Sponsor: Magic Lasso Adblock: Incredibly Private and Secure Safari Web Browsing magiclasso.co

Online privacy isn’t just something you should be hoping for — it’s something you should expect. You should ensure your browsing history stays private and is not harvested by ad networks.

By blocking ad trackers, Magic Lasso Adblock stops you being followed by ads around the web.

Screenshot of Magic Lasso Adblock

It’s a native Safari content blocker for your iPhone, iPad, and Mac that’s been designed from the ground up to protect your privacy.

Rely on Magic Lasso Adblock to:

  • Remove ad trackers, annoyances and background crypto-mining scripts

  • Browse common websites 2.0× faster

  • Double battery life during heavy web browsing

  • Lower data usage when on the go

So, join over 300,000 users and download Magic Lasso Adblock today.

My thanks to Magic Lasso Adblock for sponsoring Pixel Envy this week.

The Onion Is the Latest Publication to Be Sold by G/O Media nytimes.com

Mark Stenberg, reporting for Adweek in January:

Digital media company G/O Media is shopping around its portfolio of editorial assets in hopes of securing buyers for individual titles, part of a broader effort to divest the properties ahead of another challenging year for the media industry, according to four people familiar with the efforts.

[…]

“Your reporting is largely incorrect. As with many multi-title media properties, we are always entertaining opportunities,” said a representative for G/O Media. “We have sold sites and purchased sites. Having said that, we do not comment on transaction rumors and speculation.”

It was “largely incorrect”, according to G/O Media, to suggest the company was thinking about selling off its portfolio of sites just two months after selling two of its sites to Paste. CEO Jim Spanfeller even gave an “exclusive” interview to Sara Fischer, of Axios, to dispel the rumours. Weeks later, the company sold and purged the shell of Deadspin, and then it sold the A/V Club and the Takeout.

Katie Robertson, New York Times:

G/O Media announced on Thursday that it had sold The Onion, a satirical news site, to a group of digital media veterans.

[…]

The real-life Global Tetrahedron is owned by Jeff Lawson, a co-founder and former chief executive of the technology communications company Twilio. The chief executive is Ben Collins, who was a senior reporter at NBC News until recently.

G/O Media still owns six publications — for now. For its part, the Onion says you should feed it one dollar.

‘Microsoft Must Stop Selling Security as a Premium Offering’ directionsonmicrosoft.com

Mary Jo Foley:

In a perfect world, Microsoft would take security seriously again. It would be transparent about breaches. Its execs would stop gloating about increasing security service revenue at a time when Microsoft can’t secure its own employees, let alone customers, against incidents that are happening with increasing frequency. And Microsoft would include must-have security capabilities as part of existing subscriptions instead of selling them as add-ons.

Microsoft sure is lucky to be so deeply enmeshed in the operations of businesses and governments that it is able to sell security for a fee because its all-in-one offering has basically no competition.

True Believing Tesla Retail Investors wsj.com

Hardika Singh, Wall Street Journal:

Bartash isn’t alone. Scores of individual investors have piled into Tesla shares in recent years, lured by the company’s technology, visionary chief executive and mammoth stock market gains. Through the end of last year, the stock was one of the top 10 wealth-creating companies for investors over the past decade, according to Morningstar, rising from about $10, on a split-adjusted basis, to $250.

But the shares have since hit a rough patch, down almost 40% in 2024. Tesla is the second-worst performer in the S&P 500 and off more than 60% from its peak in November 2021. The company’s market value fell below $500 billion last week for the first time in nearly a year, after climbing as high as $1.235 trillion.

It is hard to blame these people for sticking with Tesla despite its actual performance. Tesla’s stock is in the tank for the year, and Singh’s story was published Monday, one day before a bleak earnings report. Income was less than half was it was a year prior, revenue and margin fell, and it sold many fewer vehicles than it made.

Even so, Tesla’s stock jumped 12% because its CEO said “A.I.”, and he recently promised a robotaxi service once again and a less expensive model. Investors apparently believe him.

The Utility of Google Search Was Sacrificed for Ad Growth wheresyoured.at

Ed Zitron read a bunch of the emails released in United States v. Google and believes the quality of Google’s search engine has been in decline since early 2019 thanks to new leadership:

These emails are a stark example of the monstrous growth-at-all-costs mindset that dominates the tech ecosystem, and if you take one thing away from this newsletter, I want it to be the name Prabhakar Raghavan, and an understanding that there are people responsible for the current state of technology. 

