Month: April 2024

Claims Form Open for Canadian iPhone Battery Class Action Settlement cbc.ca

Over the past several years, consequences have been slowly dripping out regarding Apple’s decision to silently curb iPhone performance in cases of poor battery capacity. First, the French competition authorities fined the company, then Apple settled a U.S. class action. In March, the Canadian equivalent class action suit was settled.

Alisha Parchment, CBC News:

Current or former iPhone 6 and 7 users in Canada can now submit a settlement claim for a class-action lawsuit that could pay up to $150 to eligible users of the affected devices.

For clarity, it also covers current and former iPhone 6S and iPhone SE (first generation) owners. If you have owned one of those devices and can find the serial number, you can process a claim, or opt out, until September 3. Quebec residents are ineligible.

Automattic Adds Beeper to Its Portfolio of Cross-Platform Messaging Acquisitions techcrunch.com

Sarah Perez, TechCrunch:

WordPress.com owner Automattic is acquiring Beeper, the company behind the iMessage-on-Android solution that was referenced by the Department of Justice in its antitrust lawsuit against Apple. The deal, which was for $125 million according to sources close to the matter, is Automattic’s second acquisition of a cross-platform messaging solution after [buying Texts.com][bt] last October.

Matt Mullenweg:

A lot of people are asking about iMessage on Android… I have zero interest in fighting with Apple, I think instead it’s best to focus on messaging networks that want more engagement from power-user clients. This is an area I’m excited to work on when I return from my sabbatical next month.

Seems like a smart way for Beeper to become better resourced, and a bet by Automattic on more legislation like the Digital Markets Act enabling further interoperable messaging.

In a Lawsuit, a Former TikTok Employee Claims to Be a Source for Various High-Profile News Stories, and Makes Some Truly Bananas Claims wired.com

Louise Matsakis, Wired:

[Zen] Goziker worked at TikTok for only six months. He didn’t hold a senior position inside the company. His lawsuit, and a second one he filed in March against several US government agencies, makes a number of improbable claims. He asserts that he was put under 24-hour surveillance by TikTok and the FBI while working remotely in Mexico. He claims that US attorney general Merrick Garland, director of national intelligence Avril Haines, and other top officials “wickedly instigated” his firing. And he states that the FBI helped the CIA share his private information with foreign governments. The suits do not appear to include evidence for any of these claims.

Here is a copy of Goziker’s complaint and it is quite the read, as you can probably imagine. He alleges, without evidence, corruption between members of the Biden administration trying to gain political favours from TikTok executives, effectively placing himself as the central character in a complex geopolitical plot.

Perhaps more believable is Goziker’s claim that he was the source for the recordings reported on in June 2022 by Emily Baker-White, then at Buzzfeed News, in an article pretentiously framed as the “TikTok Tapes”. While the story’s accuracy is not affected by a bloviating source, it sure makes me more concerned the clips were taken out of context. To be clear, I have no evidence of that and I am sure Baker-White was diligent in reporting out the story.

Delivery Workers’ Hazards restofworld.org

Zuha Siddiqui, Samriddhi Sakunia, and Faisal Mahmud, Rest of World:

To better understand air quality exposure among gig workers in South Asia, Rest of World gave three gig workers — one each in Lahore, New Delhi, and Dhaka — air quality monitors to wear throughout a regular shift in January. The Atmotube Pro monitors continually tracked their exposure to carcinogenic pollutants — specifically PM1, PM2.5, and PM10 (different sizes of particulate matter), and volatile organic compounds such as benzene and formaldehyde.

[…]

Although pollution can affect anyone exposed to it, delivery riders are particularly vulnerable owing to the nature of their work: They are outside for extended periods of time, often on congested streets, with little shelter from the smog.

These are obviously among the most extreme examples of what delivery workers’ lungs endure. Conditions similar to these are common across Southeast Asia and South Asia, but are not limited to those regions. According to IQAir, many cities in South Africa are dealing with dangerous levels of pollution, and winter months are particularly hazardous in Chile.

