×
Privacy

Researchers Come Up With Better Idea To Prevent AirTag Stalking (arstechnica.com) 29

An anonymous reader quotes a report from Ars Technica: Apple's AirTags are meant to help you effortlessly find your keys or track your luggage. But the same features that make them easy to deploy and inconspicuous in your daily life have also allowed them to be abused as a sinister tracking tool that domestic abusers and criminals can use to stalk their targets. Over the past year, Apple has taken protective steps to notify iPhone and Android users if an AirTag is in their vicinity for a significant amount of time without the presence of its owner's iPhone, which could indicate that an AirTag has been planted to secretly track their location. Apple hasn't said exactly how long this time interval is, but to create the much-needed alert system, Apple made some crucial changes to the location privacy design the company originally developed a few years ago for its "Find My" device tracking feature. Researchers from Johns Hopkins University and the University of California, San Diego, say, though, that they've developed (PDF) a cryptographic scheme to bridge the gap -- prioritizing detection of potentially malicious AirTags while also preserving maximum privacy for AirTag users. [...]

The solution [Johns Hopkins cryptographer Matt Green] and his fellow researchers came up with leans on two established areas of cryptography that the group worked to implement in a streamlined and efficient way so the system could reasonably run in the background on mobile devices without being disruptive. The first element is "secret sharing," which allows the creation of systems that can't reveal anything about a "secret" unless enough separate puzzle pieces present themselves and come together. Then, if the conditions are right, the system can reconstruct the secret. In the case of AirTags, the "secret" is the true, static identity of the device underlying the public identifier that is frequently changing for privacy purposes. Secret sharing was conceptually useful for the researchers to employ because they could develop a mechanism where a device like a smartphone would only be able to determine that it was being followed around by an AirTag with a constantly rotating public identifier if the system received enough of a certain type of ping over time. Then, suddenly, the suspicious AirTag's anonymity would fall away and the system would be able to determine that it had been in close proximity for a concerning amount of time.

Green notes, though, that a limitation of secret sharing algorithms is that they aren't very good at sorting and parsing inputs if they're being deluged by a lot of different puzzle pieces from all different puzzles -- the exact scenario that would occur in the real world where AirTags and Find My devices are constantly encountering each other. With this in mind, the researchers employed a second concept known as "error correction coding," which is specifically designed to sort signal from noise and preserve the durability of signals even if they acquire some errors or corruptions. "Secret sharing and error correction coding have a lot of overlap," Green says. "The trick was to find a way to implement it all that would be fast, and where a phone would be able to reassemble all the puzzle pieces when needed while all of this is running quietly in the background."
The researchers published (PDF) their first paper in September and submitted it to Apple. More recently, they notified the industry consortium about the proposal.
AI

Microsoft Quietly Launches Dedicated Copilot App For Android (neowin.net) 14

Microsoft quietly launched a dedicated Copilot app on Android, giving users a way to access Copilot's AI features without the Bing mobile app. "Spotted by @technosarusrex on X, it is now available for download from the Google Play Store, and the app's listing suggests it arrived in the marketplace about a week ago," reports Neowin. From the report: The new Copilot app for Android is not entirely a new thing. At first sight, it looks similar to the Bing Chat app, which still lets you access the same chat features. In addition, you can use Copilot within the Microsoft Edge browser for Android, SwiftKey, Skype, and more. Copilot for Android supports plenty of features (you can also toggle between light and dark themes) that are already available on desktop. You can ask complex questions, generate images using DALL-E 3, draft documents or emails, or just have a casual conversation about anything. In addition, the app lets you turn off or on the recently added GPT-4.
Open Source