Because these are only a sampling of the emails released as part of that trial, they paint a necessarily incomplete picture, and one that is possibly wrong.

Zitron’s reporting focuses on similar themes to Megan Gray’s retracted story for Wired in which Google allegedly “alters queries billions of times a day”, each time making a “behind-the-scenes substitution of your actual query with a different query that just happens to generate more money for the company”. These claims were not actually proven in court, as far as I can figure out, but gestures toward them were found by Davey Alba and Leah Nylen of Bloomberg, and can be found in Zitron’s story:

A day later, Gomes emailed Fox and Thakur an email he intended to send to Raghavan. He led by saying he was “annoyed both personally and on behalf of the search team.” in a long email, he explained how one might increase engagement with Google Search, but specifically added that they could “increase queries quite easily in the short term in user negative ways,” like turning off spell correction, turning off ranking improvements, or placing refinements — effectively labels — all over the page, adding that it was “possible that there are trade offs here between different kinds of user negativity caused by engagement hacking,” and that he was “deeply deeply uncomfortable with this.” He also added that this was the reason he didn’t believe that queries were a good metric to measure search and that the best defense about the weakness of queries was to create “compelling user experiences that make users want to come back.”

This is not the same thing as what Gray claimed, even though it is along similar lines. Google allegedly sacrificed an update to its search engine which improved the quality of results for users because it was less profitable. This was done, according to these emails and documents, with cooperation between search and ads. And it could do all of this because Google’s management team knows it has a search monopoly and that does not come cheap.

How iOS Geographically Restricts New Features adamdemasi.com

Adam Demasi:

In iOS 17.4, Apple introduced a new system called eligibilityd. This works with countryd (which you might have heard about when it first appeared in iOS 16.2) and the Apple ID system to decide where you physically are. The idea is that multiple sources need to agree on where you are, before giving you access to features such as those mandated by the Digital Markets Act.

I cannot remember a time when Apple so aggressively restricted system features by geography. Most often, options show up if you change the device region in Settings; that is how Apple News can be accessed outside regions where it is officially available. But someone accessing News is only positive for Apple. There are other things locked by geography, like like Apple Cash, which only works with U.S. banking information, and special obligations to China which are active for devices sold only there. Those are legal obligations which someone either deeply tied to systems in a particular country — in the case of the former — or something people likely would not want.

The DMA features, on the other hand, are probably something a lot of users would like access to. Perhaps not a majority of iPhone owners, but a lot of them. Engineers at Apple have worked very hard to make a lot of features, and also to prevent them from being used. Clearly, these are features Apple did not want to make at all, but it is notable how much effort it is making to lock them down.

Preliminary Findings on the Effects of Meta’s News Ban in Canada mediaecosystemobservatory.com

Following the passage of the Online News Act, the Media Ecosystem Observatory studied the behaviour of Canadian Facebook and Instagram users. The resulting report (PDF) is a brief but useful read.

Sara Parker, et al. summarizing two of its findings:

The Facebook Pages of national news outlets lost approximately 64% of their Facebook engagement following the end of news availability for Canadian users. Local news outlets lost approximately 85%. Almost half of all local news outlets stopped posting on Facebook entirely in the four months following the ban. 

Engagement with politically relevant pages and groups has remained unchanged since the ban, suggesting politically-oriented users have not reduced their Facebook usage.

Surprised? Me neither.

According to these researchers’ findings, many users simply posted screenshots of news articles without a direct link, thereby depriving media outlets of even meagre ad revenue. Interestingly, among a set of known misinformation sources catalogued by the Global Disinformation Index, sharing of news-like nonsense also dropped following Meta’s policy change.

Special Characters in MacOS leancrew.com

Dr. Drang:

I have a feeling many longtime Mac users are like me: some special characters are typed directly, some are done through expansion, and the rest — never used before and never expected to be used again — come through the Character Viewer.

