The Mac Observer

Smart Home Cameras, Baby Monitors Affected by Software Bug

Andrew Orr · August 17, 2021

A flaw in the ThroughTek “Kalay” network affects millions of IoT devices including smart baby monitors, DVRs, smart cameras, and other products.

this latest vulnerability allows attackers to communicate with devices remotely. As a result, further attacks could include actions that would allow an adversary to remotely control affected devices and could potentially lead to remote code execution.

Due to how the Kalay protocol is integrated by original equipment manufacturers (“OEMs”) and resellers before devices reach consumers, Mandiant is unable to determine a complete list of products and companies affected by the discovered vulnerability.

Link

Mastercard Moves to Phase Out Use of Magnetic Stripe by 2024

Andrew Orr · August 16, 2021

Mastercard announced on Monday a plan to phase out usage of magnetic stripes on its cards, and says it is the first payments network to do so.

Based on the decline in payments powered by magnetic stripes after chip-based payments took hold, newly-issued Mastercard credit and debit cards will not be required to have a stripe starting in 2024 in most markets. By 2033, no Mastercard credit and debit cards will have magnetic stripes, which leaves a long runway for the remaining partners who still rely on the technology to phase in chip card processing.

News

Twitter Hires Crypto Developer for Decentralized Network Project

Andrew Orr · August 16, 2021

Twitter has hired crypto developer Jay Graber to lead its efforts to build a decentralized social network, dubbed “bluesky.”

Deep Dive

Get Free Bitcoins from 23 Faucets That Pay

Bryan Chaffin · August 16, 2021

Bryan Chaffin explains how Bitcoin faucets work and which faucets you can trust to pay. [Update: reformatted the guide, removed several defunct faucets, updated all descriptions, and added some new earning opportunities, too. – Bryan]

Product News

US Government Still Wants an iOS Backdoor

Jeff Butts · August 16, 2021

Some thought efforts to force an iOS backdoor were over. In fact, Cupertino may have won the battle in 2016, but the war wages on. Jeff Butts outlines the latest stalled efforts, and how they are probably just a setback for the government.

Link

GitHub No Longer Accepts Passwords, Use Security Keys Instead

Andrew Orr · August 16, 2021

GitHub will no longer accept passwords when authenticating Git operations and will require the use of strong authentication factors. Yubico also posted about the announcement here, and its 2FA hardware keys are an acceptable solution for GitHub users.

In December, we announced that beginning August 13, 2021, GitHub will no longer accept account passwords when authenticating Git operations and will require the use of strong authentication factors, such as a personal access token, SSH keys (for developers), or an OAuth or GitHub App installation token (for integrators) for all authenticated Git operations on GitHub.com. With the August 13 sunset date behind us, we no longer accept password authentication for Git operations.

News

Thousands of Wikipedia Pages Vandalized With Swastikas

Andrew Orr · August 16, 2021

On Monday morning thousands of Wikipedia pages were vandalized with swastikas. The vandalism was reversed and admins are fixing the issue.

Podcast

Smart Matter and Thread – TMO Daily Observations 2021-08-16

Kelly Guimont · August 16, 2021 · Add Comment

Andrew Orr and Jeff Butts join host Kelly Guimont to discuss a smart home delay, and what options you have today if you are setting up something new.

VIew all episodes

News

Pearson Settles With SEC, Pays $1 Million Fine Over Data Breach

Andrew Orr · August 16, 2021

The U.S. Securities and Exchange Commission announced a settlement with Pearson, a company that provides software to schools, which will pay US$1 million.

Analysis

Samsung's New OLED Display Is Just What the iPhone Needs

Jeff Butts · August 16, 2021

Let’s take a minute to talk OLED display technology, and how Samsung’s hit all the marks. The latest Eco Square is perfect for the iPhone.

News

Dashlane Password Manager Releases Mac Catalyst App

Andrew Orr · August 16, 2021

Dashlane announced on Monday that its Mac app now supports Catalyst, and says it is the first password manager in the Mac App Store to do so.

Podcast

Travel Tips, Wi-Fi Troubleshooting, and Dave Got Caught! — Mac Geek Gab 885

John F. Braun & Dave Hamilton · August 16, 2021 · Add Comment

It’s always interesting when multiple listeners have the same problem, and today you can listen as John and Dave dig into issues with Mac minis and restarting. We think your two favorite geeks have the answer! And that’s what happens here, you ask questions, we provide answers… and Quick Tips… and Cool Stuff Found, too! Press play and enjoy learning at least five new things!