What Comes After Open Source? Bruce Perens Is Working On It (theregister.com) 89

An anonymous reader quotes a report from The Register: Bruce Perens, one of the founders of the Open Source movement, is ready for what comes next: the Post-Open Source movement. "I've written papers about it, and I've tried to put together a prototype license," Perens explains in an interview with The Register. "Obviously, I need help from a lawyer. And then the next step is to go for grant money." Perens says there are several pressing problems that the open source community needs to address. "First of all, our licenses aren't working anymore," he said. "We've had enough time that businesses have found all of the loopholes and thus we need to do something new. The GPL is not acting the way the GPL should have done when one-third of all paid-for Linux systems are sold with a GPL circumvention. That's RHEL." RHEL stands for Red Hat Enterprise Linux, which in June, under IBM's ownership, stopped making its source code available as required under the GPL. Perens recently returned from a trip to China, where he was the keynote speaker at the Bench 2023 conference. In anticipation of his conversation with El Reg, he wrote up some thoughts on his visit and on the state of the open source software community. One of the matters that came to mind was Red Hat.

"They aren't really Red Hat any longer, they're IBM," Perens writes in the note he shared with The Register. "And of course they stopped distributing CentOS, and for a long time they've done something that I feel violates the GPL, and my defamation case was about another company doing the exact same thing: They tell you that if you are a RHEL customer, you can't disclose the GPL source for security patches that RHEL makes, because they won't allow you to be a customer any longer. IBM employees assert that they are still feeding patches to the upstream open source project, but of course they aren't required to do so. This has gone on for a long time, and only the fact that Red Hat made a public distribution of CentOS (essentially an unbranded version of RHEL) made it tolerable. Now IBM isn't doing that any longer. So I feel that IBM has gotten everything it wants from the open source developer community now, and we've received something of a middle finger from them. Obviously CentOS was important to companies as well, and they are running for the wings in adopting Rocky Linux. I could wish they went to a Debian derivative, but OK. But we have a number of straws on the Open Source camel's back. Will one break it?"

Another straw burdening the Open Source camel, Perens writes, "is that Open Source has completely failed to serve the common person. For the most part, if they use us at all they do so through a proprietary software company's systems, like Apple iOS or Google Android, both of which use Open Source for infrastructure but the apps are mostly proprietary. The common person doesn't know about Open Source, they don't know about the freedoms we promote which are increasingly in their interest. Indeed, Open Source is used today to surveil and even oppress them." Free Software, Perens explains, is now 50 years old and the first announcement of Open Source occurred 30 years ago. "Isn't it time for us to take a look at what we've been doing, and see if we can do better? Well, yes, but we need to preserve Open Source at the same time. Open Source will continue to exist and provide the same rules and paradigm, and the thing that comes after Open Source should be called something else and should never try to pass itself off as Open Source. So far, I call it Post-Open." Post-Open, as he describes it, is a bit more involved than Open Source. It would define the corporate relationship with developers to ensure companies paid a fair amount for the benefits they receive. It would remain free for individuals and non-profit, and would entail just one license. He imagines a simple yearly compliance process that gets companies all the rights they need to use Post-Open software. And they'd fund developers who would be encouraged to write software that's usable by the common person, as opposed to technical experts.

Pointing to popular applications from Apple, Google, and Microsoft, Perens says: "A lot of the software is oriented toward the customer being the product -- they're certainly surveilled a great deal, and in some cases are actually abused. So it's a good time for open source to actually do stuff for normal people." The reason that doesn't often happen today, says Perens, is that open source developers tend to write code for themselves and those who are similarly adept with technology. The way to avoid that, he argues, is to pay developers, so they have support to take the time to make user-friendly applications. Companies, he suggests, would foot the bill, which could be apportioned to contributing developers using the sort of software that instruments GitHub and shows who contributes what to which products. Merico, he says, is a company that provides such software. Perens acknowledges that a lot of stumbling blocks need to be overcome, like finding an acceptable entity to handle the measurements and distribution of funds. What's more, the financial arrangements have to appeal to enough developers. "And all of this has to be transparent and adjustable enough that it doesn't fork 100 different ways," he muses. "So, you know, that's one of my big questions. Can this really happen?"
Perens believes that the General Public License (GPL) is insufficient for today's needs and advocates for enforceable contract terms. He also criticizes non-Open Source licenses, particularly the Commons Clause, for misrepresenting and abusing the open-source brand.

