Amazon Picks Crystal City and New York City to House Its HQ2

Following much speculation and political lobbying, Amazon revealed on Tuesday that it will open its second headquarters in Crystal City in Virginia and New York City. Furthermore, Amazon announced that Nashville will be the base for its new Center of Excellence for its Operations business. The center will be responsible for the company’s customer fulfillment, transportation, supply chain and related tasks. The Washington Post outlined the significance of the decision for the places that the online retail behemoth has selected:

The choice of Crystal City in Arlington County as one of the winners cements Northern Virginia’s reputation as a magnet for business and potentially reshape the Washington region into an eastern outpost of Silicon Valley over the next decade.

 

Yet Another Facebook Vulnerability Found

Another Facebook vulnerability has been found that could have exposed information about users and their friends.

The security company Imperva has released new details on a Facebook vulnerability that could have exposed user data. The bug allowed websites to obtain private information about Facebook users and their friends through unauthorized access to a company API, playing off a specific behavior in the Chrome browser. The bug was disclosed to Facebook and resolved in May.

At this point Facebook is a giant dumpster fire. Get out while you still can.

Google Traffic Was Hijacked, Routed Through Russia, China

In another BGP hijack, Google traffic was rerouted yesterday through Russia and China. This included Google Cloud, YouTube, and other services.

Specifically, network connectivity to Google was instead routed through TransTelekom in Russia (mskn17ra-lo1.transtelecom.net), and into a China Telecom gateway (ChinaTelecom-gw.transtelecom.net) that black-holed the packets. Both hostnames have since stopped resolving to IP addresses.

Hijack me once, shame on you. Hijack me twice, shame on me.

New HTTP Version is Coming, Won't Use TCP

A new HTTP version is coming, and it will work differently than previous versions. Instead of using TCP, it will use a Google technology called QUIC.

In its continued efforts to make Web networking faster, Google has been working on an experimental network protocol named QUIC: “Quick UDP Internet Connections.” QUIC reinstates the reliability and ordering that TCP has but without introducing the same number of round trips and latency.

For example, if a client is reconnecting to a server, the client can send important encryption data with the very first packet, enabling the server to resurrect the old connection, using the same encryption as previously negotiated, without requiring any additional round trips.

What Do You Want In iOS 13?

It’s been just two months since iOS 12 was released, but people are already looking ahead to what Apple might do with the next iteration of its mobile operating system. MacWorld‘s Jason Cross has published his wishlist and I suspect there is much on there that TMO readers will agree with. It includes the introduction of dark mode as seen in macOS Mojave, an upgrade for Siri and a revamped camera. Cross would also like to see YouTube 4K and HDR video support, not to mention more flexibility and power in the iPad version. Here’s a bit of what he hopes comes next on  iOS:

Apple can do more, much more. The latest iPhones and iPad Pros sport processors, cameras, and sensors that are capable of incredible things, but iOS at times feels like its holding us back. In particular, the iPad Pro feels like it has everything it needs to be a complete laptop replacement—except an operating system that lets you do everything you need to do on a laptop.

Unlock Your Volkswagen With Siri

Volkswagen is now letting iPhone users unlock their car with Siri. The VW Car-Net app has support for shortcuts.

iOS users can now use Siri to lock and unlock their car, check estimate mileage with the fuel or charge left in their vehicle, and enable alarms. Cart-Net isn’t free to all VW owners, though: the app costs a specific subscription fee per month. It allows vehicle owners to pinpoint their car’s location, set a geofence for it, and access diagnostics remotely.

Kids Are Being Raised in a Cashless Society

Contactless payments and bank apps are introducing kids to a cashless society. Some parents are using these apps instead of forking over cash allowances.

 “Young people are seeing less and less cash transactions, which just means that we have to be even more careful to talk about what is happening at each of those stages, because it has become more abstract,” said Winnard.

This is also how Apple seems to be marketing Apple Pay Cash in part. Parents can use iMessage to give their kids money.