VIew all episodes

News

Apple's Mass Turnover in iCloud, Health, AI Teams

Jeff Butts · August 16, 2021

Quite a few big names are leaving Apple. This recent mass turnover from Cupertino’s Health, iCloud, and AI teams could be a result of Apple’s controversial back-to-the-office policy, or simply a reflection of the times in tech careers.

Link

(Update) T-Mobile Customer Data for Sale Affecting Over 100 Million People

Andrew Orr · August 16, 2021

A person in an online forum is offering data for sale that they claim comes from T-Mobile servers. The carrier says it is investigating the accuracy of this alleged breach.

The data includes social security numbers, phone numbers, names, physical addresses, unique IMEI numbers, and driver licenses information, the seller said. Motherboard has seen samples of the data, and confirmed they contained accurate information on T-Mobile customers.

Update: T-Mobile has issued a statement confirming the breach.

Devil's Advocate

Apple, You Broke Your Privacy Promises and Our Hearts

John Kheit · August 15, 2021

John sees Apple reversing its commitment to privacy, which he feels has broken the hearts of many apple fans, including his own.

Podcast

Mac Gaming, Crypto Credit Cards, iOS 15, with Jeff Butts - ACM 553

Bryan Chaffin · August 13, 2021 · 1 Comment

Bryan Chaffin and Jeff Butts talk about the current state of Mac gaming, with Jeff focusing on improved Mac support at Steam. They also dive deeper into crypto credit cards where you can either spend your crypto and/or earn cryptocurrency rewards like Bitcoin on your purchases. And, Jeff has been deep into iOS 15 betas, and he talks about some of his favorite new features.

VIew all episodes

Video Tip

A Tour of The New Apple Online Retail Store

Charlotte Henry · August 13, 2021

Apple recently added a new ‘Store’ tab to its website and redesigned its online retail offering. Charlotte Henry gives you a quick guided tour through the changes, how it makes shopping easier, and how it could even save you money.

News

Blockchain Project ‘Polygon’ Acquires Hermez, Native Tokens to Merge

Andrew Orr · August 13, 2021

Polygon has announced its acquisition of Hermez Network, a ZK-Rollups-based Ethereum scaling solution, for US$250 million.

News

Smart Home Connectivity Standard ‘Matter’ Delayed to 2022

Andrew Orr · August 13, 2021

Matter, a connection standard for smart home devices backed by Apple, Amazon, Google, and others, has delayed its rollout until 2022.

News

Facebook Adds End-To-End Encryption to Messenger Calls, Instagram DMs

Andrew Orr · August 13, 2021

Facebook has begun rolling out end-to-end encryption for Messenger calls and Instagram DMs, bringing greater security and privacy to users.

News

Reddit Adds Video Feed Button to its iOS App to Highlight User Videos

Andrew Orr · August 13, 2021

Reddit is rolling out a video feed button in its iOS app to let users view video content in a TikTok-like feed.

Cool Stuff Found

Children of Deaf Adults And Their Families React to Apple TV+ Movie 'CODA'

Charlotte Henry · August 13, 2021

There was a special screening of the movie CODA for some Children of Deaf Adults and their parents. A new video shows their reactions, and why they consider it an important film. It’s now available on Apple TV+ and in select theaters.

Podcast

Security Friday: Vax Records, Actually Clearing Cookies – TMO Daily Observations 2021-08-13

Kelly Guimont · August 13, 2021 · Add Comment

Andrew Orr and Dave Hamilton join host Kelly Guimont for Security Friday news including ways to store vaccine info, and truly clearing browser history.

VIew all episodes

Cool Stuff Found

Add a Free COVID-19 Vaccine Passport to Apple Wallet Using VaxYes

Andrew Orr · August 13, 2021

Congratulations on being fully vaccinated against COVID-19! Now? Well, you can take a photo of your record or scan it into Files/Apple Notes. And with a service called VaxYes from gogetdoc you can add it to Apple Wallet for greater convenience. You’ll have to give them a picture of your vaccine card as well as a photo of your ID. The company uses AES-256 encryption (referred to as “military grade”) and is fully compliant with HIPAA. Gogetdoc has HIPAA-trained quality control agents and medical staff to ensure appropriate details are collected for verification of the record before issuing a digital vaccine card. Tap on “Get a Free Vaccine Passport” and follow the onscreen instructions. I did it and the process to get the Wallet passport took about 60 seconds. If you live in the UK you can get a passport with this article.