As for AI, Perens views it as inherently plagiaristic and raises ethical concerns about compensating original content creators. He also weighs in on U.S.-China relations, calling for a more civil and cooperative approach to sharing technology.

You can read the full, wide-ranging interview here.
Apple

Apple Vision Pro Tipped For Late January, Early February Release (techcrunch.com) 35

The Vision Pro, Apple's first "spatial computing" device that costs $3,499, is expected to have a "late-January/early-February" release date, according to Apple analyst Ming-Chi Kuo. "The analyst says that the first wave of Vision Pros are being shipped to Apple in about a month, with total shipments numbering around 500,000 for the full year," adds TechCrunch. From the report: The company's precise target for the year remains an open-ended question. About a month after the device was revealed, reports suggested that Apple has scaled back expectations from around one million to "fewer than 400,000." Even the updated 500,000 figure is small for a company of Apple's massive size and influence. Keep in mind that the company should be shipping more than 200 million iPhones this calendar year.

The Vision Pro, however, is widely regarded as the biggest gambit of Tim Cook's 12-year tenure as CEO. Not only is it an entirely new category and form factor for the company, it's also prohibitively priced, even for customers accustomed to shelling out extra for apple products. Add to that VR's decades-long failure to live up to expectations, and you've got a big uphill fight on your hands. Kuo refers to Vision Pro as "Apple's most important product of 2024." Given the years of speculation and all the time and money the company has no doubt poured into the headset, it's a tough statement to argue.

Android

Beeper's iMessage Connection Software Open Sourced. What Happens Next? (cnet.com) 85

"The iMessage connection software that powers Beeper Mini and Beeper Cloud is now 100% open source," Beeper announced late this week. " Anyone who wants can use it or continue development."

But while Beeper says it's done trying to bring iMessage to Android, CNET reports that the whole battle was "deeply tied" to Apple's ongoing strategy to control the mobile market: The tide seems to be changing, however: Apple said last month it would be opening up its Messages app (likely due to European regulation) to work with the newer, more feature-rich texting protocol called RCS. This hopefully will lead to a more modern and secure messaging experience when texting between an iPhone and an Android phone, and lead away from the aging SMS and MMS standards. Unfortunately, green bubbles will continue to persist even if there might be little to no functional difference. While third-party apps like Nothing Chats attempted and ultimately failed to bring iMessage to Android, Apple will likely never release the app on Google's mobile operating system.

Until RCS is fully adopted, companies are creating services to allow access to iMessage via Android phones. Apple, for its part, has been quick to block apps like Beeper Mini, citing security concerns. This, however, is raising eyebrows from lawmakers regarding competition in the messaging space and Apple's tight control over the market...

Beeper in a December 21 blog post told users to grab a jailbroken iPhone and install a free Beeper tool that'll generate iMessage registration codes to keep the service operational. It's such a roundabout and potentially expensive way of trying to get iMessage on Android that it likely won't be worth it for most people. For those not willing to go out and jailbreak an iPhone, Beeper said in a now-deleted blog post that it would allow people to rent a jailbroken unit for a small monthly fee starting next year.

Apple

Apple's Newest Headache: An App That Upended Its Control Over Messaging 91

Beeper Mini, which offers iPhone messaging on Android phones, has grown fast and its duel with Apple has gotten the attention of antitrust regulators. The New York Times: Apple was caught by surprise when Beeper Mini gave Android devices access to its modern, iPhone-only service. Less than a week after Beeper Mini's launch, Apple blocked the app by changing its iMessage system. It said the app created a security and privacy risk. Apple's reaction set off a game of Whac-a-Mole, with Beeper Mini finding alternative ways to operate and Apple finding new ways to block the app in response. The duel has raised questions in Washington about whether Apple has used its market dominance over iMessage to block competition and force consumers to spend more on iPhones than lower-priced alternatives.