When the Mac turned forty earlier this year, I made an effort to mention the “ability to type special characters by using the option key” as one of my favourite MacOS features. But I neglected to mention text replacement — which I use to transform, for example, cmdkey into ⌘, and xtimes into × — and Character Viewer. You may know the latter as the emoji picker, but you can click the icon in the upper-right of the panel to display the full Character Viewer. Oh, and another way of inserting special characters is to simply hold down a key on the keyboard, just like on iOS.

All of these seem like pretty intuitive ways to insert characters which do not appear on the keyboard, and do not require you to memorize Unicode values. I use all the entry methods available in MacOS and they, collectively, are among my favourite system features.

Sponsor: Magic Lasso Adblock: 2.0× Faster Web Browsing in Safari magiclasso.co

Want to experience twice as fast load times in Safari on your iPhone, iPad, and Mac?

Then download Magic Lasso Adblock — the ad blocker designed for you. It’s easy to setup, blocks all ads, and doubles the speed at which Safari loads.

Screenshot of Magic Lasso Adblock

Magic Lasso Adblock is an efficient and high performance ad blocker for your iPhone, iPad, and Mac. It simply and easily blocks all intrusive ads, trackers and annoyances in Safari. Just enable to browse in bliss.

By cutting down on ads and trackers, common news websites load 2x faster and use less data.

Over 300,000+ users rely on Magic Lasso Adblock to:

  • Improve their privacy and security by removing ad trackers

  • Block annoying cookie notices and privacy prompts

  • Double battery life during heavy web browsing

  • Lower data usage when on the go

And unlike some other ad blockers, Magic Lasso Adblock respects your privacy, doesn’t accept payment from advertisers, and is 100% supported by its community of users.

With over 5,000 five star reviews; it’s simply the best ad blocker for your iPhone, iPad and Mac.

Download today via the Magic Lasso website.

My thanks to Magic Lasso Adblock for sponsoring Pixel Envy this week.

China Orders Apple to Remove Popular Messaging Apps From App Store wsj.com

Aaron Tilley, Liza Lin, and Jeff Horwitz, Wall Street Journal:

Meta Platforms’ WhatsApp and Threads as well as messaging platforms Signal and Telegram were taken off the Chinese App Store Friday. Apple said it was told to remove certain apps because of national security concerns, without specifying which.

“We are obligated to follow the laws in the countries where we operate, even when we disagree,” an Apple spokesperson said.

A good argument for supporting protocols over platforms. Threads may have been ejected but it seems impossibly difficult to prohibit ActivityPub entirely. It is not as though HTTP or SMTP are banned in China.

U.S. Senate Votes to Reauthorize, Expand, FISA Surveillance Powers nbcnews.com

Frank Thorp V, Sahil Kapur and Ryan Nobles, NBC News:

The Senate voted to reauthorize a powerful surveillance tool the U.S. government describes as critical to combating terrorism, after defeating efforts by civil liberties advocates on the left and right to rein it in.

The vote of 60-34 sends the bill to President Joe Biden, who has championed it. The legislation extends Section 702 of the Foreign Intelligence Surveillance Act, or FISA, for two more years.

Contrary to the New York Times’ framing last year, the nay votes were hardly a picture of the “far-right”. Dissenters were almost a 50–50 split between Republicans and Democrats, with slightly more of the latter. Sadly, even with some long-overdue Republican support, the nay votes did not “imperil” this capability.

Marc Zwillinger, Steve Lane, and Jacob Sommer, of the ZwillGen law firm, on an amendment which will compel more providers to turn over records:

The new amendment is a marginal improvement over the last go-around, but it is still problematic. It is not a change that “narrowly updates the definition of electronic communication service provider under Section 702.” Like the FRRA, it: (1) drops the qualifier “communication” from the class of covered “service providers;” (2) makes access to communications-carrying equipment enough to establish eligibility; and (3) adds “custodian” to the list of individuals who can be forced to provide assistance. But unlike the FRRA, it then enumerates a list of business types that cannot be considered ECSPs, including public accommodations, dwellings, restaurants, and community facilities.

The White House is thrilled.

American readers, if you need cheering up, do note the House of Representatives passed the Fourth Amendment is Not For Sale Act.

Informed Consent and Privacy daringfireball.net

John Gruber, in 2020:

Just because there is now a multi-billion-dollar industry based on the abject betrayal of our privacy doesn’t mean the sociopaths who built it have any right whatsoever to continue getting away with it. They talk in circles but their argument boils down to entitlement: they think our privacy is theirs for the taking because they’ve been getting away with taking it without our knowledge, and it is valuable. No action Apple can take against the tracking industry is too strong.