Does Wiping an iPhone Count as Destroying Evidence?

An iPhone X seized as part of an investigation was remotely wiped by its owner. This begs the question: Does wiping an iPhone count as destruction of evidence?

Police believe Juelle L. Grant, 24, of Willow Avenue, may have been the driver of a vehicle involved in an Oct. 23 drive-by shooting on Van Vranken Avenue, near Lang Street, so they obtained her phone, according to police allegations filed in court.

No one was injured in the shooting. After police took her iPhone X, telling her it was considered evidence, “she did remotely wipe” the device, according to police.

This will be an interesting case to watch, and could set the tone for future phone-related incidents.

Advertising Fraud on Android Apps Uncovered

Buzzfeed News has discovered a  sophisticated digital advertising fraud scheme targeting Android devices, in which ads were shown to bots, not real users. The article estimates that those behind the scheme “stole close to $10 million from advertisers who used Google’s ad network to place ads in the affected websites and apps”. The fraudulent scheme operated across a  large network of Android apps, including some aimed at children.  It raises major questions about the reviews process used by Google. The article noted that “the Google Play store has a less rigorous app review process than Apple’s App Store.” Here’s some of what Buzzfeed News found:

An investigation by BuzzFeed News reveals that these seemingly separate apps and companies are today part of a massive, sophisticated digital advertising fraud scheme involving more than 125 Android apps and websites connected to a network of front and shell companies in Cyprus, Malta, British Virgin Islands, Croatia, Bulgaria, and elsewhere. More than a dozen of the affected apps are targeted at kids or teens, and a person involved in the scheme estimates it has stolen hundreds of millions of dollars from brands whose ads were shown to bots instead of actual humans.

Apple Headphones Might One Day Auto-Detect Right/Left

A new patent reveals that Apple is trying to use microphone to solve the problem of people wearing headphones the wrong way round. Typically our headphones are marked either L and R or having some other kind of indication as to which side is which. Apple has a new patent, reported by AppleInsider,  for a “system and method for automatic right-left ear detection for headphones.” It would use the microphone in the headset to discover the headphone’s orientation and alter the left and right channels accordingly. The patent details a system of five microphones per ear cup, including one inside. Here’s a little insight into what might be on offer in the future:

By listening to the voice of the user, and monitoring the volume of the voice by each microphone, the headphones can determine which edge is closest to the user’s mouth, and therefore which orientation the headphones reside. The offsetting of the top-side microphones also allows for just those two microphones to be used, with the logic the microphone of the two that has the louder volume is closer to the mouth.

Sprint Might Be Throttling Skype, Say Researchers

An ongoing study by Northeastern University and the University of Massachusetts claims that Sprint is throttling Skype without telling customers.

Choffnes and his team analyzed more than 719,417 tests conducted by 100,000 users across 135 countries, and discovered that wireless carriers routinely throttle streaming video applications. While carriers often claim this kind of throttling only occurs in response to network congestion, evidence suggests the practice is often tied to efforts to upsell users to pricier plans.

We need net neutrality more than ever.

USPS Informed Delivery Vulnerable to Identity Thieves

The USPS Informed Delivery Service is vulnerable to identity thieves. The services lets you see a preview of your mail on the web and mobile, and this week the U.S Secret Service issued a warning about it.

The internal alert — sent by the Secret Service on Nov. 6 to its law enforcement partners nationwide — references a recent case in Michigan in which seven people were arrested for allegedly stealing credit cards from resident mailboxes after signing up as those victims at the USPS’s Web site.

According to the Secret Service alert, the accused used the Informed Delivery feature “to identify and intercept mail, and to further their identity theft fraud schemes.”

Ugh, why can’t we have nice things?

To be a Computer, iPad Pro Needs a Computer OS

Writing in his iPad Pro Diary series, Ben Lovejoy argues that the iPad needs a computer OS in order to be closer to a computer. He calls it “padOS.”