The Justice Department has taken interest in the case. Beeper Mini met with the department's antitrust lawyers on Dec. 12, two people familiar with the meeting said. Eric Migicovsky, a co-founder of the app's parent company, Beeper, declined to comment on the meeting, but the department is in the middle of a four-year-old investigation into Apple's anticompetitive behavior. The Federal Trade Commission said in a blog post on Thursday that it would scrutinize "dominant" players that "use privacy and security as a justification to disallow interoperability" between services. The post did not name any companies.
Power

Android May Soon Tell You When It's Time To Replace Your Phone's Battery (androidauthority.com) 69

The next version of Android could give you an estimate of your battery's remaining capacity, which naturally degrades over time. "Android 14 laid the initial groundwork for the OS to track battery health information, but Android 15 could actually bring that information in front of users," reports Android Authority. It could also tell you whether your device's battery has been replaced. From the report: The manufacture date and cycle count aren't the only battery-related statistics that Android 14 exposes to apps through new APIs, though. Other battery health details like the date of first use, charging policy, charging status, and state of health are also available. The state of health is particularly interesting because it's an estimate of the battery's current full charge capacity, expressed as a percentage relative to the battery's rated capacity. For example, if your Pixel 8 battery's state of health is measured at 90%, that means its remaining full charge capacity is estimated to be about 4118mAh (compared to the rated 4575mAh).

The Settings app currently doesn't show the battery state of health, but that's set to change in the future, as the latest version of the Settings Services app (an extension to the Settings app on Pixel and other devices) found within Android 14 QPR2 Beta 2 has a new "battery health" page that is set to show the state of health. [...] Strings within the APK suggest this page will show you the "estimated percentage of charge the battery can currently hold compared to when it was new" (i.e. the state of health) before and after "recalibration" of the battery. We don't have the exact details on what "recalibration" entails, but given that one string suggests the "process may take a few weeks," we're guessing that it's simply the system collecting data over a longer period to provide a more accurate estimate of the battery capacity. Meanwhile, the "initial battery health values" are "based on lab results" and hence "may vary from your actual battery state."

[...] We also learned that the Settings app itself will surface "tips" to the user when either the battery capacity is degraded or can't be detected, so the user doesn't have to manually check the "battery health" page. Lastly, we learned that Google is working on exposing more battery-related information to the OS, such as the part status and the serial number. [...] At the very least, we do know that Android will support reading the battery's part status and serial number, provided the battery exposes that information to the OS, and the vendor implements the new version of the Android health HAL. The health HAL is the software responsible for bridging the gap between the OS APIs that read battery/charging information (i.e. everything we talked about before) with the software that controls the battery/charging chips. Version 2.0 of the health HAL needs to be implemented to support all the new Android 14 battery health APIs like state of health, which is why so few devices support that right now.

IT

Beeper Says It's Done Trying To Bring iMessage To Android (techcrunch.com) 61

Beeper is giving up on its mission to bring iMessage to Android after implementing a series of fixes that Apple has knocked down one by one over the past month. From a report: Although the company has issued a complex workaround, it says it has no plans to roll out another one if this one is knocked down by Apple. "Each time that Beeper Mini goes 'down' or is made to be unreliable due to interference by Apple, Beeper's credibility takes a hit," the company wrote in a blog post. "It's unsustainable. As much as we want to fight for what we believe is a fantastic product that really should exist, the truth is that we can't win a cat-and-mouse game with the largest company on earth. With our latest software release, we believe we've created something that Apple can tolerate existing. We do not have any current plans to respond if this solution is knocked offline"
Apple

Beeper's CEO Wants To Sue Apple for Blocking Its iMessage Bridge Hack (appleinsider.com) 69

An anonymous reader shares a report: Eric Migicovsky insists his Beeper Mini will continue despite Apple's best efforts to prevent it bringing iMessage blue speech bubbles to Android. Beeper Mini is, or is continually trying to be, a way to get iMessage without buying an iPhone -- although users might have to get access to a Mac. Since the start of December 2023, Beeper has launched a service to do this, then Apple blocked it, then Beeper tried another way.