Back in the United States, John Oliver spent the main portion of the March 31 edition of “Last Week Tonight” talking about delivery workers. I have to wonder how any of these supposedly revolutionary “gig” jobs will last in their current form.

Update: Corrected to reflect that July is, in fact, winter in Chile. What a silly mistake.

What We Give Up lmnt.me

Louie Mantia:

I used to instantly delete emails about a company’s policy changes, but now I’m taking a different approach. Before I delete the email, I delete the account.

[…]

But why am I the one who has to delete the account?

Companies are too comfortable modifying their policies passively over years, because they get to retain user data even if users don’t explicitly consent to a policy change.

Via Eric Schwarz:

I couldn’t agree more with the sentiment of this entire post. A few months ago, I decided to clean up old and unnecessary accounts and the amount of companies that either fought me on the request or hid behind the “you don’t live in California” excuse was frustrating. […]

Rodrigo Ghedin:

My face is in several places. Back there, before the facial recognition algorithms and the generative AIs, I thought it would be good to show the face to pass… credibility? Confidence? I don’t know. Maybe it wasn’t even a necessity as it’s today, because we didn’t have AIs that wrote convincing gibberish. Simpler times.

Three posts on a theme: our inability to forecast technological development or changing incentives. It once used to be prohibitive to retain data collections. When it was physical, it was the kind of thing only librarians and archivists could do, in buildings designed specifically for that purpose. There was built-in encouragement to purge old and irrelevant things. For a few decades now, it has become more costly to delete things — who knows what value some column in a database or a formerly active user’s account could generate? Better hold onto it.

The Calgary Cassette Preservation Society calgarycassettes.org

The Calgary Cassette Preservation Society:

Documenting Calgary’s music scene since 2007, this is the new home of the CCPS. We’re bringing over content from our old site and will be adding more stuff (including a long-dreamed of gig poster archive) in the coming months.

Via Boshika Gupta, CBC News:

The website is a work in progress as the team finishes migrating content to the site with the hope that the updated resource will make it super easy for music lovers to look up bands and listen to their recordings.

[Arif] Ansari is also aiming to include other ephemera from Calgary’s music scene, such as historic gig posters.

I am sad to say I had not heard of the original site until I read this CBC article. 2007 was a few years after I began going to gigs by many of the local artists documented on Ansari’s site, and I am hoping to see more recordings as people rummage around bins of old tapes.

Hanlon’s Razor, Kansas Edition

Earlier this week, Dave Kendall of documentary production company Prairie Hollow and formerly of a Topeka, Kansas PBS station, wrote in the Kansas Reflector an article criticizing Meta. Kendall says he tried to promote posts on Facebook for a screening of “Hot Times in the Heartland” but was prevented from doing so. A presumably automated message said it was not compliant with its political ads policy.

I will note Meta’s ambiguous and apparently fluid definition of which posts count as political. But Kendall comes to the ridiculous conclusion that “Meta deems climate change too controversial for discussion” based solely on his inability to “boost” an existing post. Being pedantic but correct, that means that Meta did not prohibit discussion generally, just the ad.

I cannot fault Kendall’s frustration, however, as he correctly describes the non-specific support page and nonexistent support:

But in the Meta-verse, where it seems virtually impossible to connect with a human being associated with the administration of the platform, rules are rules, and it appears they would prefer to suppress anything that might prove problematic for them.

Exactly. This accurately describes the imbalanced power of even buying ads on Meta’s platforms. Advertisers are Meta’s customers and, unless one is a big spender, they receive little to no guidance. There are only automated checks and catch-all support contacts, neither of which are particularly helpful for anything other than obvious issues.

A short while later in the editorial, however, things take a turn for the wrong again:

The implications of such policies for our democracy are alarming. Why should corporate entities be able to dictate what type of speech or content is acceptable?

In a centralized social network like Facebook, the same automated technologies which flagged this post also flag and remove posts which contribute to a poor community. We already know how lax policies turn out and why those theories do not last in the real world.

Of course, in a decentralized social network, it is possible to create communities with different policies. The same spec that underpins Mastodon, for example, also powers Gab and Truth Social. Perhaps that is more similar to the system which Kendall would prefer — but that is not how Facebook is built.

