An anonymous reader quotes a report from the Record: A recently discovered FBI training document shows that US law enforcement can gain limited access to the content of encrypted messages from secure messaging services like iMessage, Line, and WhatsApp, but not to messages sent via Signal, Telegram, Threema, Viber, WeChat, or Wickr. The document, obtained earlier this month following a FOIA request filed by Property of the People, a US nonprofit dedicated to government transparency, appears to contain training advice for what kind of data agents can obtain from the operators of encrypted messaging services and the legal processes they have to go through.

Dated to January 7, 2021, the document doesn't include any new information but does a good job at providing an up-to-date summary of what type of information the FBI can currently obtain from each of the listed services. [...] While the document confirms that the FBI can't gain access to encrypted messages sent through some services, the other type of information they can glean from providers might still help authorities in other aspects of their investigations. The content of the document, which may be hard to read due to some font rendering issues, is also available in the table [embedded in the article]. Of note, the table above does not include details about Keybase, a recent end-to-end encrypted (E2EE) service that has been gaining in popularity. The service was acquired by video conferencing software maker Zoom in May 2020.

An anonymous reader quotes a report from The Conversation: On October 23, 2001, Apple released the iPod -- a portable media player that promised to overshadow the clunky design and low storage capacity of MP3 players introduced in the mid-1990s. The iPod boasted the ability to "hold 1,000 songs in your pocket". Its personalized listening format revolutionized the way we consume music. And with more than 400 million units sold since its release, there's no doubt it was a success. Yet, two decades later, the digital music landscape continues to rapidly evolve.

The iPod expanded listening beyond the constraints of the home stereo system, allowing the user to plug into not only their headphones, but also their car radio, their computer at work, or their hi-fi system at home. It made it easier to entwine these disparate spaces into a single personalized soundtrack throughout the day. [...] The rise of touchscreen smartphones ultimately led to the iPod's downfall. Interestingly, the music app on the original iPhone was called "iPod." The iPod's functions were essentially reappropriated and absorbed into the iPhone. The iPhone was a flexible and multifunctional device: an iPod, a phone and an internet communicator all in one -- a computer in your pocket. And by making the development tools for their products freely available, Apple and Google allowed third-party developers to create apps for their new platforms in the thousands.

As of this year, mobile devices are responsible for 54.8% of web traffic worldwide. And while music piracy still exists, its influence has been significantly reduced by the arrival of streaming services such as Spotify and YouTube. These platforms have had a profound effect on how we engage with music as active and passive listeners. Spotify supports an online community-based approach to music sharing, with curated playlists. [...] As of February this year, more than 60,000 tracks were being uploaded to Spotify each day. The experience of listening to music will become increasingly immersive with time, and we'll only find more ways to seamlessly integrate it into our lives.

According to new job listings, Google is looking to expand the Fuchsia operating system from its current home on the Nest Hub to âoeadditional smart devices and other form factors." 9to5Google reports: The first listing, for "Staff Software Engineer, Fuchsia Devices," celebrates Fuchsia's recent milestone and points clearly to Google wanting Fuchsia to run on more "real world products" than just smart displays: "In 2021 we shipped Fuchsia to millions of Google smart displays, now it's time to expand to additional smart devices and other form factors. Come join us and work on the next-generation Google operating system! Although the first uses of Fuchsia are smart displays, we are working on expanding to additional form factors and use cases. The Fuchsia Devices team is responsible for making sure we can successfully apply the Fuchsia platform to real world products that make a difference to Google and our users."

So what types of devices should we expect Fuchsia to come to next? Well for one, we may look at the plural phrasing of "first uses of Fuchsia are smart displays," which suggests the Nest Hub Max and Nest Hub (2nd Gen) may be getting their chance to switch to Fuchsia soon. Of course, Google has made it abundantly clear here that smart displays are just the beginning. In another listing, for "Engineering Manager, Fuchsia Devices," the company explains that the Fuchsia Devices team is aiming to "[expand] the reach of Nest/Assistant to new form factors" through "real consumer devices." [From the listing:] "The Fuchsia Devices Smart Products team is part of the larger Fuchsia organization and is responsible for productionizing various types of Fuchsia Devices. Our team delivers real consumer devices to end users and enables you to have a large impact at Google by expanding the reach of Nest/Assistant to new form factors."

