called "Magical Forest - Puzzle" that was also a front for gambling. [...] I accessed them from a VPN server in Turkey; While Daring Fireball notes that users in other non-US countries like Italy also seem to have been able to access the gambling sites, I tried them with a number of other locations including Italy without success.

Unlike the multi-million dollar App Store scams that Eleftheriou uncovered earlier this year, it's not hard to see why Apple's App Store review program might have missed these -- they largely look like your typical shovelware if you don't know the trick, with only a handful of tells... like the fact that Jungle Runner uses a Pastebin for its privacy policies. It's not necessarily clear to me that they'd be violating very many of Apple's App Store policies, either. Gambling apps are permitted by Apple, as long as they're geo-restricted to regions where that gambling is permitted by law, and you could maybe argue that's exactly what this developer did by checking your IP address.

Apple Music told artists it pays a penny per stream in a letter reviewed by The Wall Street Journal. From a report: The disclosure, made in a letter to artists delivered Friday via the service's artist dashboard and sent to labels and publishers, is part of a growing effort by music-streaming services to show they are artist-friendly. For Apple, it can be seen as a riposte to Spotify Technology, which last month shared some details of how it pays the music industry for streams on its service. Apple's penny-per-stream payment structure -- which music-industry experts say can dip lower -- is roughly double what Spotify, the world's largest music-streaming service, pays music-rights holders per stream. Spotify pays an average of about one-third to one-half penny per stream, though its larger user base generates many more streams. Apple's payments come out of monthly subscription revenue from users. Artists, managers and lawyers, still reeling from the loss of touring revenue during the pandemic, have been calling for higher payouts from music streaming, which has grown rapidly in the past year. Many fans have joined the push to raise artists' compensation.

A federal judge tossed a $506.2 million damages award against Apple after ruling the iPhone maker should have been able to argue that patent owner Optis Wireless Technology was making unfair royalty demands, though he refused to throw out the liability finding. From a report: Optis and its partners in the case, PanOptis Patent Management and Unwired Planet, claimed that Apple's smartphones, watches, and tablets that operate over the LTE cellular standard were using its patented technology. U.S. District Court Judge Rodney Gilstrap said the jury should have been allowed to consider whether the royalty demand was consistent with a requirement that standard-essential patents be licensed on "fair, reasonable and non-discriminatory," or FRAND, terms. The patent trial in August, one of the few held during the pandemic, was part of an unusual sweep of verdicts in Texas that collectively resulted in $3.7 billion in damages against tech companies like Apple and Intel Corp. Apple was also hit with damages awards of $502.8 million in a decade-long battle over security communications technology, and $308.5 million in a case over digital rights management.

Apple on Thursday announced it's launching a $200 million "Restore Fund" that will "make investments in forestry projects to remove carbon from the atmosphere while generating a financial return for investors." From a report: The move is the latest step by the world's largest tech companies to invest in climate initiatives, including a number of efforts to finance technologies and methods to not only cut emissions, but remove atmospheric CO2.

Researchers at the University of Washington have partnered with Apple to study how Apple Watch may be used to predict illnesses such as coronavirus, or flu. Apple Insider reports: "The goal of the study is to see if the information collected by the Apple Watch and iPhone can detect early signs of respiratory illnesses like COVID-19," say the organizers on the recruitment page. The study is focusing on the Seattle area because residents "may have higher than normal risk of respiratory illness because of frequent exposure to other people through work or other activities, health conditions, or other factors."

This Apple Respiratory Study is expected to take "up to six months." During the study, participants will be required to periodically answer survey questions in the Apple Research iPhone app. If participants get sick while enrolled in the study, they will be sent an in-home testing kit for COVID-19 and other respiratory illnesses. But, this will likely assist the study further, as sick participants will be asked to "take some additional health measurements using your Apple Watch."

A new report from The Washington Post reveals how the FBI gained access to an iPhone linked to the 2015 San Bernardino shooting. Apple refused to build a backdoor into the phone, citing the potential to undermine the security of hundreds of millions of Apple users, which kicked off a legal battle that only ended after the FBI successfully hacked the phone. Thanks to the Washington Post's report, we now know the methods the FBI used to get into the iPhone. Mitchell Clark summarizes the key findings via The Verge: The phone at the center of the fight was seized after its owner, Syed Rizwan Farook, perpetrated an attack that killed 14 people. The FBI attempted to get into the phone but was unable to due to the iOS 9 feature that would erase the phone after a certain number of failed password attempts. Apple attempted to help the FBI in other ways but refused to build a passcode bypass system for the bureau, saying that such a backdoor would permanently decrease the security of its phones. After the FBI announced that it had gained access to the phone, there were concerns that Apple's security could have been deeply compromised. But according to The Washington Post, the exploit was simple: [An Australian security firm called Azimuth Security] basically found a way to guess the passcode as many times as it wanted without erasing the phone, allowing the bureau to get into the phone in a matter of hours.

