Apple has removed a controversial feature from the macOS operating system that allowed 53 of Apple's own apps to bypass third-party firewalls, security tools, and VPN apps installed by users for their protection. From a report: Known as the ContentFilterExclusionList, the list was included in macOS 11, also known as Big Sur. The exclusion list included some of Apple's biggest apps, like the App Store, Maps, and iCloud, and was physically located on disk at: /System/Library/Frameworks/NetworkExtension.framework/Versions/Current/Resources/Info.plist.

Its presence was discovered last October by several security researchers and app makers who realized that their security tools weren't able to filter or inspect traffic for some of Apple's applications. Security researchers such as Patrick Wardle, and others, were quick to point out at the time that this exclusion risk was a security nightmare waiting to happen. They argued that malware could latch on to legitimate Apple apps included on the list and then bypass firewalls and security software.

Apple on Wednesday said it was putting $60 million into a fresh round of projects aimed at challenging systemic racism, including its first foray into venture capital funding to back entrepreneurs of color. From a report: Apple said it would invest $10 million in a fund with Harlem Capital, a New York-based early-stage venture firm, with the goal of helping fund 1,000 companies over 20 years. Apple will invest $25 million in Siebert Williams Shank's Clear Vision Impact Fund, which provides financing to small- and mid-sized businesses, with an emphasis on minority-owned firms. Apple will become a limited partner in funds at both.

EFF special consultant/blogger/science fiction writer Cory Doctorow warns in Locus magazine about the dangers of what Bruce Schneier calls "feudal security": Here in the 21st century, we are beset by all manner of digital bandits, from identity thieves, to stalkers, to corporate and government spies, to harassers... To be safe, then, you have to ally yourself with a warlord. Apple, Google, Facebook, Microsoft, and a few others have built massive fortresses bristling with defenses, whose parapets are stalked by the most ferocious cybermercenaries money can buy, and they will defend you from every attacker — except for their employers. If the warlord turns on you, you're defenseless.

We see this dynamic playing out with all of our modern warlords. Google is tweaking Chrome, its dominant browser, to block commercial surveillance, but not Google's own commercial surveillance. Google will do its level best to block scumbag marketers from tracking you on the web, but if a marketer pays Google, and convinces Google's gatekeepers that it is not a scumbag, Google will allow them to spy on you. If you don't mind being spied on by Google, and if you trust Google to decide who's a scumbag and who isn't, this is great. But if you and Google disagree on what constitutes scumbaggery, you will lose, thanks, in part, to other changes to Chrome that make it much harder to block the ads that Chrome lets through.

Over in Facebook land, this dynamic is a little easier to see. After the Cambridge Analytica scandal, Facebook tightened up who could buy Facebook's surveillance data about you and what they could do with it. Then, in the runup to the 2020 US elections, Facebook went further, instituting policies intended to prevent paid political disinformation campaigns at a critical juncture. But Facebook isn't doing a very good job of defending its users from the bandits. It's a bad (or possibly inattentive, or indifferent, or overstretched) warlord, though...

Back to Apple. In 2017, Apple removed all effective privacy tools from the Chinese version of the iPhone/iPad App Store, at the behest of the Chinese government. The Chinese government wanted to spy on Apple customers in China, and so it ordered Apple to facilitate this surveillance... If Apple chose not to comply with the Chinese order, it would either have to risk fines against its Chinese subsidiary and possible criminal proceedings against its Chinese staff, or pull out of China and risk having its digital services blocked by China's Great Firewall, and its Chinese manufacturing subcontractors could be ordered to sever their relations with Apple. In other words, the cost of noncompliance with the order is high, so high that Apple decided that putting its customers at risk was an acceptable alternative.