This could suggest entirely new device categories for Google's Nest lineup, powered by Fuchsia. In another section, we get some hints at what those proposed devices would be capable of: "Chromecast, Video Conferencing and Machine Learning are core parts of many of the upcoming smart products." It's important to note that "Chromecast" here is probably not referring to the lineup of Chromecast hardware for TVs switching to Fuchsia. Instead, it's more likely referring to how Google's speakers and displays can receive a "Cast" from your phone. This is somewhat clarified in the job listing's responsibilities section, which lists a handful of features that squarely line up with features of the camera-equipped Nest Hub Max, including "Face Match." The Nest Hub Max's store listing also references "Chromecast built-in" as a feature: "Plan, scope, and execute of features like Video Casting, Actions on Google, Video Calling, Face Match, and on device ML."

It also looks like Made by Google devices may soon not be the only ones shipping with Fuchsia. According to another listing, Google is looking for someone on Fuchsia's "platform graphics and media" team to, among other things, "influence hardware decisions made by partners." [From the listing:] "As a Staff Software Engineer on the Fuchsia team, you'll drive the technical direction for Graphics and Media and ensure that Fuchsia is bringing maximum value to partners and Fuchsia-based products. You also will influence hardware decisions made by partners to improve Fuchsia and Google's ability to deliver efficient software solutions for critical Graphics and Media workloads." Fuchsia debuted on the first-generation Nest Hub earlier this year.

New submitter thegreatnick writes: The next generation of Fairphone -- an attempt to make an ethical smartphone -- has been announced with the Fairphone 4. The base specs include a Qualcomm Snapdragon 750G SoC, 6GB of RAM, and 128GB of storage (upgradeable to 8GB and 256GB). On the front, you'll get a 6.3-inch, 2340x1080 LCD display with slimmer bezels (compared to the Fairphone 3 design) and a teardrop notch for the 25-megapixel front camera. The 3,905mAh battery is Qualcomm Quick Charge 4.1 compatible, so if you have a compatible USB-C charger (not included in the box to reduce waste) you can take the battery from 0-50% in 30 minutes. The phone ships with Android 11 and has a side-mounted fingerprint reader in the power button, a MicroSD slot, and the option for dual-SIM usage via one physical nanoSIM and an eSIM.

Continuing Fairphone's progress in making a "fair" supply chain -- both ethically-clean raw materials and paying workers a fair wage -- it also describes the 4 as "e-waste neutral." This is a neat way of summing up the idea that the company will recycle one device for every Fairphone 4 it sells. In addition, Fairphone can boast that it now uses 70% "fair" materials inside the handset, including FairTrade Gold and Silver, aluminum from ASI-certified vendors, and a backplate made from 100% post-consumer recycled polycarbonate. In an upgrade to previous models, the Fairphone 4 has dual cameras, though it loses the headphone jack. The company says this was to achieve an IP54 waterproof rating (light splashes) -- a first for the Fairphone brand. It's also been announced that it will come with an industry-leading 5-year warranty and aims to get 6 years of software updates for the phone.

An anonymous reader quotes a report from Ars Technica: Amazon's Kindle e-readers get new software updates regularly, and they're mostly of the nondescript, invisible "performance improvements and bug fixes" variety. But the most recent operating system update (version 5.13.7) is rolling out now, and it refreshes the device's user interface for the first time since 2016 or so. Amazon says that redesigns for the Home and Library screens, which are mostly untouched in the current Kindle update, will be coming "later this year." The software update that enables the new interface began rolling out in August, but because Kindles only install updates automatically when they're charging and connected to Wi-Fi, it will be a few weeks or months before all supported Kindles will have a chance to grab the update (mine only installed it over this past weekend).

The new update is available on most Kindles released in or after 2015, including the 7th- and 10th-generation Kindle Paperwhite, the 8th-, 9th-, and 10th-generation Kindle Oasis, and the 8th- and 10th-generation standard Kindle. Older "7th-generation" Kindle devices like 2014's Kindle Voyage don't appear to be supported. [...] The new update doesn't fix Amazon's confusing Kindle naming scheme, which groups different devices into "generations" that are numbered based roughly on when they were released, not on what generation of product they actually are; the "10th-generation" Paperwhite is actually only the fourth Paperwhite Amazon has released. But you now can head into the Device Info screen and see which Kindle you're using instead of having to guess.