But while the iPad Pro isn’t trying to be a Mac, it is a grown-up device and it needs a grown-up operating system. Not macOS, but rather a tailored version of iOS, designed to take advantage of the additional capabilities of the iPad. What some people have termed padOS.

To Mr. Lovejoy I say this: Have no fear, this is what iOS 13 will be. *crosses fingers*

Can Film Emulator Apps Like VSCO Replace Actual Film?

The Phoblographer writes about why film emulator apps like VSCO and iPhone don’t replace traditional film photography. My argument is that yes, they have. Film isn’t dead just like vinyl isn’t dead, but both have been relegated to a small group of people. I’ve tried to use VSCO as an editor for years, but I never stuck with it until they VSCO. Now I use VSCO for 90% of my own editing. You can write about how things like film and vinyl make you feel all artsy-fartsy, and how iPhone photographers aren’t real photographers. But the photographer’s goal is to capture the world, and you should use the best tools you can in service of that goal. Whether those tools are film, a DSLR, or a disposable camera, the end result is that you created something.

Github announces it hosts 100 million repositories

GitHub, the widely used code management and development tool, revealed Thursday that it hosts 100 million repositories. VentureBeat has a good breakdown of the news and the current state of the platform. It includes the fascinating bit of trivia that Algeria has the most repositories per capita, while Egypt boasts the highest number of open source repositories. GitHub is used by approximately 31 million developers around the globe. It was bought by Microsoft in June for $7.5 million.

Source code management and developer collaboration platform GitHub today announced users have now created 100 million repositories. For context, GitHub had 33 million repositories when the company was founded in 2008, and nearly one in three repositories were made within the past year.

Season 2 of 'Mars' Set to Air on Nat Geo Channel

I watched season one, and it was terrific. “Season one of Mars followed the crew of the spacecraft Daedalus, as the astronauts attempted to create a pioneer settlement on the Red Planet in 2033. Season two is set nine years later and follows the fortunes of the first fully-fledged colony.” Check your local listings for the National Geographic channel. Mine says Monday, November 12. (Image credit: National Geographic channel.)

Google Cloud Adds Science Tool to Share Scientific Models

Google wants to make it easier for scientists to share scientific models, so today it announced Kubeflow pipelines and AI Hub to help.

To help fix that, Google is announcing Kubeflow pipelines, which are an extension of Kubeflow, an open source framework built on top of Kubernetes designed specifically for machine learning…The company is also announcing AI Hub, which as the name implies is a central place where data scientists can go to find different kinds ML content including Kubeflow pipelines, Jupyter notebooks, TensorFlow modules and so forth.

New MacBook Air Battery Can Be Replaced Yourself

In an unusually repair-friendly move by Apple, you will be able to replace the new MacBook Air battery yourself.

“This is a huge step forward,” said Kyle Wiens, CEO of iFixit, a popular website dedicated to repairing Apple products. “Apple’s glued-down battery design has been a challenge for consumers, recyclers, and for Apple’s own technicians. Preserving the removability of the MacBook Air’s battery is really important.”

DJI Security Flaw Could Have Exposed Accounts

Consumer drone manufacturer DJI fixed a security flaw in its website and apps. The DJI security flaw—revealed today—could have been bad.

The vulnerability, revealed Thursday by researchers at security firm Check Point, would have given an attacker complete access to a DJI users’ cloud stored data, including drone logs, maps, any still or video footage — and live feed footage through FlightHub, the company’s fleet management system — without the user’s knowledge.

It doesn’t sound like any customer data was actually accessed, but DJI and CheckPoint say it would be difficult to know for sure.

Drone icon made by Roundicons from www.flaticon.com.