According to The Information, this cycle is going to continue, too, as Beeper CEO Eric Migicovsky maintains that his company will persist -- and could take legal action, too. "We're investigating legal ramifications for Apple, definitely," said Migicovsky. "Around antitrust, around competition, around how they've made the experience worse for iPhone users with this change. They've degraded the performance of iMessage for iPhone users," he continued, "all in search of crushing a competitor."

Desktops (Apple)

Next Beeper Mini Fix Requires Users To Have a Mac (macrumors.com) 64

Juli Clover reports via MacRumors: The developers behind Beeper Mini are continuing with their effort to make iMessage for Android function despite Apple's mitigations, and the latest "fix" requires Beeper Mini users to have access to a Mac. On Reddit, the Beeper Mini team says that the Mac-based fix coming on December 20 stabilizes iMessage for Beeper Cloud and Mini, and it "works well" and "is very reliable."

It is unclear how many Android users have a Mac or have a friend with a Mac to rely on, but the fix requires using a Mac to connect to iMessage on Beeper. According to Beeper Mini's developers, registration data from an actual Mac has to be sent to Apple to use iMessage on Beeper. Beeper has been using its own Mac servers to provide that information to Apple, but that resulted in thousands of Beeper users having the same registration info, which was an "easy target for Apple."

The Beeper update will instead generate unique registration data for each Mac, making it harder for Apple to tell which users are accessing iMessage through an Android device. The Beeper Mini team says that registration data is "only used to indicate that a Mac is available during registration" and that the Mac will not be given access to an account or messages: "If you do not have access to a Mac computer, but have a friend on Beeper with a Mac, you can ask them if you can use their registration data. In our testing, 10-20 iMessage users can safely use the same registration data." With the fix, Beeper Cloud and Beeper Mini users will once again be able to use iMessage on Android, but only with email addresses and not with phone numbers.

Google

Alphabet, States Reach $700 Million Deal in Google Play Feud 20

Alphabet will pay $700 million and alter its Google Play policies to settle claims that the app store unlawfully dominates the Android mobile applications market, resolving antitrust complaints brought by attorneys general of about three dozen states and consumers. From a report: The deal disclosed in a court filing late Monday calls for tweaks to Google Play policies designed to reduce barriers to competition in the markets for app distribution and payment processing. The lawsuits that were grouped together in federal court in California had threatened billions of dollars in revenue generated by the sale and distribution of apps through Google Play. Google will also make a series of changes to its business practices as part of the settlement. In a blog post, the Android-maker said: Streamlining sideloading while prioritizing security: Unlike on iOS, Android users have the option to sideload apps, meaning they can download directly from a developer's website without going through an app store like Google Play. While we maintain it is critical to our safety efforts to inform users that sideloading on mobile could come with unique risks, as part of our settlement we will be further simplifying the sideloading process and updating the language that informs users about these potential risks of downloading apps directly from the web for the first time.
Expanding user choice billing to more people: App and game developers will be able to implement an alternative billing option alongside Google Play's billing system for their U.S. users who can then choose which option to use when making in-app purchases. We have been piloting user choice billing in the U.S. for over a year and will now expand this option further.
Expanding open communication on pricing: We have always given developers more ways to interact with their customers than iOS and other operating systems. For example, Google Play allows developers to communicate freely with their customers outside the app about subscription offers or lower-cost options available on a rival app store or the developer's website. This openness has spurred competition and benefited consumers and developers. As part of user choice billing, which we're expanding with today's settlement announcement, developers are also able to show different pricing options within the app when a user makes a digital purchase.
Government

Lawmakers Push DOJ To Investigate Apple Following Beeper Shutdowns (theverge.com) 55

Following a tumultuous few weeks for Beeper, which has been trying to provide an iMessage-compatible Android app, a group of US lawmakers are pushing for the DOJ to investigate Apple for "potentially anticompetitive conduct" over its attempts to disable Beeper's services. From a report: Senators Amy Klobuchar (D-MN) and Mike Lee (R-UT) as well as Representatives Jerry Nadler (D-NY) and Ken Buck (R-CO) said in a letter to the DOJ that Beeper's Android messaging app, Beeper Mini, was a threat to Apple's leverage by "creating [a] more competitive mobile applications market, which in turn [creates] a more competitive mobile device market."