Whatever issue Facebook flagged regarding those ads — Kendall is not clear, and I suspect that is because Facebook is not clear either — the problems of its poor response intensified later that day.

Clay Wirestone and Sherman Smith, opinion editor and editor-in-chief, respectively, of the Kansas Reflector:

This morning, sometime between 8:20 and 8:50 a.m. Thursday, Facebook removed all posts linking to Kansas Reflector’s website.

This move not only affected Kansas Reflector’s Facebook page, where we link to nearly every story we publish, but the pages of everyone who has ever shared a story from us.

[…]

Coincidentally, the removals happened the same day we published a column from Dave Kendall that is critical of Facebook’s decision to reject certain types of advertising: “When Facebook fails, local media matters even more for our planet’s future.”

Marisa Kabas, writing in the Handbasket:

Something strange started happening Thursday morning: Facebook users who’d at some point in the past posted a link to a story from the Kansas Reflector received notifications that their posts had violated community standards on cybersecurity. “It looks like you tried to gather sensitive information, or shared malicious software,” the alert said.

[…]

Shortly after 4, it appeared most links to the site were posting properly on Meta properties—Facebook, Instagram Threads — except for one: [Thursday’s column][ed] critical of Facebook.

If you wanted to make a kind-of-lame modern conspiracy movie, this is where the music swells and it becomes a fast-paced techno-thriller. Kabas followed this article with one titled “Here’s the Column Meta Doesn’t Want You to See”, republishing Kendall’s full article “in an attempt to sidestep Meta’s censorship”.

While this interpretation of a deliberate effort by Facebook to silence critical reporting is kind of understandable, given its poor communication and the lack of adequate followup, it hardly strikes me as realistic. In what world would Meta care so much about tepid criticism published by a small news operation that it would take deliberate manual actions to censor it? Even if you believe Meta would be more likely to kneecap a less visible target than, say, a national news outlet, it does not make sense for Facebook to be this actively involved in hiding any of the commentary I have linked to so far.

Facebook’s explanation sounds more plausible to me. Sherman Smith, Kansas Reflector:

Facebook spokesman Andy Stone in a phone call Friday attributed the removal of those posts, along with all Kansas Reflector posts the day before, to “a mistaken security issue that popped up.” He wouldn’t elaborate on how the mistake happened and said there would be no further explanation.

[…]

“It was a security issue related to the Kansas Reflector domain, along with the News From The States domain and The Handbasket domain,” Stone added. “It was not this particular story. It was at the domain level.”

If some system at Meta erroneously flagged as a threat Kendall’s original attempt to boost a post, it makes sense that related stories and domains would also be flagged. Consider how beneficial this same chain of effects could be if there were actually a malicious link: not only does it block the main offending link, but also any adjacent links that look similar, and any copycats or references. That is an entirely fair way to prevent extreme platform abuse. In this case, with large numbers of people trying to post one link that had already been flagged, alongside other similar links, it is easy to see how Meta’s systems might see suspicious behaviour.

For an even simpler example, consider how someone forgetting a password for their account looks exactly the same as someone trying to break into it. On any website worth its salt, you will be slowed down or prevented from trying more than some small number of password attempts, even if you are the actual account owner. This is common security behaviour; Meta’s is merely more advanced.

This is not to say Meta got this right — not even a little bit. I have no reason to carry water for Meta and I have plenty to criticize; more on that later. Unfortunately, the coverage of this non-story has been wildly disproportionate and misses the actual problems. CNN reported that Meta was “accused of censoring” the post. The Wrap said definitively that it “block[ed] Kansas Reflector and MSNBC columnist over op-ed criticizing Facebook”. An article in PC Magazine claimed “Facebook really, really doesn’t want you to read” Kendall’s story.

This is all nonsense.

What is true and deeply frustrating is the weak approach of companies like Meta and Google toward customer service. Both have offloaded the administrative work of approving or rejecting ads to largely automated systems, with often vague and unhelpful responses, because they have prioritized scale above quality from their earliest days.