LG will reportedly start selling iPhones and iPads in its South Korean stores this August -- mere months after the company quit making Android devices. Android Authority reports: According to MacRumors, the Herald Economic Daily claims LG has struck a deal with Apple to sell the iPhone and iPad in 400 stores across South Korea starting in August. LG may have to overcome some hurdles to make this happen. The company reportedly signed a "win-win" agreement with the country's National Mobile Communication Distribution Association that bars it from selling a direct competitor's phones in its stores. That deal was made in 2018, however, or well before LG signaled that it would quit making phones and tablets. LG is supposedly planning to renegotiate the agreement once it officially sells the iPhone and iPad in its shops. The deal unsurprisingly wouldn't include Macs, as systems like the MacBook Air compete directly with the Gram series and other LG computers where the iPhone and iPad are relatively safe.

Amazon has won U.S. permission to use radar to monitor consumers' sleep habits. Bloomberg reports: The Federal Communications Commission on Friday granted Amazon approval to use a radar sensor to sense motion and "enable contactless sleep tracing functionalities." Amazon on June 22 asked the FCC, which regulates airwave uses, for permission to market a device that uses radar. The technology captures movement in three dimensions, enabling a user to control its features through simple gestures and movements, the company said in a filing. The capability, according to Amazon, could help people with "with mobility, speech, or tactile impairments," and it could monitor sleep with a high degree of precision.

"The use of Radar Sensors in sleep tracking could improve awareness and management of sleep hygiene, which in turn could produce significant health benefits for many Americans," Amazon said in its filing. "Radar Sensors will allow consumers to recognize potential sleep issues." Amazon didn't immediately respond to a request for comment. The company didn't fully describe the device in its filing, but did say it would not be a mobile device. The FCC earlier granted similar permission to Google for radar to enable touchless control of Pixel smartphones, the agency said in its letter approving Amazon's request.

Popular benchmark site Geekbench has removed OnePlus 9 benchmarks from its charts due to allegations that the company designed Oxygen OS optimization tools in such a way that they could be viewed as cheating. Android Authority reports: Yesterday, AnandTech posted some information about "weird behavior" it spotted with the OnePlus 9 Pro. According to the team's research, Oxygen OS apparently limits the performance of some popular Android apps -- but none of those apps are benchmark suites. Geekbench, one of the more popular benchmarking sites, took these allegations seriously. After conducting its own investigation, Geekbench recently announced that it has removed all OnePlus 9 benchmarks from its charts. Geekbench, one of the more popular benchmarking sites, took these allegations seriously. After conducting its own investigation, Geekbench recently announced that it has removed all OnePlus 9 benchmarks from its charts. Geekbench called Oxygen OS's behavior a form of "benchmark manipulation." OnePlus has yet to issue a statement on the matter. In some of our own testing, we found that AnandTech's data is on the mark. We found that the OnePlus 9 series limits the performance of Google Chrome while older OnePlus phones do not. OnePlus issued a statement to Android Authority addressing the matter: "Our top priority is always delivering a great user experience with our products, based in part on acting quickly on important user feedback. Following the launch of the OnePlus 9 and 9 Pro in March, some users told us about some areas where we could improve the devices' battery life and heat management. As a result of this feedback, our R&D team has been working over the past few months to optimize the devices' performance when using many of the most popular apps, including Chrome, by matching the app's processor requirements with the most appropriate power. This has helped to provide a smooth experience while reducing power consumption. While this may impact the devices' performance in some benchmarking apps, our focus as always is to do what we can to improve the performance of the device for our users."

This is reminiscent of when the company was caught pushing the OnePlus 5's performance capabilities when the OS detected a benchmark app. This resulted in artificially inflated scores that users would not see during real-world usage.

TechSee, which describes itself as an "intelligent visual assistance" company, today announced the launch of Eve Cortex, a platform that teaches itself to recognize thousands of products, models, parts, and components by ingesting only a handful of data points. VentureBeat reports: TechSee claims that by leveraging a combination of AI and synthetic data, Cortex can train itself in a matter of hours, providing end users with step-by-step visual guidance via an augmented reality (AR) overlay. TechSee was founded in 2014 by Eitan Cohen, Amir Yoffe, and Gabby Sarusi. Cohen conceptualized the idea after struggling to walk his parents through an issue they were having with their cable service. The company's cross-platform apps employ computer vision to recognize products and issues and streamline warranty registration. Customer agents can see what customers see through their smartphone cameras and visually guide them to resolutions, using either live video or photos.