Therein lies the problem with trusting warlords to keep you safe: they have priorities that aren't your priorities, and when there's a life-or-death crisis that requires them to choose between your survival and their own, they will throw you to the bandits...
"The fact that Apple devices are designed to prevent users from overriding the company's veto over their computing makes it inevitable that some government will demand that this veto be exercised in their favor..." Doctorow concludes. "As with feudal aristocrats, the state is happy to lend these warlords their legitimacy, in exchange for the power to militarize the aristocrat's holdings... "

His proposed solution? What if Google didn't collect or retain so much user data in the first place -- or gave its users the power to turn off data-collection and data-retention altogether? And "What if Apple — by design — made is possible for users to override its killswitches?"

"Apple has suspended Parler until the makers of the app solve its content moderation challenges," reports Forbes, citing a statement from Apple saying "there is no place on our platform for threats of violence and illegal activity. Parler has not taken adequate measures to address the proliferation of these threats..."

Meanwhile, BuzzFeed News reports: Amazon notified Parler that it would be cutting off the social network favored by conservatives and extremists from its cloud hosting service Amazon Web Services, according to an email obtained by BuzzFeed News. The suspension, which will go into effect on Sunday just before midnight, means that Parler will be unable to operate and will go offline unless it can find another hosting service...

In an email obtained by BuzzFeed News, an AWS Trust and Safety team told Parler Chief Policy Officer Amy Peikoff that the calls for violence propagating across the social network violated its terms of service. Amazon said it was unconvinced that the service's plan to use volunteers to moderate calls for violence and hate speech would be effective. "Recently, we've seen a steady increase in this violent content on your website, all of which violates our terms," the email reads. "It's clear that Parler does not have an effective process to comply with the AWS terms of service."
Earlier in the day, Bloomberg supplied some context: A group representing some Amazon.com Inc. employees has called for the company's cloud unit to cut ties with Parler after reports that the social media network was used by those who planned Wednesday's riot at the U.S. Capitol...

It's unclear how many employees the group represents. Participation in rallies, social media statements and open letters has ranged from dozens of workers to thousands at events held before the Covid-19 pandemic. Amazon last year fired two of the group's leaders for what it said was violation of company policy. The employees say they were terminated for their activism.

New submitter yuvcifjt writes: As of Friday 6pm EST (11pm GMT), The Verge reported that Apple and Google are under pressure and receiving complaints to deplatform Parler -- the social media platform favored by the right-wing and extremists -- from their app stores. BuzzFeed has since broken news that Apple has served notice to Parler's executives to implement a full moderation plan within 24 hours or risk being taken off the App Store.

"We have received numerous complaints regarding objectionable content in your Parler service, accusations that the Parler app was used to plan, coordinate, and facilitate the illegal activities in Washington D.C. on January 6, 2021 that led (among other things) to loss of life, numerous injuries, and the destruction of property," Apple wrote to Parler. "The app also appears to continue to be used to plan and facilitate yet further illegal and dangerous activities." Google issued a similar ultimatum, although it suspended Parler from its app store until it implements a moderation plan that addresses "this ongoing and urgent public safety threat."

Apple's App Store grossed more than $64 billion in 2020, according to an analysis by CNBC. From a report: That's up from an estimated $50 billion in 2019 and $48.5 billion in 2018, according to the same analysis, suggesting that App Store sales growth accelerated strongly during the Covid-19 pandemic, as people sheltered at home and spent more time and money on apps and games. App Store revenue grew 28% in 2020, up from 3.1% growth in 2019, according to CNBCâ(TM)s analysis. Apple's App Store is a core growth area for the company. It's reported as part of Apple's Services division, which reported $53.7 billion in sales in Apple's fiscal 2020, which ended in September. The money that Apple makes from its App Store has become a flash point for critics of Apple which argue it has too much power. Apple charges 30% for digital sales through its platform, with a few exceptions. Apple recently altered its fee structure, and now it only takes a 15% cut from companies that generate less than $1 million in the App Store.