Ian Betteridge contrasted this view against one of Gruber’s recent articles, in which his stance appears to have softened on the seriousness of tracking:

I wonder what happened to turn John’s attitude from “no action Apple can take against the tracking industry is too strong” to defending Facebook’s “right” to choose how it invades people’s privacy? Or is he suggesting that a private company is entitled to defend people’s privacy, but governments are not?

To put it another way, should people have an expectation of how private information is used and collected, or should that be wildly different depending on which companies they interact with? Is the status quo of handling private data in the U.S. the optimal legal balance?

John Gruber, responding:

I’ve seen a bit of pushback along this line recently, more or less asking: How come I was against Meta’s tracking but now seem for it? I don’t see any contradiction or change in my position though. The only thing I’d change in the 2020 piece Betteridge quotes is this sentence, which Betteridge emphasizes: “No action Apple can take against the tracking industry is too strong.” I should have inserted an adjective before “tracking” — it’s non-consensual tracking I object to, especially tracking that’s downright surreptitious. Not tracking in and of itself.

Given my review of Byron Tau’s new book, you might expect me to wholly disagree with the idea that anyone can provide consent. I do not — in theory. But in practice and in most circumstances right now, it probably is impossible for users to provide meaningful consent to all of the digital products and services they use.

Consider what full informed consent looks like for Facebook — and just Facebook. One would need to indicate they have read and understood each section of its simplified privacy policy, not just tick the blanket “I Agree” box, or permit it using the App Tracking Transparency dialog. Facebook should show exactly what it is collecting and how it is using this information. Every time a policy changes, Facebook should get an affirmative agreement, too, from each user; none of this by continuing to use the product, you indicate your agreement nonsense.

And this is just Facebook. Imagine that across all your accounts everywhere. We have a taste of that on the web with cookie consent panels, and on iOS with the myriad dialogs thrown by app features like accessing your contacts. A typical camera app will likely ask you for four different permissions out of the gate: camera, microphone, photo library, and location access. Adding yet more consents and dialog boxes is hardly an effective solution.

Meta is probably one of the more agreeable players in this racket, too. It hoards data; it does not share much of it. And it has a brand to protect. Data brokers are far worse because nobody knows who they are or what they collect, share, and merge. Scale the informed consent model above across all data brokers you interact with, in each app or website you use. As an example, Het Laatste Nieuws, a popular Dutch-language news site in Belgium, shows in its cookie consent dialog it has over one hundred advertising partners, among the lowest numbers I have seen. (For comparison, Le Monde has over five hundred.) True consent requires you to understand those privacy policies, too. What does Nexxen collect? Which other websites, apps, or products do you use which also partner with Nexxen? Can you find Nexxen in HLN’s partner list? (Probably not — the privacy policies for the first three advertisers I was going to use as an example in that sentence returned 404 errors, and I only found Nexxen because I clicked on the policy for Unruly, which rebranded last year.)

This is a mess from the perspective of users and site operators. A core principle of informed consent is an understanding of risk. Are people presented with adequate information about the risks of accepting tracking? No, not really. Meanwhile, website owners do not want to interrupt visitors with cookie consent forms; they want to interrupt them with email newsletter sign-up forms. Nobody wants to manage a vast database of specific consent agreements.

Gruber is reacting to a draft decision (PDF) by the European Data Protection Board — specifically:

It has to be concluded that, in most cases, it will not be possible for large online platforms to comply with the requirements for valid consent if they confront users only with a binary choice between consenting to processing of personal data for behavioural advertising purposes and paying a fee.

The EDPB’s justification for this is based largely on similar arguments to those I have made above, though it limits the scope of this decision to platforms of gatekeeper scale for similar interconnected rationales as it has used to define those platforms’ unique responsibilities. Interestingly, the EDPB says the mere existence of a fee at all is enough to question whether there is a truly free choice when a no-cost option is also available. It seems to want a third way: no behaviourally informed advertising, at no financial cost to users.