Cortex builds on TechSee's existing technologies to enable enterprises to custom-build their own visual self-service flows, without coding. With Cortex, companies can design journeys for product unboxing, billing, contracting, troubleshooting, warranty claims, product registration, technical repair, and more. Cortex can walk users through the unboxing of various consumer electronics, from security cameras to thermostats, and capture information for upselling while explaining invoices by reading water, gas, and electrical meters. Insurance policyholders can use Cortex to document damage to insured property or identify items they want to insure for virtual underwriting. Moreover, Cortex can certify that an on-site field technician has made a successful repair by examining work through the technician's smartphone or tablet camera or AR glasses.

One of the ways that Cortex learns to recognize products is by ingesting a company's existing contact center knowledge base. For every device, each article describing visual symptoms and issues, both from customers and field technicians, is extracted and normalized. Then, a computer vision model is trained on synthetic visual data gathered in the lab as well as other visual resources and images supplied by customers, enabling Cortex to analyze, time, and measure the success of each step of every resolution, shortening and optimizing them over time. According to Cohen, companies including Vodafone, Telus, Orange, and Hippo have already tapped Cortex to create new customer experiences. Moreover, tens of thousands of field service technicians in the U.S. are using the platform to install fiber optic boxes.

WhatsApp will soon let you use the popular instant messaging app simultaneously on multiple devices, Facebook chief executive Mark Zuckerberg said. The instant messaging app, used by more than 2 billion users, also plans to add more options to its disappearing messages feature, top executives said. TechCrunch reports: Zuckerberg confirmed to news outlet WaBetaInfo that multi-device support will be arriving on the instant messaging service "soon." WhatsApp head Will Cathcart said users will be able to connect up to four devices to one account. The messaging firm is also working to introduce a dedicated WhatsApp app for the iPad, he said. The instant messaging service, which last year introduced the ability to set a seven-day timer on messages (disappearing mode), is now planning to expand this feature to let users share pictures and videos that can only be viewed once. WhatsApp users will also get an option to enforce disappearing mode across the app for all new chats. Zuckerberg and Cathcart told the news outlet -- and it's indeed the two of them talking -- that these features will be available to users in public beta "in the next month or two."

Samsung is killing the first-generation SmartThings Hub at the end of the month, kicking off phase two of its plan to shut down the SmartThings ecosystem and force users over to in-house Samsung infrastructure. "Phase one was in October, when Samsung killed the Classic SmartThings app and replaced it with a byzantine disaster of an app that it developed in house," writes Ars Technica's Ron Amadeo. "Phase three will see the shutdown of the SmartThings Groovy IDE, an excellent feature that lets members of the community develop SmartThings device handlers and complicated automation apps." From the report: The SmartThings Hub is basically a Wi-Fi access point -- but for your smart home stuff instead of your phones and laptops. Instead of Wi-Fi, SmartThings is the access point for a Zigbee and Z-Wave network, two ultra low-power mesh networks used by smart home devices. [...] The Hub connects your smart home network to the Internet, giving you access to a control app and connecting to other services like your favorite voice assistant. You might think that killing the old Hub could be a ploy to sell more hardware, but Samsung -- a hardware company -- is actually no longer interested in making SmartThings hardware. The company passed manufacturing for the latest "SmartThings Hub (v3)" to German Internet-of-things company Aeotec. The new Hub is normally $125, but Samsung is offering existing users a dirt-cheat $35 upgrade price.

For users who have to buy a new hub, migrating between hubs in the SmartThings ecosystem is a nightmare. Samsung doesn't provide any kind of migration program, so you have to unpair every single individual smart device from your old hub to pair it to the new one. This means you'll need to perform some kind of task on every light switch, bulb, outlet, and sensor, and you'll have to do the same for any other smart thing you've bought over the years. Doing this on each device is a hassle that usually involves finding the manual to look up the secret "exclusion" input, which is often some arcane Konami code. Picture holding the top button on a paddle light for seven seconds until a status light starts blinking and then opening up the SmartThings app to unpair it. Samsung is also killing the "SmartThings Link for Nvidia Shield" dongle, which let users turn Android TV devices into SmartThings Hubs.