For contrast, consider how apps made available in Apple’s App Store have always received human review. There are plenty of automated processes, too, which can detect obvious problems like the presence of known malware — but if an app passes those tests, a person sees it before approving or rejecting it. Of course, this system is also deeply flawed; see the vast number of articles and links I have posted over the years about the topic. Any developer can tell you that Apple’s support has problems, too. But you can see a difference in approaches between companies which have scaled with human intervention, and those which have avoided it.

Criticism of Meta in this case is absolutely warranted. It should be held to a higher standard, with more options available for disputing its moderation judgements, and its pathetic response in this case deserves the scrutiny and scorn it is receiving. This is particularly true as it rolls out its de-prioritization of “political” posts in users’ feeds, while continuing to dodge meaningful explanations of what will be affected.

Dion Lefler, the Wichita Eagle:

Both myself and Eagle investigative reporter Chance Swaim have tried to contact Facebook/Meta — although we knew before we started that it’s a waste of time and typing.

Their corporate phone number is a we-don’t-give-a-bleep recording that hangs up on you after two repeats. And their so-called media relations department is where press emails go to die.

Trying to understand how these megalithic corporations make decisions is painful enough, and their ability to dodge the press gives the impression they are not accountable to anybody. They may operate our social spaces and digital marketplaces, but they are oftentimes poor stewards. There will always be problems at this scale. Yet, it often seems as though public-facing tech businesses, in particular, behave as though they are still scrappy upstarts with little responsibility to a larger public. Meta is proud to say its products “empower more than 3 billion people around the world”. I cannot imagine what it is like to design systems which affect that many people. But it is important to criticize the company when it messes up this badly without resorting to conspiracy theories or misleading narratives. The press can do better. But Meta also needs to be more responsive, less hostile, and offer better explanations of how these systems work because, like just about any massive entity, nobody should be trusting it at its word.

Sponsor: Magic Lasso Adblock — YouTube Ad Blocker for Safari magiclasso.co

Do you want to block all YouTube ads in Safari on your iPhone, iPad, and Mac?

Then download Magic Lasso Adblock — the ad blocker designed for you.

It’s easy to setup, doubles the speed at which Safari loads and blocks all YouTube ads.

Magic Lasso YouTube adblock

Magic Lasso is an efficient, high performance and native Safari ad blocker. With over 4,000 five star reviews, it’s simply the best ad blocker for your iPhone, iPad and Mac.

It blocks all intrusive ads, trackers, and annoyances — letting you experience a faster, cleaner and more secure web browsing experience.

The app also blocks over 10 types of YouTube ads; including all:

  • video ads

  • pop up banner ads.

  • search ads

  • plus many more

And unlike some other ad blockers, Magic Lasso Adblock respects your privacy, doesn’t accept payment from advertisers and is 100% supported by its community of users.

So, join over 300,000 users and download Magic Lasso Adblock today.

My thanks to Magic Lasso Adblock for sponsoring Pixel Envy this week.

The U.S. Antitrust Case Against Apple, and iPhone Privacy and Security theverge.com

Gaby Del Valle, the Verge:

The complaint emphasizes that, unlike iMessages, iPhone users’ SMS communications with Android users — i.e., green bubble texts — lack encryption. 

“Apple forces other platforms to use SMS messaging. It doesn’t allow them to integrate with iMessage or another encrypted message platform built-in,” Cliff Steinhauer, director of information security and engagement at the National Cybersecurity Alliance, told The Verge in a phone interview. Since SMS messages aren’t encrypted, they’re less secure by default.

Apple has previously said its devices would begin supporting RCS, a more secure messaging protocol that will make communications with Android devices encrypted, later this year.

There is a theoretically good discussion in this story about the compromises of the iPhone’s privacy and security model, and its dependence on a benevolent dictator. But these three paragraphs are silly.

It is obviously true that the SMS standard does not have any support for encrypted messages, but that is also true of RCS. Del Valle links to the Verge’s own reporting of Apple’s RCS support in which it says it “could enable support for encryption”, but any end-to-end encryption of RCS messages is currently thanks to implementation decisions made by Google — and Apple will not match that support. Instead, it says it will advocate for end-to-end encryption standards in the RCS spec. The claim that it will “will make communications with Android devices encrypted” is simply untrue.

