Apple has urged Australia not to follow the European Union in mandating iPhone app sideloading, warning that such policies pose serious privacy and security risks. "This communication comes as the Australian federal government considers new rules that could force Apple to open up its iOS ecosystem, much like what happened in Europe with recent legislation," notes Neowin. Apple claims that allowing alternative app stores has led to increased exposure to malware, scams, and harmful content. From the report: Apple, in its response to this Australian paper (PDF), stated that Australia should not use the EU's Digital Markets Act "as a blueprint". The company's core argument is that the changes mandated by the EU's DMA, which came into full effect in March 2024, introduce serious security and privacy risks for users. Apple claims that allowing sideloading and alternative app stores effectively opens the door for malware, fraud, scams, and other harmful content. The tech company also highlighted specific concerns from its European experience, alleging that its compliance there has led to users being able to install pornography apps and apps that facilitate copyright infringement, things its curated App Store aims to prevent. Apple maintains that its current review process is vital for user protection, and that its often criticized 30% commission applies mainly to the highest earning apps, with most developers paying a lower 15% rate or nothing.

An anonymous reader quotes a report from SC Media: Thousands of ASUS routers have been compromised with malware-free backdoors in an ongoing campaign to potentially build a future botnet, GreyNoise reported Wednesday. The threat actors abuse security vulnerabilities and legitimate router features to establish persistent access without the use of malware, and these backdoors survive both reboots and firmware updates, making them difficult to remove.

The attacks, which researchers suspect are conducted by highly sophisticated threat actors, were first detected by GreyNoise's AI-powered Sift tool in mid-March and disclosed Thursday after coordination with government officials and industry partners. Sekoia.io also reported the compromise of thousands of ASUS routers in their investigation of a broader campaign, dubbed ViciousTrap, in which edge devices from other brands were also compromised to create a honeypot network. Sekoia.io found that the ASUS routers were not used to create honeypots, and that the threat actors gained SSH access using the same port, TCP/53282, identified by GreyNoise in their report. The backdoor campaign affects multiple ASUS router models, including the RT-AC3200, RT-AC3100, GT-AC2900, and Lyra Mini.

GreyNoise advises users to perform a full factory reset and manually reconfigure any potentially compromised device. To identify a breach, users should check for SSH access on TCP port 53282 and inspect the authorized_keys file for unauthorized entries.

In an interview with Wired (paywalled), OnePlus co-founder and Nothing CEO, Carl Pei, said the future of smartphones will center around the OS and AI to get things done -- rendering traditional apps a thing of the past. 9to5Google reports: Pei says that Nothing's strength is in "creativity," adding that "the creative companies of the past" such as Apple "have become very big and very corporate, and they're no longer very creative." He then dives into what else but AI, explaining that Nothing wants to create the "iPod" of AI, saying that Apple built a product that simply built a better user experience: "If you look back, the iPod was not launched as 'an MP3 player with a hard disk drive.' The hard disk drive was merely a means to a better user experience. AI is just a new technology that enables us to create better products for users. So, our strategy is not to make big claims that AI is going to change the world and revolutionize smartphones. For us, it's about using it to solve a consumer problem, not to tell a big story. We want the product to be the story."

Pei then says that he doesn't see the current trend of AI products -- citing wearables such as smart glasses -- as the future of the technology. Rather, he sees the smartphone as the most important device for AI "for the foreseeable future," but as one that will "change dramatically." According to Pei, the future of the smartphone is one without apps, with the experience instead just revolving around the OS and what it can do and how it can "optimize" for the user, acting as a proactive, automated agent and that, in the end, the user "will spend less time doing boring things and more time on what they care about."

OnePlus is replacing its iconic Alert Slider with a new customizable "Plus Key" on the upcoming OnePlus 13s, which launches the new AI Plus Mind feature that lets users capture and search content found on screen. This update is part of a broader AI push for its devices that includes tools like AI VoiceScribe for call summaries, AI Translation for multi-modal language support, and AI Best Face 2.0 for photo corrections. Engadget reports: What AI Plus Mind does is save relevant content to a dedicated Mind Space, where users can browse various information that they've saved. Users can then search for the detail they want to find using natural language queries. Both the Plus Key and the AI Plus Mind will debut on the OnePlus 13s in Asia. AI Plus Mind will roll out to the rest of the OnePlus 13 Series devices through a future software update, while all future OnePlus phone will come with the new physical key. Notably, the new button and feature bear similarities to Nothing's physical Essential Key that can also save information inside the Essential Space app. Nothing was founded by Carl Pei who co-founded OnePlus.