Back in January, researchers warned that the iPhone 12 lineup and MagSafe accessories could potentially deactivate implanted medical devices. Now, the American Heart Association has released a study that corroborates these findings on a larger scale, noting that several devices from three major companies were "found to have magnetic susceptibility." Gizmodo reports: The initial study published in HeartRhythm was done on a single patient with a Medtronic implantable cardioverter-defibrillator (ICD). It was an important finding in terms of awareness, but raised questions as to whether this would impact ICDs from all device makers if the iPhone 12 lineup posed a greater risk than other magnetized devices, and what the impact on pacemakers might be. The AHA's study offers a few preliminary insights into what those answers might be. In the study, researchers observed the impact of an iPhone 12 Pro Max on both ICDs and pacemakers from multiple device makers, as well as conducted both in vivo and ex vivo tests. In vivo refers to tests done on actual patients with an implanted medical device, while the ex vivo tests were done on 11 unboxed devices. The devices tested came from Medtronic, Abbot, and Boston Scientific. (You can see exactly which ICDs and pacemakers were tested in the study itself.)

In 100% of the three in vivo tests, the iPhone 12 Pro Max triggered the devices' magnet reversion mode. That said, the Boston Scientific pacemaker was found to be less susceptible as it only triggered a temporary response. In ex vivo testing, magnetic interference was detected in 8 out of 11 devices, or 72.7%. There are a few things to note here. How seriously a device is impacted may depend on the sensors or components used. The study notes that magnetic interference can occur when medical devices are exposed to magnetic fields as little as 10G. According to the researchers, the iPhone 12 Pro Max has a magnetic field strength of over 50G. However, the ex vivo devices tested didn't respond uniformly. Some were only temporarily disrupted, others had sustained asynchronous pacing, and three weren't impacted at all. The researchers suggest that in the case of a Boston Scientific Accolade MRI pacemaker, the device may not have been affected because it requires a magnet stronger than 70G. After the HeartRhythm study was published, Apple issued additional guidance urging consumers with implanted medical devices to keep iPhone 12 devices more than 6 inches away, or more than 12 inches if wirelessly charging. It also recommended those people consult with both their physician and device manufacturer.

An anonymous reader quotes a report from Gizmodo: Today, with the expansion of its Galaxy Upcycling at Home service (which is still in beta), users in the U.S., U.K., and South Korea will get access to an experimental feature in the SmartThings app designed to give an old Galaxy handset new life as a useful smart home accessory. By using the app to reconfigure the device's battery usage and optimization, Samsung says even older devices will still be able to deliver good longevity, while the phone's usual assortment of wireless connectivity features makes it easy to pair the phone with other devices in your home.

In the SmartThings app, Samsung provides a range of functions that an old smartphone can perform, including serving as a light sensor that can automatically turn on your smart lights or even your TV when it gets dark. Alternatively, you can also convert an old Galaxy phone into a sound sensor, with the phone using AI to detect common household noises like a barking dog, crying baby, or a knock on the door. In this way, you can also repurpose an old Samsung phone as a baby monitor of sorts [...]. And of course, even without much fiddling, upcycled Samsung phones can also be used as universal remotes, providing an easy way to control your streaming video box, play music on your smart speakers, control your lights, and more.

The OnePlus 9 and OnePlus 9 Pro are OnePlus' newest smartphones powered by Qualcomm's latest Snapdragon 888 chipset. The flagship device is the OnePlus 9 Pro, featuring a 120Hz LPTO curved display, 8GB of RAM, 128GB storage, Hasselblad-branded cameras, and a starting price of $969. If that price is too much to stomach, the OnePlus 9 features slightly lower-end specs and a more affordable $729 starting price. The Verge has already called the OnePlus 9 Pro "the best Android alternative to Samsung." From the report: OnePlus spent much of its announcement talking about the cameras on the new phones, which have been developed in partnership with Hasselblad. OnePlus says the colors have been tuned to look more natural and that the ultrawide sensor on the 9 Pro and 9 is one of the biggest to ever ship on a smartphone. The ultrawide uses a 50-megapixel Sony IMX766 sensor that's 1/1.56" in size with an aperture of f/2.2. Meanwhile, the 9 Pro's main Sony IMX789 sensor has a resolution of 48 megapixels and is 1/1.43" in size. (The regular 9 has a Sony IMX689 sensor, but it has the same resolution of 48 megapixels.) Both have a 2-megapixel monochrome sensor and 16-megapixel selfie camera, but only the 9 Pro has an 8-megapixel telephoto.