I am not sure there is a good reason to limit to gatekeepers restrictions regarding the use of behavioural advertising. There need to be stricter controls around tracking so that users may have informed consent, regardless of whether it is a corporate behemoth, a news publisher, or a weather app. If we want informed consent, we should have it, but the status quo is a poor excuse for truly informed, truly free consent.

A.I., Lost in Translation theverge.com

Victoria Song, the Verge:

I became the family Chewbacca. Family would speak to me in Korean, I’d reply back in English — and vice versa. Later, I started learning Japanese because that’s what public school offered and my grandparents were fluent. Eventually, my family became adept at speaking a pidgin of English, Korean, and Japanese.

This arrangement was less than ideal but workable. That is until both of my parents were diagnosed with incurable, degenerative neurological diseases. My father had Parkinson’s disease and Alzheimer’s disease. My mom had bulbar amyotrophic lateral sclerosis (ALS) and frontotemporal dementia (FTD). Their English, a language they studied for decades, evaporated.

This is one of those heartbreaking essays that will sit with me for a long time. It is nominally about how Humane’s wearable gadget struggled with translation features, but it is so much greater, as you can surmise from the quote.

Mother Earth Mother Board wired.com

After I linked to Josh Dzieza’s long report about subsea cable repair, I got an email from Joshua Ochs who pointed me to Neal Stephenson’s 1996 essay, published in Wired, about the laying of the FLAG cable.

There is some poetry here. The only way I read that original article, published it, and then received that email is because of all of this infrastructure. I may be writing this on a laptop with no wires coming out of it, but that is not really how I am connected to the internet. Instead, one cable after another has carried my bytes.

If you have not read it before, I think you should set aside some time for it. But do note: it is over forty thousand words. You should still read it. Also, there are parts of it which have not aged well — from predictable cultural perspectives, to a comparison made of the demise of the Library of Alexandria which will make you double-take the dateline. And I recommend spending time with the whole thing because it is amazing.

Tim Maly, writing for Nieman fifteen years after its publication:

The dot-com world’s dangerously myopic narcissism was visible to those with the right kind of eyes, and “Mother Earth Mother Board” is 42,535 words of emergency optical surgery. Stephenson wants to show you that everything’s been done before, only crazier.

The essay is apparently a legendary work but, as with so many critically lauded things, it escaped my field of view. If you have time this weekend, do not let it escape yours.

Tim Cook’s Southeast Asia Tour Is Taking Him Through Vietnam, Indonesia, Singapore, and Maybe Malaysia kompas.id

Mediana, Benediktus Krisna Yogatama, Mawar Kusuma Wulan, Kompas (as translated by Safari):

Indonesia is a destination country visited by the boss of the technology giant company Tim Cook, CEO of Apple, and Satya Nadella, CEO of Microsoft. The second visit has been announced by the Minister of Communication and Information Budi Arie Setiadi since mid-March 2024.

[…]

Apple has an obligation to build four [developer] academies, namely in Bali, Batam, Surabaya, and South Tangerang. The total investment value reaches Rp 1.6 trillion.

[…]

Regarding the construction of the factory, Agus said that his party would encourage it because Indonesia already has a factory of cell phone components such as batteries or cables, so that Apple can use domestic products.

I saw a few conspicuous cars waiting at the VIP terminal of Jakarta’s smaller airport yesterday. Turns out the private jet carrying the Apple entourage arrived just a few minutes after my discount flight took off. Practically rubbing shoulders over here.

Anyway, that tipped me off to the plane’s tail number and, based on its path this evening — local time — Cook and company have just landed in Singapore. It seems plausible to me Cook could also visit Malaysia to open the country’s first Apple Store, which looked close to finished last month. Thanks to Just Another Rakyat for that tip.

Meanwhile, Apple and Epic Games are fighting again, this time in a court in Melbourne. Perhaps Cook is also on his way to participate in that. There sure is a lot going on in Southeast Asia and Australia right now.

Update: Well my guesses were completely wrong about Cook’s schedule. After Singapore, he went back to California.

The Humanity Of It

The new A.I. Pin from Humane is, according to those who have used one, bad. Even if you accept the premise of wearing a smart speaker and use it to do a bunch of the stuff for which you used to rely on your phone, it is not good at those things — again, according to those who have used one, and I have not. Why is it apparently controversial to say that with intention?