South Korean automaker Hyundai Motor said it's in the early stages of discussions with Apple over potentially working together to develop a self-driving car. CNBC reports: "We understand that Apple is in discussion with a variety of global automakers, including Hyundai Motor. As the discussion is at its early stage, nothing has been decided," a representative from Hyundai Motor told CNBC's Chery Kang. The statement followed a local report from the Korea Economic Daily that said Apple suggested the tie-up and Hyundai Motor was reviewing the terms. The report said both electric vehicle production as well as battery development were included in the proposal, and that the car could potentially be released in 2027. The news from Hyundai comes just days after Reuters reported that Apple is aiming to begin producing a car as early as 2024. However, it contrasts a Bloomberg report suggesting development work is still at an early stage and it will take Apple at least half a decade to launch an autonomous, electric vehicle.

An anonymous reader quotes a report from Bloomberg: Apple will take at least half a decade to launch an autonomous, electric vehicle because development work is still at an early stage, according to people with knowledge of the efforts. The Cupertino, California-based technology giant has a small team of hardware engineers developing drive systems, vehicle interior and external car body designs with the goal of eventually shipping a vehicle. That's a more ambitious goal than in previous years when the project mostly focused on creating an underlying self-driving system. The company has also added more ex-Tesla Inc. executives to the project.

Still, some Apple engineers on the project believe the company could release a product in five to seven years if Apple goes ahead with its plans. The car is nowhere near production stage, the people said, though they did warn timelines could change. They asked not to be identified discussing sensitive, internal work. The majority of the team is currently either working from home or at the office for limited time, slowing the company's ability to develop a full vehicle. [...] Reuters recently reported that Apple is aiming to begin producing a car as early as 2024.

Apple appears to be moving along in its development of a foldable iPhone, according to new rumors. The company has apparently asked its Foxconn, its biggest iPhone supplier, to create two prototype foldable shells with displays. From a report: As reported by Tom's Guide on Sunday, which cites Taiwanese website United Daily News, Apple's two prototypes reflect two very different approaches to foldable phones in the industry. Tom's Guide states that one of the designs is similar to the Samsung Galaxy Z Flip, which let us remember has a flexible screen with crease in the middle and can be folded. The other is closer to Microsoft's Surface Duo, the outlet notes, a device with two screens that resembles a book and is held together by a hinge. It's not clear whether Apple is working on two separate foldable phones or whether it's testing various ideas for the final new type of iPhone, per Tom's Guide.

Tech's biggest companies just wrapped up a huge year. From a report: The seven most valuable U.S. technology companies -- Apple, Microsoft, Amazon, Alphabet, Facebook, Tesla and Nvidia -- picked up a combined $3.4 trillion in market cap in 2020, powering through a global pandemic and broader economic crisis. Between continued optimism over iPhone sales, Microsoft's growing Teams collaboration product, Amazon's ongoing control of e-commerce and the strength of Google and Facebook's online ad duopoly, Big Tech was neither slowed by Covid-19 nor the rising number of investigations into its dominance. Tesla's wild rally served as the biggest surprise. The stock climbed almost ninefold this year, lifting the electric car maker's market cap from $76 billion at the beginning of the year to $669 billion at Thursday's close. Despite initial factory closures due to the pandemic, Tesla bounced back to deliver a record number of vehicles in the third quarter.

An anonymous reader shares a report [the story is behind a paywall; alternative source]: Seven years ago, Apple made a staggering discovery: Among the employees at a factory in China that made most of the computer ports used in its MacBooks were two 15-year-olds. Apple told the manufacturer, Suyin Electronics, that it wouldn't get any new business until it improved employee screening to ensure no more people under 16 years of age got hired. Suyin pledged to do so, but an audit by Apple three months later found three more underage workers, including a 14-year-old. Apple, which has promised to ban suppliers that repeatedly use underage workers, stopped giving Suyin new business because of the violations. But it took Apple more than three years to fully cut its ties with Suyin, which continued to make HDMI, USB and other ports for older MacBooks under previous contracts. A person close to Suyin, which is headquartered in Taiwan, said that the company hadn't intentionally hired underage workers and that it had passed Apple's audits in later years.