In an interview with CBS News on Monday, Beeper CEO Eric Migicovsky and 16-year-old developer James Gill talked about the fight to keep Beeper Mini alive. Migicovsky told CBS News that Beeper is trying to provide a service people want and reiterated his belief that Apple has a monopoly over its iMessage service. The company created Beeper Mini after being contacted by Gill, who said he reverse-engineered the software by "poking at it" using a "real Mac and a real iPhone." [...] The lawmakers' letter also pointed to a Department of Commerce report calling Apple a "gatekeeper," mirroring language used in the EU Digital Markets Act (DMA) that went into force earlier this year, regulating the "core" services of several tech platforms (though, notably, iMessage may not be included in this). They went on to cite Migicovsky's December 2021 Senate Judiciary Committee testimony that "the dominant messaging services would use their position to impose barriers to interoperability" and keep companies like Beeper from offering certain services. "Given Apple's recent actions, that concern appears prescient," they added.

China

Is Huawei Pushing Forward With an Ambitious Plan to Dethrone Android? (forbes.com) 152

Forbes recently published this article by author/speaker Nina Xiang, who reports that Huawei is pushing forward with "an amibitious plan to dethrone Android." Hundreds of technical experts from many of China's biggest state-owned and private companies, including the Industrial and Commercial Bank of China (ICBC), China Telecom, Meituan, and Baidu, all gathered in Beijing last month. The purpose behind the meeting was for their staff to receive training so they could be certified as developers on Huawei's Harmony Operation System (OS).

While most observers were looking the other way, Huawei has been quietly building an independent Chinese operating system that isn't subject to U.S. sanctions. In the four years after the telecom giant was banned from using Google apps, the Shenzhen-based company has been making significant strides toward achieving its long-term goal: To dethrone Android and make its HarmonyOS the default operating system in China.

Looking at the data for smartphone sales in China shows that HarmonyOS had the third-largest share with 10% in the second quarter of 2023, thanks to a strong resurgence in sales of Huawei smartphones. Although it's still well below Android's dominant 72%, it's not far from iOS's 17%... Huawei already says more than 700 million devices (including phones, smart devices, computers, and others) were equipped with HarmonyOS as of August this year, with over 2.2 million developers actively building within the ecosystem...

A key moment will come next year, when Huawei says HarmonyOS will no longer be compatible with Android apps.

Google

Why Google Will Stop Telling Law Enforcement Which Users Were Near a Crime (yahoo.com) 69

Earlier this week Google Maps stopped storing user location histories in the cloud. But why did Google make this move? Bloomberg reports that it was "so that the company no longer has access to users' individual location histories, cutting off its ability to respond to law enforcement warrants that ask for data on everyone who was in the vicinity of a crime." The company said Thursday that for users who have it enabled, location data will soon be saved directly on users' devices, blocking Google from being able to see it, and, by extension, blocking law enforcement from being able to demand that information from Google. "Your location information is personal," said Marlo McGriff, director of product for Google Maps, in the blog post. "We're committed to keeping it safe, private and in your control."

The change comes three months after a Bloomberg Businessweek investigation that found police across the US were increasingly using warrants to obtain location and search data from Google, even for nonviolent cases, and even for people who had nothing to do with the crime. "It's well past time," said Jennifer Lynch, the general counsel at the Electronic Frontier Foundation, a San Francisco-based nonprofit that defends digital civil liberties. "We've been calling on Google to make these changes for years, and I think it's fantastic for Google users, because it means that they can take advantage of features like location history without having to fear that the police will get access to all of that data."

