Well, here we are again: I’m writing an article to tell you that you should really update your iPhone, iPad, or Mac as soon as possible, because the latest software for them fixes some pretty nasty bugs. The security notes for iOS / iPadOS 15.6.1 and macOS 12.5.1 describe fixes for bugs in the OS’ kernel (basically the core that controls everything) and WebKit that could allow attackers to run malicious code on your device. The notes also warn that the bugs may have actively been exploited.
This is, unfortunately, something like the third or fourth time I’m writing a post explicitly asking people to update their iPhones or Macs to patch some pretty serious security flaws. And the truth is, I could’ve written this exact post even more times than that — there have been 13 updates to iOS 15 since its initial release, and nine of them have fixed some sort of arbitrary code execution bug. Oftentimes some of those bugs would allow attackers to obtain kernel privileges.
What’s more, five of those security updates included the “Apple is aware of a report that this issue may have been actively exploited” warning.
So while you’ve probably done this plenty of times this year (and, honestly, the years before that), I’m going to repeat the steps to update your phone: go to Settings > General > Software Update. On the Mac, go to System Preferences > Software Update.
Constant security updates aren’t necessarily a bad thing. Sure, they could be an indication that a lot of bugs are slipping into software, but they could just as easily mean that a company has gotten really good at finding existing issues and stamping them out. The reason I’m pointing out Apple’s recent track record isn’t to shame it, but to remind everyone that updates these days are pretty important, and that they should be installed ASAP.
Yes, it’s actually really annoying to constantly update your computer or phone. No one wants their devices knocked out of commission for the few minutes it takes to install an update. But Apple is working on a way to make important security updates easier and more automatic.
iOS and iPadOS 16, along with macOS Ventura, will include something called “Rapid Security Response,” which seems like it’ll let Apple push security updates to your device that don’t require a restart. While some updates will probably still require a reboot (it’s hard to patch an issue with a kernel while the OS is running), the feature could take away at least some of the burden of keeping your device secure.
The company’s also introducing an “extreme” security setting called Lockdown Mode, though most people won’t want to turn it on. Apple says Lockdown Mode will turn off several features that are especially vulnerable to security flaws, and that it’s mostly meant for people who think they may be targeted by expert hackers, such as the ones hired by governments. If that’s you, the feature should be available when iOS 16 and macOS Ventura release. (Plus, wow, you sound very cool. Or very scary.)
The rest of us, though, can just make sure to keep updating our devices whenever new security patches come out — no matter how annoying that is or how frequently it happens.
The college student who ran the now-banned @ElonJet Twitter account that used public information to track Elon Musk’s private jet has resumed his activities on Twitter under a new username. As noted by Insider, Jack Sweeney, 20, has created a new account called @ElonJetNextDay — which now tracks Musk’s private jet with a 24-hour delay to circumvent Twitter policy restrictions.
Sweeney’s original ElonJet account was suspended from the platform last week following accusations from Musk that it violated Twitter rules by revealing his live location. Twitter updated its policy to forbid publishing a person’s real-time location on the same day it suspended ElonJet. Sweeney said in an interview with Insider that he will be “posting manually” for now while he works on the framework to fully automate the account.
Musk tweeted on December 15th that “Posting locations someone traveled to on a slightly delayed basis isn’t a safety problem, so is ok.” Twitter also explicitly states that “sharing publicly available location information after a reasonable time has elapsed, so that the individual is no longer at risk for physical harm” is not a violation of platform rules. Elsewhere in the policy, it notes that its definition of “live” location data means someone’s real-time or same-day whereabouts.
Most commercial and private aircraft are equipped with Automatic Dependent Surveillance-Broadcast technology (ADS-B) that transmits a unique code (tied to the airplane’s tail number) containing information such as altitude and GPS location. This information is publicly available and aircraft flying in the USA and Europe are required to broadcast it in order to prevent midair collisions.
