1STnTENDERBITS
About
- Banned
- Username
- 1STnTENDERBITS
- Joined
- Visits
- 20
- Last Active
- Roles
- member
- Points
- 1,331
- Badges
- 1
- Posts
- 460
Reactions
-
OpenID Foundation says 'Sign in with Apple' has critical gaps, urges changes
dewme said:godofbiscuits said:I trust OpenID if they say there are security holes. And given the importance and visibility to Apple, I’m sure they’ll address the security issues before releasing SIWA.
‘As for compatibility with generic OpenID? Nice for OpenID, but it would only muddy the waters when it comes to customers understanding what SIWA is all about. Id be surprised if Apple makes that a priority.
"which could nominally leave people exposed to code injection and replay attacks."
If you're running Safari right click on the word nominally and select "Look up nominally." Or look it up in a dictionary.
Standards organizations are populated with wordsmiths who choose their words very carefully. They are not identifying any actual security holes that they have found. They are only saying that there is a possibility that an issue may or may not actually exist. Identifying a possibility is one of the weakest arguments one can make. If they were stating a probability, with a hard number or range of numbers, then we'd have to take a much more serious approach. -
Jony Ive's departure reveals new details of Apple's car and TV plans
seneca72 said:Is Ive's new studio LoveFrom or shoudl it be "LoveFORM" Surely the latter sounds more appropriate.
LoveForm - function can take a hike....LoveFrom? Sort of an odd name on first hearing, right? Well, there’s a story there. The name comes from this Steve Jobs quote, paraphrased by Ives in a Financial Times piece today.
“There was an employee meeting a number of years ago and Steve [Jobs] was talking . . . He [said] that one of the fundamental motivations was that when you make something with love and with care, even though you probably will never meet . . . the people that you’re making it for, and you’ll never shake their hand, by making something with care, you are expressing your gratitude to humanity, to the species.”
“I so identified with that motivation and was moved by his description. So my new company is called ‘LoveFrom’. It succinctly speaks to why I do what I do.”
-
New 'Service' battery message in iOS pushes consumers toward official replacement
AppleExposed said:zroger73 said:FU, Apple. This is the stuff that is going to drive me back to PC's after a 12-year run and tens of thousands of dollars donated to your organization.
Apple has a 100% right to do this. Remember if anything is YOUR fault Apple gets blamed. Also if an aftermarket battery blows up an iPhone we get tons of articles, videos and memes mocking Apple.
Also, Apple has a charity?
Right to repair is focused on consumer protection and consumer choice. I think anyone advocating against that, especially a consumer putting corporate desires above their own, needs to have their priorities adjusted. -
Amazon, Google follow Apple's lead on voice assistant review policies
Rayz2016 said:But why do they need folk to listen to the recordings? I’m a bit unclear on that.
As many have said, there are very legitimate reasons for human listening. There just has to be improvement. First thing, they need to get rid of the 3rd party outsourcing and use in-house employees only. Yeah, it's going to cost more for them but none of these companies are hurting for a dollar. Second, implement controls in the work environment that make stealing data a difficult process. Third, in plain language inform customers there's a chance their interactions can be recorded and used for blah, blah, blah. Third B - a pop up that makes participation OPT-IN not opt out.
Not high priority, but I think they should all use raw number when reporting to the public. Vague "less than 1%" or "approximately 0.2%" doesn't really paint an illuminating picture for customers using these services. What raw number represents less than 1% of interactions per day x 365 days per year? 1000 per day? 100,000? A million? -
Analysts predict Apple Pencil support in 2019 iPhone - again
GeorgeBMac said:I think Steve just rolled over...
On topic: I personally think it was only a matter of time before the iPhone gained stylus support. I also think the iPhone is going to get it's own iPhone sized version next. The key here is, just like with the iPad, it's an accessory not a requirement. Those who don't want one don't have to get one. Choice is a good thing. -
New 'Service' battery message in iOS pushes consumers toward official replacement
GeorgeBMac said:PART of the trouble here is, in fact, the fault of Apple:
While they "encourage" people to get repairs & upgrades done at an authorized center they neither enforce the policy nor (critically) publicize it up front. Instead they use a sorta passive - aggressive approach where, when there is a problem they say: "See, you didn't follow directions. It is your fault".
I think Apple and its customers would be best served by making it very clear up front that, while they won't block you from getting third party repairs that all bets, warranties, guarantees, assurances and everything is gone if you do. They need to do that BEFORE somebody buys an Apple product, not after they get the third party repair that impacts their product.
(I don't mean to absolve the person of responsibility for their actions. But that we will continue to have these debates and discussions until Apple makes their policy very clear UP FRONT.) -
Apple to reportedly provide 'dev device' iPhones for bug hunting, introduce Mac bounty
-
Face ID attention detection security defeated with glasses and tape
Soli said:1STnTENDERBITS said:If someone doesn't read the article and they freak out, that's on them. If they don't read the article and say Face ID is crappy, so what? Just ignore them or if it bothers you, correct their incorrect assumption. Simply put, this is not a good look no matter how you look at it. A vaunted security feature bypassed by $2 worth of supplies. No 3D printer, no sophisticated masks or prosthetic pieces. No Mission Impossible dangling from a rope inches above the floor. Nope. Just a quick hop over to Walmart and you're good to go. As I said, I think Apple focused on high tech intrusion, not anything like this. Their fix shouldn't be that hard to come up with imo.StrangeDays said:You can also knock a person out and stick their finger on a fingerprint sensor.
You people try so hard.
Do you actually have a relevant opinion on this topic? Or are you going to continue throwing dirt to deflect. Let's see, you've already deflected using Samsung and Touch ID. What's next? Gonna say someone could hold a person at gun point and force them to give up their password. /s -
Face ID attention detection security defeated with glasses and tape
Soli said:Let's be clear that this "hack" still needs the face of the person who is already keyed for the device. This only allows a person who wears glasses to allow someone to use their phone on their face to unlock Face ID without their consent if they happen to be unconscious after making a pair of augmented glasses, assuming that their picking up the iPhone doesn't trigger Face ID and the subsequently disabling of Face ID before they can execute this "hack". -
Face ID attention detection security defeated with glasses and tape
StrangeDays said:1STnTENDERBITS said:Soli said:1STnTENDERBITS said:If someone doesn't read the article and they freak out, that's on them. If they don't read the article and say Face ID is crappy, so what? Just ignore them or if it bothers you, correct their incorrect assumption. Simply put, this is not a good look no matter how you look at it. A vaunted security feature bypassed by $2 worth of supplies. No 3D printer, no sophisticated masks or prosthetic pieces. No Mission Impossible dangling from a rope inches above the floor. Nope. Just a quick hop over to Walmart and you're good to go. As I said, I think Apple focused on high tech intrusion, not anything like this. Their fix shouldn't be that hard to come up with imo.StrangeDays said:You can also knock a person out and stick their finger on a fingerprint sensor.
You people try so hard.
Do you actually have a relevant opinion on this topic? Or are you going to continue throwing dirt to deflect. Let's see, you've already deflected using Samsung and Touch ID. What's next? Gonna say someone could hold a person at gun point and force them to give up their password. /s
Apple will likely resolve any exposed weakness in the “liveness” detection so it’s just academic anyway. Heckler self-pleasuring, nothing more.