As previously announced, the 9 Pro has a 1440p 120Hz curved display that makes use of LPTO technology to adjust its refresh rate between 1 and 120Hz based on the content being displayed on-screen, reducing power consumption by "up to 50 percent." OnePlus also claims it should feel more responsive to use in games that support its Hyper Touch technology. The screen has a maximum brightness of 1300 nits and supports HDR10+. Meanwhile, the OnePlus 9 has a flat rather than curved display. It's not LTPO, it's slightly less bright at 1,100 nits, and it's also lower resolution at 1080p. It's still got a refresh rate of 120Hz, however. Additionally, both phones support Warp Charge 65T, which OnePlus claims should be able to charge the phones' 4,500mAh batteries to 100 percent in under half an hour. The 9 Pro and 9 can also charge wirelessly at up to 50W and 15W, respectively. Both phones will go on sale on April 2nd, with preorders starting March 26th.

sciencehabit shares a report from Science Magazine: The most advanced mind-controlled devices being tested in humans rely on tiny wires inserted into the brain. Now researchers have paved the way for a less invasive option. They've used ultrasound imaging to predict a monkey's intended eye or hand movements -- information that could generate commands for a robotic arm or computer cursor. If the approach can be improved, it may offer people who are paralyzed a new means of controlling prostheses without equipment that penetrates the brain.

A key next step will be to use the computer predictions in real time to guide a robot hand or a cursor. But ultrasound could still guide a robotic arm, as long as a computer could quickly direct the arm's fine motor movements from the user's cue. The team foresees many future improvements to the technique. "The technology is absolutely not at its full potential yet." The study has been published in the journal Neuron.

An anonymous reader quotes a report from IEEE Spectrum, written by Stacey Higginbotham: The IoT Cybersecurity Improvement Act of 2020 has given the nation an excellent framework that will influence IoT security across the world. So, what's to like about the law? Two things, as it turns out. First, the law isn't focused on securing individual devices by dictating password requirements or encryption standards, both of which will need to evolve. Instead, it relies on the National Institute of Standards and Technology (NIST) to set many of the requirements that government agencies have to follow when purchasing connected devices. These policies see overall security as the sum of several parts, requiring specific prescriptions for device, cloud, and communication security.

NIST's initial rules include today's best practices, such as having an over-the-air device update program, unique IDs for each device so it can be identified on a network, and a way for authorized users to change features related to access and security. The recommendations also include logging the actions taken by an IoT device or its related app, and clearly communicating the specifics of a device's security to the user. The other reason to like the law is that it remains adaptive and flexible by requiring NIST to assess the best practices for cybersecurity for connected devices every five years. Hacks, by their nature, are also adaptive and flexible, and so preventing them needs equally adaptable legislation. That means buying IoT devices that can receive over-the-air software updates, for example, to patch up any newly discovered exploits."Unfortunately, the law isn't airtight," writes Higginbotham. She worries that the waiver process for devices needed for national security or research could be abused. There's also a loophole that exempts devices that are secured using "alternative and effective methods." The law doesn't clarify what agency evaluates the efficacy of these alternative methods or how that evaluation is made.

An anonymous reader quotes a report from Hackaday: Probably the best known brand of cutter comes from Cricut, and that company has dropped a bombshell in the form of an update to the web-based design software that leaves their now very annoyed users with a monthly upload limit of 20 new designs unless they sign up for a Cricut Access Plan that costs $9.99 on monthly payments. Worse still, a screenshot is circulating online purporting to be from a communication with a Cricut employee attempting to clarify matters, in which it is suggested that machines sold as second-hand will be bricked by the company.

We'd like to think that given the reaction from their online community the subscription plan will backfire, but unlike the world of 3D printing their market is not necessarily an online-savvy one. A crafter who buys a Cricut from a bricks-and-mortar warehouse store and uses it with Cricut cartridges may not balk at being required to pay rent to use hardware that's already paid for in the same way a member of our community with a 3D printer would. After all, Cricut have always tried to make their software a walled garden. However if the stories about second-hand models being bricked turn out to bear fruit that might be a different matter. UPDATE 3/18/21: Cricut has decided to reverse its decision and allow every member to upload an unlimited number of images and patterns for free.