In a statement back in November, Musk said he would not ban the original ElonJet account as part of his “commitment to free speech” despite claiming it was a “direct personal safety risk.” The automated ElonJet account posted publicly available information regarding the location of Musk’s 2015 Gulfstream G650ER, and had amassed over 540,000 followers before it was permanently banned on December 14th. Musk previously offered Sweeney $5,000 to have the account taken down.
Early in November, Twitter’s roughly 7,500 employees received a terse email from a generic address: “In an effort to place Twitter on a healthy path, we will go through the difficult process of reducing our global work force.” The note was signed “Twitter.” On Nov. 3, some people at the company received emails indicating they would be laid off the next day.
That night, Ms. Solomon, her husband and a few colleagues headed to Dots Cafe Portland, a lounge on Clinton Street. Phones were on the table, face up, she said. As the work friends talked, they tapped away at their phones, taking part in chats on the Signal app with colleagues in London, Seattle and San Francisco. Messages like “I got hit” were flying across screens, Ms. Solomon recalled. “You were seeing your co-workers drop like flies,” she said.
By the next afternoon her team of about 10 engineers was reduced to four. Ms. Solomon and her husband had survived the round of layoffs. The next week, she recalled, she awaited further direction from Mr. Musk or the new executive team. Nothing came, she said, except for an email alerting employees that remote work would no longer be permitted, with few exceptions.
Many employees learned of Mr. Musk’s priorities by watching his Twitter feed, where he posted frequently about company business to his more than 100 million followers. On Nov. 5, he complained about the platform’s search function: “Search within Twitter reminds me of Infoseek in ’98! That will also get a lot better pronto,” he wrote. That same day, he tweeted: “Twitter will soon add ability to attach long-form text to tweets, ending absurdity of notepad screenshots.”
That was more than Ms. Solomon and many of her colleagues had heard internally. “Radio silence,” she said. She began to vent her frustration on Twitter.
One of her first tweets in this vein came on Nov. 6, shortly after Mr. Musk announced a new rule for Twitter users in a tweet: “Any name change at all will cause temporary loss of verified checkmark,” he wrote. He had posted that message after many people on Twitter had changed their names to variations on Mr. Musk’s name, most of them mocking.
Apple has removed the option to upgrade to the new HomeKit architecture on devices running iOS 16.2. The change follows multiple reports of issues and problems with the Home app after the upgrade was installed.
Apple spokesperson Emily Ewing confirmed the change in a statement provided to The Verge:
“We are aware of an issue that may impact the ability for users to share the Home within the Home app. A fix will be available soon. In the meantime, we’ve temporarily removed the option to upgrade to the new Home architecture. Users who have already upgraded will not be impacted.“
The new Home app architecture was one of the key features of iOS 16.2, with Apple claiming that the upgrade would be “more reliable and efficient.” MacRumors first discovered this week that the Home app in iOS 16.2 no longer offers the option to upgrade to the new architecture within the Home app settings. Several reporters at The Verge have also confirmed that the upgrade option is unavailable on their devices.
The new architecture was first introduced in the iOS 16.2 beta back in October as an optional upgrade before the iOS 16.2 public release on December 13th. Both the beta and public release required Apple devices logged into iCloud to be running the latest versions of iOS, macOS, and tvOS. The upgrade does not happen automatically when iOS 16.2 is installed on a phone, instead requiring a manual process through the Home app.
The update has caused issues with missing devices and adding multiple users for some
Reddit users who downloaded the optional upgrade prior to its removal have reported issues such as the app booting other members from a Home account and being unable to re-add them. Users on the MacRumors forum have reported being unable to invite users to share the Home, HomeKit devices being stuck displaying an “updating” status, and some accessories vanishing from the Home app entirely. Users who have already upgraded are unable to revert to the previous version of the app.
Update, December 23rd, 2022, 2:15PM ET: Added confirmation and statement from Apple spokesperson. Added links to Apple’s updated support pages.