Technology - Google News

Why Lockdown mode from Apple is one of the coolest security ideas ever - Ars Technica
Extreme sports Apple Watch could feature an expansive 2-inch display - Engadget
Impressive Matrix Tech Demo Getting Delisted From PS5, Xbox Stores - Kotaku

Why Lockdown mode from Apple is one of the coolest security ideas ever - Ars Technica

Posted: 06 Jul 2022 05:08 PM PDT

Mercenary spyware is one of the hardest threats to combat. It targets an infinitesimally small percentage of the world, making it statistically unlikely for most of us to ever see. And yet, because the sophisticated malware only selects the most influential individuals (think diplomats, political dissidents, and lawyers), it has a devastating effect that's far out of proportion to the small number of people infected.

This puts device and software makers in a bind. How do you build something to protect what's likely well below 1 percent of your user base against malware built by companies like NSO Group, maker of clickless exploits that instantly convert fully updated iOS and Android devices into sophisticated bugging devices.

No security snake oil here

On Wednesday, Apple previewed an ingenious option it plans to add to its flagship OSes in the coming months to counter the mercenary spyware menace. The company is upfront—almost in your face—that Lockdown mode is an option that will degrade the user experience and is intended for only a small number of users.

"Lockdown Mode offers an extreme, optional level of security for the very few users who, because of who they are or what they do, may be personally targeted by some of the most sophisticated digital threats, such as those from NSO Group and other private companies developing state-sponsored mercenary spyware," the company said. "Turning on Lockdown Mode in iOS 16, iPadOS 16, and macOS Ventura further hardens device defenses and strictly limits certain functionalities, sharply reducing the attack surface that potentially could be exploited by highly targeted mercenary spyware."

As Apple says, Lockdown mode disables all kinds of protocols and services that run normally. Just-in-time JavaScript—an innovation that speeds performance by compiling code on the device during runtime—won't run at all. That's likely a defense against the use of JiT-spraying, a common technique used in malware exploitation. While in Lockdown mode devices also can't enroll in what's known as mobile device management used for installing special organization-specific software.

The full list of restrictions are:

Messages: Most message attachment types other than images are blocked. Some features, like link previews, are disabled.

Web browsing: Certain complex web technologies, like just-in-time (JIT) JavaScript compilation, are disabled unless the user excludes a trusted site from Lockdown Mode.

Apple services: Incoming invitations and service requests, including FaceTime calls, are blocked if the user has not previously sent the initiator a call or request.

Wired connections with a computer or accessory are blocked when iPhone is locked.

Configuration profiles cannot be installed, and the device cannot enroll into mobile device management (MDM), while Lockdown Mode is turned on.

It's useful that Apple is upfront about the extra friction Lockdown adds to the user experience because it underscores what every security professional or hobbyist knows: Security always results in a trade-off with usability. It's also encouraging to hear Apple plans to allow users to allow-list the sites that are allowed to serve JIT JavaScript while in Lockdown mode. Fingers crossed Apple might enable similar allow-listing of trusted contacts.

Lockdown mode is a big deal for lots of reasons, not the least of which is that it comes from Apple, a company that's hyper-sensitive about customer perception. Officially acknowledging that its customers are vulnerable to the scourge of mercenary spyware is a big step.

But the move is big because of its simplicity and concreteness. No security snake oil here. If you want better security, learn to do without the services that pose the biggest threat. John Scott-Railton, a Citizen Lab researcher who knows a thing or two about counseling victims of NSO spyware, said Lockdown mode provides one of the first effective courses for vulnerable individuals to follow short of turning off their devices altogether.

"When you notify users that they've been targeted with sophisticated threats, they inevitably ask 'How can I make my phone safer?" he wrote.' "We haven't had many great, honest answers that really make an impact. Hardening a consumer handset is really out of reach."

3/There's a common mental barrier among big platforms & OS developers around mainstreaming high-security features.
A lot of inevitable considerations, like:
- Worse user experience (esp. vs. the competition!)
- Breaking features
- More customer support resources required, etc.
— John Scott-Railton (@jsrailton) July 6, 2022

Now that Apple has opened the door, it's inevitable that Google will follow suit with its Android OS and it wouldn't be surprising for other companies to also fall in line. It may also begin a useful discussion in the industry about broadening the approach. If Apple will allow users to disable unsolicited messages from unknown people, why can't it provide an option to disable built-in microphone, camera, GPS, or cellular capabilities?

One thing everyone should know about Lockdown mode, at least as described on Wednesday by Apple, is that it doesn't stop your device from connecting to cellular networks and broadcasting unique identifiers like IMEI and ICCID. That's not a criticism, just a natural limitation. And trade-offs are a core part of security.

So if you're like most people, you're never going to need Lockdown mode. But it's great that Apple will be offering it because it's going to make all of us safer.

Adblock test (Why?)

Extreme sports Apple Watch could feature an expansive 2-inch display - Engadget

Posted: 06 Jul 2022 02:22 PM PDT

Apple's long-rumored extreme sports Series 8 Watch could ship with the company's largest smartwatch display to date. According to Bloomberg's Mark Gurman, the forthcoming wearable features a screen that measures almost 2 inches diagonally and has a 410 by 502 resolution. Compared to the display on the 45mm Series 7, the largest smartwatch Apple sells at the moment, the new model would offer about seven percent more screen real estate. Gurman says the company could use the extra space to show additional fitness metrics or more information on watch faces at one time.

Corroborating Bloomberg's reporting is a recent tweet from display analyst Ross Young who said the Series 8 lineup would include a model with a 1.99-inch display. Outside of a larger screen, Gurman says the new variant will feature a more shatter-resistant screen, a higher capacity battery and a studier case made from metal more robust than aluminum. It will also include the fever detection feature he previously reported was coming to the entire Series 8 family, as well as better tracking capabilities for activities like hiking and swimming. What it won't include is a faster processor: Apple's upcoming S8 chipset reportedly features the same capabilities as its S7 and S6 predecessors.

If Apple follows its usual release cadence, the tech giant will likely announce the wearable at its iPhone event in the fall. Gurman previously said the company was working on a "deluge" of products it plans to announce over the next year, including a successor to the original HomePod.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.

Adblock test (Why?)

Impressive Matrix Tech Demo Getting Delisted From PS5, Xbox Stores - Kotaku

Posted: 06 Jul 2022 01:35 PM PDT

[unable to retrieve full-text content]