Cherlynn Low, of Engadget, “cannot recommend anyone spend this much money for the one or two things it does adequately”. David Pierce, of the Verge, says it is “so thoroughly unfinished and so totally broken in so many unacceptable ways”. Arun Maini said the “total amount of effort required to perform any given action is just higher with the Pin”. Raymond Wong, of Inverse, wrote the most optimistic review of all those I saw but, after needing a factory reset of his review unit and then a wind gust blowing it off his shirt, it sounds like he is only convinced by the prospect of future versions, not the “textbook […] first-generation product” he is actually using.

It was Marques Brownlee’s blunt review title — “The Worst Product I’ve Ever Reviewed… For Now” — which caught the attention of a moderately popular Twitter user. The review itself was more like Wong’s, seeing some promise in the concept while dismissing this implementation, but the tweet itself courted controversy. Is the role of a reviewer to be kind to businesses even if their products suck, or is it to be honest?

I do not think it makes sense to dwell on an individual tweet. What is more interesting to me is how generous all of the reviewers have been so far, even while reaching such bleak conclusions. Despite having a list of cons including “unreliable”, and “slow”, and Low saying she burned herself “several times” because it was so hot, Engadget still gave it a score of 50 out of 100. The Verge gave it a 4 out of 10, and compared the product’s reception to that of the “dumpster fire” Nexus Q of 2012, which it gave a score of 5 out of 10.

That last review is a relevant historic artifact. The Nexus Q was a $300 audio and video receiver which users would, in theory, connect to a television or a Hi-Fi speaker system. It was controlled through software on an Android phone, and its standout feature was collaborative playlists. But the Verge found it had “connectivity problems” with different phones and different Nexus Q review units, videos looked “noticeably poor”, it was under-featured, and different friends adding music to the playback queue worked badly. Aside from the pretty hardware, there simply was no there there, and it was canned before a wide release.

But that was from Google, an established global corporation. Humane may have plenty of ex-Apple staff and lots of venture capital money, but it is still a new company. I have no problem grading on a reasonable curve. But how in the world is the Humane getting 40% or 50% of a perfect grade when every reviewer seems to think this product is bad and advises people not to buy one?

Even so, all of them seem compelled to give it the kind of tepid score you would expect for something that is flawed, but not a disaster. Some of the problems do not seem to be a direct fault of Humane; they are a consequence of the technological order. But that does not justify spending $700 plus a $24 per month subscription which you will need to keep paying in perpetuity to prevent your A.I. Pin from becoming a fridge magnet.

Maybe this is just a problem with trying to assign numerical scores. I have repeatedly complained about this because I think it gives mixed messages. What people need to know is whether something is worth buying, which consists of two factors: whether it addresses an actual problem, and whether it is effective at solving that problem. It appears the answer to the first is “maybe”, and the answer to the second is “hell no”. It does not matter how nice the hardware may be, or how interesting the laser projecting screen is. It apparently burns you while you barely use it.

In that light, giving this product an even tepid score is misleading. It is not respectful of potential buyers nor of the team which helped make it. It seems there are many smart people at Humane who thought they had a very good idea, and many people were intrigued. If a reviewer’s experience was poor, it is not cruel for them to be honest and say that it is, in a word, bad.

‘I Love My Phone So Much I Wish I Could Stare at It More’ businessinsider.com

Katie Notopoulos, Business Insider:

But then there’s the other, more existential argument against phones: We are spending all our free moments with a screen shoved in our faces, mindlessly scrolling for dopamine and ignoring the world around us. Time spent on your phone is bad; time spent doing anything else is good.

This argument I just can’t get on board with. I love mindless scrolling; I find it immensely enjoyable. I love flipping through TikTok, browsing tweets, poking around Reddit. I’ll pop into the group chat. Maybe if I have some extra time, I’ll go to my happy place and watch some movie trailers on YouTube.

I thought this was a good rebuttal to the seemingly constant moral panic over how much we use screens. Notopoulos is careful to disclaim she is writing as an adult “with a fully formed frontal lobe” and this advice probably does not apply in the same way to children.

I do not think we should consider this kind of debate settled one way or another. I think it is reasonable to ask whether it is a good idea for everybody to carry everywhere a slot machine for their feelings. Social media platforms are incentivized to increase time spent and user retention, which they can juice by making nicer products and through sneaky design patterns. It seems like grounds to worry about phone use if it is impacting other aspects of one’s life, like if they are forgetting to take care of themselves or do household tasks because they spend so much time on their phone.