Google said it would roll out the changes gradually through the next year on its own Android and Apple Inc.'s iOS mobile operating systems, and that users will receive a notification when the update comes to their account. The company won't be able to respond to new geofence warrants once the update is complete, including for people who choose to save encrypted backups of their location data to the cloud.

The EFF general counsel also pointed out to Bloomberg that "nobody else has been storing and collecting data in the same way as Google." (Apple, for example, is technically unable to provide the same data to police.)
Firefox

Firefox's Android Browser Adds 450+ New Extensions (techcrunch.com) 22

Firefox's Android browser now has over 450 new extensions available on Mozilla's Firefox Browser Add-ons page. "These extensions allow users to customize the mobile browser to their needs, whether that involves adding anti-tracking privacy tools, content blockers, productivity tools or other features that introduce new experiences, like streaming music, or those that allow users to personalize the browser's user interface -- like switching all websites to a dark mode or offering a better way to manage tabs," reports TechCrunch. From the report: The lack of extensions has been an issue for Firefox for Android users for years following the 2020 launch of a rebuilt version of the mobile browser that replaced the app's previous codebase with "GeckoView," a new, faster and more customizable browser engine. At the time, the company said it made a decision to limit the supported extensions to only those within the "Recommended Extensions" program -- meaning those that were commonly installed by end users. This choice allowed Mozilla to quickly get the new browser into consumers' hands, but squashed the long tail of extension development -- and opportunity for software developers focused on this market.

While Firefox's nightly builds later enabled more extensions, the publicly available Firefox for Android browser did not have access to these hundreds of extensions, meaning most of Firefox's mainstream users were also without. In August of this year, Mozilla said it had finally completed the infrastructure needed to bring the open extension ecosystem back to Firefox for Android. It then began to test and make hundreds more extensions available to Firefox for Android users, culminating in today's news that there are now 450+ extensions available.

Google

Google Will Turn Off Third-Party Tracking for Some Chrome Users Soon (theverge.com) 26

Google is about to launch its grand plan to block third-party cookies in Chrome that many websites use to track your activity across the web for profit. From a report: Starting on January 4th, Google will start testing its new Tracking Protection feature that will eventually restrict website access to third-party cookies by default. It will come to a very small subset of Chrome users at the start, specifically to one percent of users globally. Afterward, Google plans to phase out the use of third-party cookies for all users in the second half of 2024.

If you're randomly selected to try Tracking Protection, Google will notify you when opening Chrome on desktop or Android. If there are issues detected by Chrome while you're browsing, a prompt will appear asking if you'd like to temporarily re-enable third-party cookies for the site.

Privacy

Beeper Says Apple is Blocking Some iMessages (theverge.com) 111

After investigating reports that some users aren't getting iMessages on Beeper Mini and Beeper Cloud, Beeper says that Apple seems to be "deliberately blocking" iMessages from being delivered to about five percent of Beeper Mini users. From a report: The company says that uninstalling and reinstalling the app fixes the issue and that it's working on a broader fix.

Apple didn't immediately reply to a request for comment about Beeper's new claim, and it hasn't replied to my original request for comment, either. But given that the company has already blocked Beeper Mini before, it's not too surprising that it seems to be taking action against the app again.

Privacy

Google Maps Ditches Cloud-Based Location History (androidpolice.com) 48

Google Maps will soon give you the option to store your location data on your device instead of in the cloud. Android Police reports: In the coming year, Google is planning to switch things up by defaulting to saving your Timeline directly on your device instead of the cloud. You'll also have the option to wipe out bits or the whole information dossier whenever you want and disable location history completely. When you're jumping ship to a new device and want to keep your data close, you always have the option to back it up in the cloud. Google assures you that it'll lock it up with encryption.