The key phrase in what Steinhauer said is “built-in” and that will not change when RCS support is added. In fact, it is not even clear to me that most conversation between iOS and Android users happens over SMS. I would not be surprised if that were true, given that it is a universal standard, but most popular third-party messaging applications are now or are in the process of becoming end-to-end encrypted.

It seems to me like the rest of this article raises good arguments about how Apple runs the iPhone and the App Store, from a range of perspectives. One person says commercial spyware impacts Android phones more often, another says a moderate increase in risk is worth it for loosening Apple’s control, and so on. But it feels like a moot discussion because this article is nominally about the U.S. Department of Justice’s case against Apple — and its primary complaints are barely related to App Store policy. The closest the DoJ gets is with questions about super apps, cloud streaming gaming apps, and digital wallets, but most of its issues are with Apple’s restrictions around private APIs. The region with a big opening-up of app distribution on iOS is the E.U., and it will be a good experiment in which concerns shake out as true and which are mongering.

Security is one thing to watch out for but, if there are privacy concerns, the U.S. should pass a sweeping nationwide legal framework for privacy. If individual privacy ought to be a right, then it should be spelled out in law, and no company should be able to use it as paper-thin justification for its platform choices. There are times when Apple’s policing decisions seem entirely legitimate, and there are times when it seems — as the DoJ memorably put it — like an “elastic shield”. It would be better for everyone, I think, if there were universal privacy standards that did not depend on the user’s hardware and software choices. Any company could be restrictive if they would like, but there should be a baseline substantially higher than the one that exists today.

Amazon’s ‘Just Walk Out’ Technology Is an Illusion gizmodo.com

Maxwell Zeff, Gizmodo:

Just over half of Amazon Fresh stores are equipped with Just Walk Out. The technology allows customers to skip checkout altogether by scanning a QR code when they enter the store. Though it seemed completely automated, Just Walk Out relied on more than 1,000 people in India watching and labeling videos to ensure accurate checkouts. The cashiers were simply moved off-site, and they watched you as you shopped.

Zeff says, paraphrasing the Information’s reporting, that 70% of sales needed human review as of 2022, though Amazon says that is inaccurate.

Based on this story and reporting from the Associated Press, it sounds like Amazon is only ending Just Walk Out support in its own stores. According to the AP and Amazon’s customer website and retailer marketing page, several other stores will still use a technology it continues to say works by using “computer vision, sensor fusion, and deep learning”.

How is this not basically a scam? It certainly feels that way: if I was sold this ostensibly automated feat of technology, I would feel cheated by Amazon if it was mostly possible because someone was watching a live camera feed and making manual corrections. If the Information’s reporting is correct, only 30% of transactions are as magically automated as Amazon claims. However, Amazon told Gizmodo that only a “small minority” of transactions need human review today — but, then again, Amazon has marketed this whole thing from jump as though it is just computers figuring it all out.

Amazon says it will be replacing Just Walk Out with its smart shopping cart. Just like those from Instacart, it will show personalized ads on a cart’s screen.

Why Corporations Fail to Protect Our Data om.co

In March, a massive amount of AT&T customer data was leaked on a well-known marketplace. The data included extremely sensitive subscriber information, including Social Security Numbers that were apparently decrypted from how they were stored. AT&T initially denied its own systems were breached but, in a statement a couple of weeks later — apparently prompted by Zack Whittaker of TechCrunch — it acknowledged it or “one of its vendors” could be the source.

AT&T also said it was released on the “dark web” but, like, you can just Google the forum where they are available. It is a normal non-Tor website.

Anyway, Om Malik was a customer and expects some of his information is in this leak, and is not impressed with AT&T’s response:

These guys get in touch when you are late with your payment — but not when they can’t do their job. My initial reaction to the news was the all-too-familiar rage, and the all-too-often repeated four-letter words. AT&T wants you to sign up and get free monitoring from one of the three credit bureaus — which have been hacked at some point.