A Qualcomm-commissioned study found that Apple's inaugural C1 modem, debuting in the iPhone 16e, significantly underperformed compared to Qualcomm-powered Android devices in challenging network conditions. The research by Cellular Insights tested devices on T-Mobile's 5G network in New York City, where Android phones achieved download speeds up to 35% faster and upload speeds up to 91% quicker than the iPhone 16e.

The performance gap widened when networks were congested or devices operated farther from cell towers -- precisely the scenarios where next-generation modems should excel, according to the report. The iPhone 16e became "noticeably hot to touch and exhibited aggressive screen dimming within just two-minute test intervals" during testing. This study arrives as Apple attempts to reduce its dependence on Qualcomm, which has historically provided modems for the entire iPhone lineup and represents roughly 20% of Qualcomm's revenue.

President Trump's threat of a 25% tariff on smartphone imports including iPhones would not provide enough economic incentive for Apple to relocate US-bound iPhone production to domestic facilities, according to a new Morgan Stanley note viewed by Slashdot. The tariff threat, announced Friday via social media, appeared to target Apple's recent shift of iPhone production from China to India through its contract manufacturing partners.

Morgan Stanley analysts estimate that establishing US iPhone production would require a minimum of two years and several billion dollars to build multiple greenfield assembly facilities, with a trained workforce exceeding 100,000 workers during peak seasons. More significantly, the firm calculates that a US-produced iPhone would cost 35% more than current China or India production, primarily due to higher labor costs and the need to import 25% of iPhone components from China under existing 30% tariffs. By contrast, Apple could offset a 25% import tariff by raising global iPhone prices just 4-6%, making domestic production economically unviable.

An anonymous reader shares a report: [Last] week, it was announced that Docomo's emoji designs will no longer appear on any of the Japanese mobile network's devices. This marks the end of an emoji era that first began in 1999, even though the set hasn't been updated since 2013.

[...] Unlike these earlier systems, Docomo's emoji set in 1999 was explicitly tied to mobile internet use and would become the template for emoji standardization in the 2000s and 2010s, alongside emoji design sets implemented by Softbank and KDDI on their own versions of i-mode (J-Sky and EZweb, respectively). Docomo's set would receive several updates between 1999 and 2013, introducing color support and additional concepts to the keyboard. But now, as per this week's announcement, it will finally be discontinued. Spanning 26 years, it's undeniable that Docomo's emoji set played a foundational role in emoji history, even if its last incarnation remained unchanged for almost 12 of those 26 years.

Earlier this month app developer Guilherme Rambo had a warning for iPhone users: If you try to send an audio message using the Messages app to someone who's also using the Messages app, and that message happens to include the name "Dave and Buster's", the message will never be received.

In case you're wondering, "Dave and Buster's" is the name of a sports bar and restaurant in the United States... [T]he recipient will only see the "dot dot dot" animation for several seconds, and it will then eventually disappear. They will never get the audio message.
"The issue was first spotted on the podcast Search Engine..." according to an article in Fortune: Rambo's explanation of the curiosity goes like this.

"When you send an audio message using the Messages app, the message includes a transcription of the audio. If you happen to pronounce the name 'Dave and Buster's' as someone would normally pronounce it, almost like it's a single word, the transcription engine on iOS will recognize the brand name and correctly write it as 'Dave & Buster's' (with an ampersand)," he begins. So far, so good." [But ampersands have special meaning in HTML/XHTML...] And, as MacRumors puts it: "The parsing error triggers Apple's BlastDoor Messages feature that protects users from malicious messages that might rely on problematic parsing, so ultimately, the audio message fails to send."
To solve the mystery, Rambo "plugged the recipient device into my Mac and captured the logs right after the device received the problematic message." Their final thoughts... Since BlastDoor was designed to thwart hacking attempts, which frequently rely on faulty data parsing, it immediately stops what it's doing and just fails. That's what causes the message to get stuck in the "dot dot dot" state, which eventually times out, and the message just disappears. On the surface, this does sound like it could be used to "hack" someone's iPhone via a bad audio message transcription, but in reality what this bug demonstrates is that Apple's BlastDoor mechanism is working as designed.

Many bad parsers would probably accept the incorrectly-formatted XHTML, but that sort of leniency when parsing data formats is often what ends up causing security issues. By being pedantic about the formatting, BlastDoor is protecting the recipient from an exploit that would abuse that type of issue.

An anonymous reader quotes a report from Jalopnik: With the gradual rise of semi-autonomous vehicles, there will likely be multiple cameras pointing back when you pull out a phone to take a photo or record video of a car. One reddit user found out earlier this month that car-mounted lidar sensors can damage a phone camera under certain circumstances. It was the technological equivalent of staring directly into the Sun. Their phone's camera was toast, but only because it was close-up and pointed directly at the lidar sensor.