New iPad Pro Means it is Time for padOS

It is fair to say that Ben Lovejoy from 9to5Mac is a fan of the new iPad Pro, including the “perfection of the rounded corners in the display.” He is increasingly recommending it to non-techies over a MacBook. His one gripe though is that he thinks the iPad Pro needs its own operating system – call it padOS. I can see the case for this. The iPad Pro, in particular, is now so advanced that people are doing an increasing number of high-powered tasks on it. The device needs an operating system that reflects that. As Lovejoy points out, Apple argues against converged devices. So why not add an extra operating system into the mix so that each hardware offering is compatible but has a unique software environment so users can truly enjoy devices to their full potential?

But while the iPad Pro isn’t trying to be a Mac, it is a grown-up device and it needs a grown-up operating system. Not macOS, but rather a tailored version of iOS, designed to take advantage of the additional capabilities of the iPad. What some people have termed padOS.

Xiamoi AirDots - the Latest AirPod Copy

“Imitation is the sincerest form of flattery,” the old saying goes. If that is true, Apple should be feeling very flattered indeed. Chinese company Xiaomi has become the latest firm to imitate the AirPods with its AirDots wireless headphones. It is not just the name that’s similar. The design of the AirDots shares a lot with the AirPods. They are fully wireless and have a very familiar look charging case. The next generation of the AirPods is thought to use Bluetooth 5.0, and the Air Dots utilise that same technology. In fact, the biggest difference is the price. The Next Web reported that the Air Dots will retail for just $30. Here is a bit of what they make off this copy-cat offering:

It seems like everyone wants to get on the AirPod bandwagon. Apple’s wireless earbuds have proven so popular that shedloads of companies are copying the format and releasing similar-looking versions of the audio gear. The latest in this line? The Xiaomi AirDots. The earbuds have many of the same features as the AirPods. First off, they’re true wireless, meaning there’s not a cable in sight on the headphones themselves. The Xiaomi AirDots also have touch controls on the side of the buds and come with the now standard charging case.

Reuters Looks at Apple's Challenges in India

India is home to a large population full of very tech-savvy. Not surprisingly, Apple is keen to increase its sales there. However, small incomes, high device costs and cheap alternatives are making this increasingly difficult. A good piece of analysis on Reuters reveals that even those in Bengaluru – India’s Silicon Valley, are resisting high-end new Apple devices. To compound the difficulties, Apple faces high import tariffs in India and lost some of its top executives in the country this year. While I suspect that tales of Apple’s demise in India is somewhat premature, there is little doubt the firm faces big challenges to keep the country’s 1.3 billion consumers buying its products. Here’s a snippet:

But in a country where the average per capita income is around $2,000 a year, even the cheapest of this year’s new iPhones, the XR at 76,900 rupees ($1,058), costs twice as much as many of the alternatives. Hong Kong-based Counterpoint Research says that iPhone sales are falling as a result. From three million phones in 2017, sales may sink to two million this year, according to their estimate, the first decline in four years.

How Apple Magnets Work in Products

Apple magnets are inside iPhones, iPads, and Apple Watches. But how do they work, and what functions do they have?

That brings us to the new iPad Pro, with 102 magnets spread all around. On the new iPad, Apple’s using magnets in four primary ways: As a way to firmly attach accessories to the device’s back, as an Apple Pencil attachment, to attach the Smart Connector, and to attach a screen cover while locking or unlocking the device.

China Re-Routed US Internet Traffic for 2.5 Years

For two and a half years China Telecom re-routed a lot of U.S. internet traffic to China. It’s not clear if it was intentional or a mistake.

As the following traceroute from December 3, 2017 shows, traffic originating in Los Angeles first passed through a China Telecom facility in Hangzhou, China, before reaching its final stop in Washington, DC. The problematic route, which is visualized in the graphic above, was the result of China Telecom inserting itself into the inbound path of Verizon Asian Pacific.

Now, it could be a bug in the internet’s Border Gateway Protocol (BGP). Or it could have been malicious (ALLEGEDLY) seeing how Washington D.C.’s traffic was compromised.

WIN an iPhone 16 Pro Max!