This is no different from what T-Mobile did when it was hacked. The problem with such actions is that it leads to nowhere — placing the entire responsibility on the citizen, who is left dealing with the mess created by large corporations through no fault of their own. […]

I think Malik is right. There is a sort of creeping pessimism that comes with a now-steady gush of data breaches because, it seems, so much has already been disclosed that the leak of another copy of your personal information only makes an already large pile a little bit bigger. But even though bad security practices should not go unpunished, a debilitating penalty for any corporation which fails to protect its records has little effect compared to the misery of each affected person for years.

Threads and Taiwan’s Presidential Election technologyreview.com

While Threads in North America feels like everyone is experiencing a gas leak, that is apparently not the case elsewhere — especially Taiwan.

Zeyi Yang wrote, for MIT Technology Review, an excellent explanation of Threads’ popularity, and I think the bloggier summary is a particularly good read:

But more important, Taiwan’s presidential election earlier this year means there was a lot to talk, debate, and commiserate about. Starting in November, many supporters of Taiwan’s Democratic Progressive Party (DPP) “gathered to Threads and used it as a mobilization tool,” Wang says. “Even DPP presidential candidate Lai received more interaction on Threads than Instagram and Facebook.”

It turns out that even though Meta has tried to position Threads as a less political version of X, what actually underpinned its success in Taiwan was still the universal desire to talk about politics.

Call this a robust counterargument to the way Threads has felt to me for most of the time I have used it. There is, it would seem, a big audience in Taiwan that has found it valuable — so long as Meta does not muck it up.

‘The Wi-Fi Only Works When It Is Raining’ predr.ag

Predrag Gruevski:

My dad is an engineer who had already been tinkering with networking gear longer than I’d been alive. Through the company he started, he had designed and deployed all sorts of complex network systems at institutions across the country — everything from gigabit Ethernet for an office building, to inter-city connections over line-of-sight microwave links.

He is the last person on Earth who would say a “magical thinking” phrase like that.

“What?” I uttered, stunned. “The Wi-Fi only works while it’s raining,” he repeated patiently. “It started a couple of weeks ago, and I haven’t had a chance to look into it yet.”

Via 500 Mile Email, a blog and newsletter of absurd bug stories, which I found via Andy Baio. Excellent classic stories, and some new ones I had not seen before.

Threads Is the Gas-Leak Social Network maxread.substack.com

Max Read:

Some friends and I have taken to calling Threads “the gas-leak social network” because that is the basic experience of using it: Everyone on the platform, including you, seems to be suffering some kind of minor brain damage. […]

I hate to keep slagging off Threads on my own or linking to the same, but this piece was too funny not to share. These days, the default feed of suggested posts is full of quote-posts that add nothing to the original. I do not understand what I am doing wrong to train it in this way. Looks like I picked the wrong week to stop sniffing glue.

Sponsor: Magic Lasso Adblock — the Safari Ad Blocker Built for You magiclasso.co

Do you want an to try an ad blocker that’s easy to setup, easy to keep up to date and with pro features available when you need them?

Then download Magic Lasso Adblock — the ad blocker designed for you.

Magic Lasso performance insights example

Magic Lasso Adblock is an efficient and high performance ad blocker for your iPhone, iPad, and Mac. It simply and easily blocks all intrusive ads, trackers, and annoyances in Safari. Just enable to browse in bliss.

With Magic Lasso’s pro features, you can:

  • Block over 10 types of YouTube ads, including pre-roll video ads

  • Craft your own Custom Rules to block media, cookies, and JavaScript

  • Use Tap to Block to effortlessly block any element on a page with a simple tap

  • See the difference ad blocking makes by visualising ad blocking speed, energy efficiency, and data savings for any site

  • And unlike some other ad blockers, Magic Lasso Adblock respects your privacy, doesn’t accept payment from advertisers and is 100% supported by its community of users.

So, join over 300,000 users and download Magic Lasso Adblock via the Magic Lasso website today.

My thanks to Magic Lasso Adblock for sponsoring Pixel Envy this week.