The technical details of how the auto-erase feature was bypassed are fascinating. The actual hacking was reportedly done by two Azimuth employees who gained access to the phone by exploiting a vulnerability in an upstream software module written by Mozilla. That code was reportedly used by Apple in iPhones to enable the use of accessories with the Lightning port. Once the hackers gained initial access, they were able to chain together two more exploits, which gave them full control over the main processor, allowing them to run their own code. After they had this power, they were able to write and test software that guessed every passcode combination, ignoring any other systems that would lock out or erase the phone. The exploit chain, from Lightning port to processor control, was named Condor. As with many exploits, though, it didn't last long. Mozilla reportedly fixed the Lightning port exploit a month or two later as part of a standard update, which was then adopted by the companies using the code, including Apple.

Parallels today announced the release of Parallels Desktop 16.5 for Mac with full support for M1 Macs, allowing for the Windows 10 ARM Insider Preview and ARM-based Linux distributions to be run in a virtual machine at native speeds on M1 Macs. From a report: Parallels says running a Windows 10 ARM Insider Preview virtual machine natively on an M1 Mac results in up to 30 percent better performance compared to a 2019 model 15-inch MacBook Pro with an Intel Core i9 processor, 32GB of RAM, and Radeon Pro Vega 20 graphics. Parallels also indicates that on an M1 Mac, Parallels Desktop 16.5 uses 2.5x less energy than on the latest Intel-based MacBook Air. Microsoft does not yet offer a retail version of ARM-based Windows, with the Windows 10 ARM Insider Preview available on Microsoft's website for Windows Insider program members. The ability to run macOS Big Sur in a virtual machine is a feature that Parallels hopes to add support for in Parallels Desktop later this year as well.

If you're wondering when Apple will hold its next event, Siri may have the answer. From a report: Ask the digital helper: "When is the next Apple event?" and it will respond with "the special event is on Tuesday, April 20, at Apple Park in Cupertino, CA. You can get all the details on Apple.com." MacRumors, which spotted the reply, says the virtual assistant is providing it in certain instances on iPhone, iPad, Mac, and HomePod. While it's an open secret that Apple is planning an event for later this month where it's expected to debut a new iPad Pro, Siri has seemingly leaked the date ahead of confirmation. We won't have to wait long to find out if the info is correct, though. Apple normally sends out invites to the press a week ahead of the proceedings, so it should make it official later today. The event itself is expected to be a virtual affair starring the iPad Pro (in two sizes) and possibly featuring the AirTags Bluetooth tracker. Apple's next premium slate reportedly features a Mini LED display on the flagship 12.9-inch model, but supply chain issues could see it ship later than planned and in limited quantities.

Apple has been a laggard in the smart-home space, but a versatile new device in early development could change that. From a Bloomberg report: The company is working on a product that would combine an Apple TV set-top box with a HomePod speaker and include a camera for video conferencing through a connected TV and other smart-home functions, according to people familiar with the matter, who asked not to be identified discussing internal matters. The device's other capabilities would include standard Apple TV box functions like watching video and gaming plus smart speaker uses such as playing music and using Apple's Siri digital assistant.

If launched, it would represent Apple's most ambitious smart-home hardware offering to date. The Cupertino, California-based technology giant is also mulling the launch of a high-end speaker with a touch screen to better compete with market leaders Google and Amazon.com, the people said. Such a device would combine an iPad with a HomePod speaker and also include a camera for video chat. Apple has explored connecting the iPad to the speaker with a robotic arm that can move to follow a user around a room, similar to Amazon's latest Echo Show gadget. Development of both Apple products is still in the early stages, and the company could decide to launch neither or change key features. The company often works on new concepts and devices without ultimately shipping them.

An update to England and Wales's contact tracing app has been blocked for breaking the terms of an agreement made with Apple and Google. From a report: The plan had been to ask users to upload logs of venue check-ins - carried out via poster barcode scans -- if they tested positive for the virus. This could be used to warn others. The update had been timed to coincide with the relaxation of lockdown rules. But the two firms had explicitly banned such a function from the start. Under the terms that all health authorities signed up to in order to use Apple and Google's privacy-centric contact-tracing tech, they had to agree not to collect any location data via the software. As a result, Apple and Google refused to make the update available for download from their app stores last week, and have instead kept the old version live.

Procter & Gamble "helped develop a technique being tested in China to gather iPhone data for targeted ads, a step intended to give companies a way around Apple Inc.'s new privacy tools," reports the Wall Street Journal. (Citing "people familiar with the matter.") The move is part of a broader effort by the consumer-goods giant to prepare for an era in which new rules and consumer preferences limit the amount of data available to marketers. P&G — among the world's largest advertisers, with brands such as Gillette razors and Charmin toilet paper — is the biggest Western company involved in the effort, the people said.

The company has joined forces with dozens of Chinese trade groups and tech firms working with the state-backed China Advertising Association to develop the new technique, which would use technology called device fingerprinting, the people said. Dubbed CAID, the advertising method is being tested through apps and gathers iPhone user data. Through the use of an algorithm, it can track users for purposes of targeting ads in a way that Apple is seeking to prevent.
Apple's response? "We believe strongly that users should be asked for their permission before being tracked. Apps that are found to disregard the user's choice will be rejected."