Another significant update is the shorter default amount of time before your location history is auto-deleted. Soon, when you turn on location history, the default auto-delete time shrinks to three months. In the past, it used to hang around for 18 months by default. If you're the sentimental type, you can extend the Timeline's lifespan or turn off the auto-delete option. Google Maps has another nifty trick up its sleeve: soon, you can erase all traces of your trips with just a few taps. Say you've got a favorite hangout spot and you want to keep it to yourself. You can wipe the slate clean right from the app, whether it's searches, directions, visits, or shares. This handy feature is making its debut on Maps for Android and iOS in the next few weeks.

Finally, you will soon be able to click on the blue dot on the map to view your Location History and Timeline at a glance. It allows you to tweak what you share and store on Maps, all without having to dive into the settings. Currently, the blue dot only gives you some neat shortcuts for parking saves and location sharing.

Transportation

GM Says It's Ditching Apple CarPlay, Android Auto For Your Safety (motortrend.com) 164

Earlier this year, General Motors announced plans to phase out Apple CarPlay and Android Auto, shifting instead to built-in infotainment systems developed with Google. Now, the company has explained why it made that decision to MotorTrend: Tim Babbitt, GM's head of product for infotainment, gave MT a better explanation at a press event for the new Chevrolet Blazer EV, the flagship vehicle in the no CarPlay or Android Auto strategy. According to him, there's an important factor that didn't make it into the fact sheet: safety. Specifically, he cited driver distraction caused by cell phone usage behind the wheel. According to Babbitt, CarPlay and Android Auto have stability issues that manifest themselves as bad connections, poor rendering, slow responses, and dropped connections. And when CarPlay and Android Auto have issues, drivers pick up their phones again, taking their eyes off the road and totally defeating the purpose of these phone-mirroring programs. Solving those issues can sometimes be beyond the control of the automaker. You can start to see GM's frustration. Babbitt's thesis is that if drivers were to do everything through the vehicle's built-in systems, they'd be less likely to pick up their phones and therefore less distracted and safer behind the wheel. He admits, though, GM hasn't tested this thesis in the lab or real world yet but believes it has potential, if customers go for it.

The issues Babbitt cited with CarPlay and Android Auto seem like they'd be mostly linked to using those programs wirelessly, and while he says that's true, just plugging the phone into a USB data port doesn't solve all the problems. Babbitt says even when using a physical connection, Android phones are prone to compatibility issues between the vehicle and all the various phone manufacturers running Android. iPhones, meanwhile, suffer from backwards compatibility issues that cause older iPhone models to have trouble running CarPlay consistently. He points to J.D. Power data that shows issues with CarPlay and Android Auto are common owner complaints, and that customers tend to blame the automaker rather than the phone manufacturer or phone software. In that way, eliminating CarPlay and Android Auto potentially relieves GM of a key customer complaint dragging down their perceived quality scores.
After MotorTrend's story was published, GM issued the following statement: "We wanted to reach out to clarify that comments about GM's position on phone projection were misrepresented and to reinforce our valued partnerships with Apple and Google and each company's commitment to driver safety. GM's embedded infotainment strategy is driven by the benefits of having a system that allows for greater integration with the larger GM ecosystem and vehicles."
Apple

Apple Now Requires a Judge's Consent To Hand Over Push Notification Data (reuters.com) 19

Apple has said it now requires a judge's order to hand over information about its customers' push notification to law enforcement, putting the iPhone maker's policy in line with rival Google and raising the hurdle officials must clear to get app data about users. From a report: The new policy was not formally announced but appeared sometime over the past few days on Apple's publicly available law enforcement guidelines. It follows the revelation from Oregon Senator Ron Wyden that officials were requesting such data from Apple as well as from Google, the unit of Alphabet that makes the operating system for Android phones.

Apps of all kinds rely on push notifications to alert smartphone users to incoming messages, breaking news, and other updates. These are the audible "dings" or visual indicators users get when they receive an email or their sports team wins a game. What users often do not realize is that almost all such notifications travel over Google and Apple's servers. In a letter first disclosed by Reuters last week, Wyden said the practice gave the two companies unique insight into traffic flowing from those apps to users, putting them "in a unique position to facilitate government surveillance of how users are using particular apps."

Slashdot Top Deals