"Right now, every member can upload an unlimited number of images and patterns to Design Space for free, and we have no intention to change this policy," a Cricut spokesperson told us in an email. "This is true whether you're a current Cricut member or are thinking about joining the Cricut family before or after December 31, 2021."

They addressed these changes in a letter to the Cricut community, which you can read here.

An anonymous reader quotes a report from MacRumors: Apple will soon be making a significant change to its serial number format for future products that will see some key information stripped out. In an internal AppleCare email this week, obtained by MacRumors, Apple said the new serial number format will consist of a randomized alphanumeric string of 8-14 characters that will no longer include manufacturing information or a configuration code. Apple said the serial number format transition is scheduled for "early 2021," and confirmed that IMEI numbers will not be affected by this change.

Any currently shipping Apple products will continue to use the current serial number format, while future products will use the new format, according to Apple. The new serial numbers will initially be 10 characters, the company indicated. Apple's current serial number format has long allowed both customers and service providers to determine the date and location that a product was manufactured, with the first three characters representing the manufacturing location and the following two indicating the year and week of manufacture. The last four characters currently serve as a "configuration code," revealing a device's model, color, and storage capacity. Apple initially planned to transition to the new serial number format in late 2020, but delayed. Apple hasn't explained the reasons for the change, but the new format will effectively make it impossible to view details about when and where a device is manufactured.

In December, Ars reported that as many as 3 million people had been infected by Chrome and Edge browser extensions that stole personal data and redirected users to ad or phishing sites. Now, the researchers who discovered the scam have revealed the lengths the extension developers took to hide their nefarious deeds. Ars Technica reports: Researchers from Prague-based Avast said on Wednesday that the extension developers employed a novel way to hide malicious traffic sent between infected devices and the command and control servers they connected to. Specifically, the extensions funneled commands into the cache-control headers of traffic that was camouflaged to appear as data related to Google analytics, which websites use to measure visitor interactions. Referring to the campaign as CacheFlow, Avast researchers wrote: "CacheFlow was notable in particular for the way that the malicious extensions would try to hide their command and control traffic in a covert channel using the Cache-Control HTTP header of their analytics requests. We believe this is a new technique. In addition, it appears to us that the Google Analytics-style traffic was added not just to hide the malicious commands, but that the extension authors were also interested in the analytics requests themselves. We believe they tried to solve two problems, command and control and getting analytics information, with one solution."

The extensions, Avast explained, sent what appeared to be standard Google analytics requests to https://stats.script-protection[.]com/__utm.gif. The attacker server would then respond with a specially formed Cache-Control header, which the client would then decrypt, parse, and execute. Avoiding infecting users who were likely to be Web developers or researchers. The developers did this by examining the extensions the users already had installed and checking if the user accessed locally hosted websites. Additionally, in the event that an extension detected that the browser developer tools were opened, it would quickly deactivate its malicious functionality. Waiting three days after infection to activate malicious functionality. Checking every Google search query a user made. In the event a query inquired about a server the extensions used for command and control, the extensions would immediately cease their malicious activity.

An anonymous reader quotes a report from The Verge: Amazon is enabling a new feature today that allows Alexa to proactively complete tasks around the house, such as turning off lights, based on your habits and frequent requests. Alexa has been able to sense these habits and ask about them since 2018 -- the company calls them "hunches" -- but before this update, Alexa would ask permission before acting on something like lowering the thermostat before you went to bed. If the new proactive hunches are enabled, though, Alexa will skip asking for permission for a task and just do it.

While proactive hunches seem like they could make Alexa a lot more useful, having granular controls over what Alexa can automatically act on will be important. An Amazon support article seems to suggest you can select what types of hunches Alexa can complete on its own, but we've reached out to Amazon for more information on how much you can customize proactive hunches. In addition, Amazon is rolling out its Guard Plus security subscription service. "The service can alert you if Alexa picks up on certain types of sounds in your home and offers access to human agents who can call emergency services on your behalf, similar to ADT," reports The Verge. It'll cost $4.99 per month.

The company is also rolling out an energy dashboard via the Alexa app that can monitor and estimate how much power compatible devices connected to Alexa use if their manufacturers support it.