Apple no longer does business with Suyin. But the previously unreported episode, drawn from documents reviewed by The Information and interviews with people who have direct knowledge of Apple's dealings with Suyin, is a stark example of the dilemmas Apple faces in fulfilling its pledges to put workers first and not use manufacturers that consistently violate labor laws. And it demonstrates the fine line Apple has to walk in balancing the need to maximize profits with the expectation that it will prioritize good working conditions for its own employees and its suppliers'. [...] In interviews, 10 former members of Apple's supplier responsibility team -- the unit in charge of monitoring manufacturing partners for violations of labor, environmental and safety rules -- claimed that Apple avoided or delayed cutting ties with offenders when doing so would hurt its business. For example, the former team members said, Apple continued working with some suppliers that refused to implement safety suggestions or that consistently violated labor laws.

Eric Bangeman, writing for ArsTechnica: Despite over 82 million cases and over 1.75 million deaths due to COVID-19, many people are bound and determined to carry on with normal life. For some, that includes attending Saturday night ragers, just like they did in the Before Times. Reports of yet another secret party being broken up by law enforcement have become distressingly common. Getting guests for these secret parties is at least slightly more difficult now that Apple has pulled Vybe Together -- an app with a tagline that invited users to "get their party on" -- from the App Store. The Verge pointed out that the app had largely been flying under the radar until a tweet from Taylor Lorenz of the New York Times brought some unwelcome, but much-needed scrutiny to the app. One of Lorenz's tweets highlighted Vybe Together's TikTok account, which had posted videos of unmasked people partying indoors while advertising New Years Eve parties. According to Business Insider, TikTok has since removed Vybe Together's account for violating community guidelines.

A new report by Sensor Tower reveals that 2020 has been a record-setting year for worldwide spending on the Apple App Store and Google Play Store, which collectively passed $100 billion in a single year for the first time ever in November. From a report: The trend of increased spending continued over Christmas, when consumers around the world spent an estimated $407.6 million across Apple's App Store and Google Play. This represents a 34.5 percent year-on-year growth from approximately $303 million in 2019. At the same time in 2019, spending only increased by 17.1 percent year-on-year. Spending on Christmas day constituted 4.5 percent of December's total spending so far, which reached nine billion dollars globally on December 27. The majority of holiday spending was on mobile games, which climbed by 27 percent from $232.4 million at the same time last year to $295.6 million. Tencent's "Honor of Kings" was the leading game with approximately $10.7 million in consumer spending, which is a 205.7 percent increase from Christmas 2019. TikTok was the top app for spending outside of games, generating $4.7 million globally. Following previous years, Apple's App Store captured the majority of spending between the App Store and the Google Play Store, with 68.4 percent of spending, up 35.2 percent year-on-year. The Google Play Store saw $129 million in revenue compared to the App Store's $278.6 million.

krakman writes: Corellium, a security research firm sued by Apple, has won a major legal victory against the iPhone maker. In a ruling that has wide-reaching implications for iPhone security research and copyright law, a federal judge in Florida threw out Apple's claims that Corellium had violated copyright law with its software, which helps security researchers find bugs and security holes on Apple's products. Corellium, co-founded in 2017 by husband and wife Amanda Gorton and Chris Wade, was a breakthrough in security research because it gave its customers the ability to run "virtual" iPhones on desktop computers. Corellium's software makes it unnecessary to use physical iPhones that contain specialized software to poke and prod iOS, Apple's mobile operating system. The judge in the case ruled that Corellium's creation of virtual iPhones was not a copyright violation, in part because it was designed to help improve the security for all iPhone users. Corellium wasn't creating a competing product for consumers. Rather, it was a research tool for a comparatively small number of customers.