But if you reading on your phone instead of reading a newspaper, or watching a YouTube video instead of watching a show on TV, what are you actually doing differently? Those seem like interchangeable activities.

Government Spyware Is Another Reason to Use an Ad Blocker techcrunch.com

Omer Benjakob and Eliza Triantafillou, Haaretz:

According to the documents, in 2022 Intellexa presented a proof of concept for a system called Aladdin that enables the remote infection of a specific mobile telephone device through online advertisements. This is the first time it has been revealed that a company outside of Israel has developed such a spyware tool – which was considered the cutting edge of Israel’s offensive cyber. At that time, in Israel, the Defense Ministry was actively working to prevent Israeli companies from marketing identical spyware tools abroad.

[…]

It is not known what happened to Aladdin. It is possible it was never developed or if it was, if it was ever actually sold. Adint systems are considered extremely complicated to develop and maintain over time, and it is not clear if Intellexa moved ahead with trying to develop it into a working product and if they ever pitched it or sold it.

This was described by Intellexa as a near zero-click solution, in that it only requires someone to be using a web browser for their device to be affected; it does not require someone to tap on an ad. iPhones were apparently not affected by this zero-click ad infection capability, and required at least one tap, but that is barely comforting considering how frequently I accidentally tap on ads in third-party apps on my iPhone.1

Via Zack Whittaker, TechCrunch:

Online ads help website owners, including this one, generate revenue. But online ad exchanges can be abused to push malicious code to a target’s device.

[…]

While no phone or computer can ever be completely unhackable, ad blockers can be effective in stopping malvertising and ad-based malware before it ever hits the browser.

The technology described by Haaretz is clearly among the most cutting edge and it seems unlikely any random person would be caught in its net. The whole point, after all, is specific and targeted malware delivery — something which, as with surveillance, is possible thanks to the way online advertising works. While there are many ad blockers available for browsers, including site sponsor Magic Lasso, there are no user-friendly answers for in-app ads on iOS, many of which use the same networks and technologies as those in browsers. This is an unfortunate limitation of the way iOS works.

  1. This is not really the point of this post, but it seems like something changed a few major iOS versions ago and I now find myself accidentally tapping way more often. This is especially noticeable when I am just trying to stop an in-progress scroll. ↥︎

Deep Sea Cable Repair Technicians Keep the World’s Communications Afloat theverge.com

Josh Dzieza, the Verge:

[…] It’s a truism that people don’t think about infrastructure until it breaks, but they tend not to think about the fixing of it, either. In his 2014 essay, “Rethinking Repair,” professor of information science Steven Jackson argued that contemporary thinking about technology romanticizes moments of invention over the ongoing work of maintenance, though it is equally important to the deployment of functional technology in the world. There are few better examples than the subsea cable industry, which, for over a century, has been so effective at quickly fixing faults that the public has rarely had a chance to notice. Or as one industry veteran put it, “We are one of the best-kept secrets in the world, because things just work.”

I bet this essay appears on a good many best of lists at the end of the year. It is tremendous. Necessary reporting well-told and richly illustrated. Normally, I find these kinds of high production value presentations more distracting than they are helpful, but this is exactly the opposite. A wonderful exploration of the kind of quiet profession that makes core parts of life possible for everybody else.

Microsoft’s ‘Enviable Advantages’ Cover Up Its Security Failures wired.com

Eric Geller, Wired:

Microsoft’s almost untouchable position is the result of several intermingling factors. It is by far the US government’s most important technology supplier, powering computers, document drafting, and email conversations everywhere from the Pentagon to the State Department to the FBI. It is a critical partner in the government’s cyberdefense initiatives, with almost unparalleled insights about hackers’ activities and sweeping capabilities to disrupt their operations. And its executives and lobbyists have relentlessly marketed the company as a leading force for a digitally safer world.

While one part of Microsoft is busy creating headlines for imminent A.I.-powered election propaganda on behalf of the Chinese government, another is failing to protect its own systems from breaches allegedly by Chinese state groups. This is not solely a U.S. problem, either; lots of governments worldwide rely on Microsoft’s products and services.