Apple is researching keyboards with small displays on the keys to dynamically change the label on each key, according to a newly-granted patent filing. From a report: The filing is titled "Electronic devices having keys with coherent fiber bundles" and was granted to Apple by the U.S. Patent and Trademark Office on the final patent day of this year. The patent explains how each key on a keyboard could have "an associated key display" connected to "control circuitry in the keyboard" via a "coherent fiber bundle." Apple proposes that each key would be "formed from a fiber optic plate" with "opposing first and second surfaces." While the patent stipulates that each key would need to contain a small display to provide the label, of which any compatible pixel array would work, the foremost technology put forwards by Apple is OLED. The key may be made from materials such as glass, ceramic, metal, or polymer, or even crystalline materials such as sapphire.

One of the oldest and most well-known iPhone suppliers has been accused of using forced Muslim labor in its factories, according to documents uncovered by a human rights group, adding new scrutiny to Apple's human rights record in China. From a report: The documents, discovered by the Tech Transparency Project and shared exclusively with The Washington Post, detail how thousands of Uighur workers from the predominantly Muslim region of Xinjiang were sent to work for Lens Technology. Lens also supplies Amazon and Tesla, according to its annual report. Lens Technology is one of at least five companies connected to Apple's supply chain that have now been linked to alleged forced labor from the Xinjiang region, according to human rights groups. Lens Technology stands out from other Apple component suppliers because of its high-profile founder and long, well-documented history going back to the early days of the iPhone.

Apple this month announced a new Launch@Apple mentorship program that's designed for first-generation college students, with the program set to launch in early 2021. From a report: According to a PDF describing Launch@Apple, it is aimed at first-generation college freshmen and sophomores who are majoring in finance, mathematics, economics, business, data analytics, and accounting. It matches college students one-on-one with Apple mentors who are able to provide resources for learning and opportunities for professional growth, with the possibility of job shadowing, paid externships, and paid internships. Apple has not publicly announced Launch@Apple, and it's not entirely clear how the word is being spread. MyHealthyApple shared details this morning, and last week, a LinkedIn post highlighted the program. Ahead of when Launch begins in early 2021, Apple is accepting applications from students with a wide range of GPAs.

The Verge writes: Lei Jun, the CEO of Chinese phone maker Xiaomi, has confirmed that its upcoming Mi 11 phone will not come with a charger, citing environmental concerns. While that's a legitimate argument against providing yet another hunk of plastic that resembles all the other chargers people already have, Xiaomi joined other phone makers who poked fun at Apple a few short months ago for not including chargers with the iPhone 12.

Jun made the remarks on Chinese social media site Weibo, saying people have many chargers which creates an environmental burden, and therefore the company was canceling the charger for the Mi 11.

Apple's decision not to include chargers with the iPhone 12 was met with some derision, and competitors like Samsung reminded customers in an ad that charging bricks were "included with your Galaxy." That Galaxy ad has apparently been deleted, however, as rumors continue to build that Samsung won't include a charger with its upcoming Galaxy S21 phones.

"If you just received a new iPhone 12, Apple Watch or iPad, you might not have gotten immediate satisfaction — Apple was having some iCloud issues," reports CNET: The issue started early on Christmas Day, according to the iCloud account and sign-in entry on Apple's system status page. More than a day later, as of late morning PT Saturday, the Apple system status page indicated that the issue with the storage service remained "ongoing." But by 2 p.m. PT Saturday, the iCloud issue was marked "resolved." No specifics were given about how widespread the problems might have been, only that "some users were affected."

The company also noted issues with Apple ID sign-in.

Apple is booting thousands of videogame apps [Editor's note: the link may be paywalled; alternative source] from its platform in China as the government clamps down harder on such content, illustrating the tech giant's vulnerability to state pressure on its business. From a report: The iPhone maker this month warned Chinese developers that a new wave of paid gaming apps are at risk of removal from its app store, according to a memo viewed by The Wall Street Journal, after the company removed thousands of such apps earlier this year. The Chinese government four years ago began requiring videogames to be licensed before being released, but developers were able to skirt the requirement in Apple's app store. Apple hasn't said why the loophole existed or why the company began closing it this year. Foreign software developers lament the change, citing difficulty securing approval in China for their games.