Reddit user u/Jeguetelli posted worrying footage of a brand new Volvo EX90 from his iPhone 16 Pro Max. Nothing was wrong with the crossover SUV. That was the problem. The lidar sensor mounted in a pod above the windshield shot out a laser barrage of near-infrared light into the camera. The damage was immediate and obvious, leaving behind a red, pink and purple constellation of fried pixels. You can tell the permanent damage was to that specific lens because the image returned to normal after zooming out to a different lens. Jeguetelli didn't seem too concerned about the incident because he had Apple Care. In a statement to The Drive, Volvo confirmed that bad things can happen. "It's generally advised to avoid pointing a camera directly at a lidar sensor," the Swedish manufacturer said. "The laser light emitted by the lidar can potentially damage the camera's sensor or affect its performance."

"Using filters or protective covers on the camera lens can help reduce the impact of lidar exposure. Some cameras are designed with built-in protections against high-intensity light sources."

The Federal Communications Commission has approved Verizon's $9.6 billion acquisition of Frontier Communications, valuing the Dallas-based company at $20 billion including debt. The approval comes after Verizon agreed to scale back diversity initiatives to comply with Trump administration policies.

FCC Chairman Brendan Carr, who previously threatened to block mergers over DEI practices, praised the deal for its potential to "unleash billions in new infrastructure builds" and "accelerate the transition away from old, copper line networks to modern, high-speed ones." The acquisition positions America's largest phone carrier to expand its high-speed internet footprint across Frontier's 25-state network. Verizon plans to deploy fiber to more than one million U.S. homes annually following the transaction.

Apple's smartphone shipments in China plunged nearly 50% year-over-year in March 2025, as domestic brands like Huawei and Vivo surged ahead -- now controlling 92% of the market. MacRumors reports: The steep decline saw shipments fall to just 1.89 million units, down from 3.75 million during the same period last year. That shrinks Apple's share of the Chinese market to approximately 8%, while domestic brands now control 92% of smartphone shipments. For the entire first quarter, non-Chinese brand shipments declined over 25%, while total smartphone shipments in China actually increased by 3.3%.

Apple's struggles come as domestic competitors have gained ground. Counterpoint Research reports Huawei now leads with a 19.4% share, followed by Vivo (17%), Xiaomi (16.6%), and Oppo (14.6%). Apple has slipped to fifth place with 14.1%. Several factors are driving Apple's declining fortunes. The company faces competition from rejuvenated local brands like Huawei, which has rebounded with proprietary chips and its HarmonyOS Next software. Chinese government policies appear to be playing a role too. Under government subsidies, consumers of electronics get a 15% refund of products that are priced under 6,000 yuan ($820). Apple's standard iPhone 16 starts at 5,999 yuan.

An anonymous reader quotes a report from Ars Technica: Federal Communications Commission Chairman Brendan Carr has threatened to revoke EchoStar licenses for radio frequency bands coveted by rival firms including SpaceX, which alleges that EchoStar is underutilizing the spectrum. "I have directed agency staff to begin a review of EchoStar's compliance with its federal obligations to provide 5G service throughout the United States per the terms of its federal spectrum licenses," Carr wrote in a May 9 letter to EchoStar Chairman Charles Ergen. EchoStar and its affiliates "hold a large number of FCC spectrum licenses that cover a significant amount of spectrum," the letter said.

Ergen defended his company's wireless deployment but informed investors that EchoStar "cannot predict with any degree of certainty the outcome" of the FCC proceedings. The letter from Carr and Ergen's statement is included in a Securities and Exchange Commission filing submitted by EchoStar today. EchoStar's stock price was down about 8 percent in trading today. EchoStar bought Dish Network in December 2023 and offers wireless service under the Boost Mobile brand. As The Wall Street Journal notes, the firm "has spent years wiring thousands of cellphone towers to help Boost become a wireless operator that could rival AT&T, Verizon and T-Mobile, but the project has been slow-going. Boost's subscriber base has shrunk in the five years since Ergen bought the brand from Sprint." [...]

EchoStar will have to prove its case in the two FCC proceedings. The FCC set a May 27 deadline for the first round of comments in both proceedings and a June 6 deadline for reply comments. The proceedings could result in the FCC letting other companies use the spectrum and other remedies. "In particular, we seek information on whether EchoStar is utilizing the 2 GHz band for MSS consistent with the terms of its authorizations and the Commission's rules and policies governing the expectation of robust MSS," the FCC Space Bureau's call for comments said. "We also seek comment on steps the Commission might take to make more intensive use of the 2 GHz band, including but not limited to allowing new MSS entrants in the band." Last month, SpaceX urged the FCC to reallocate the spectrum, saying "the 2 GHz band remains ripe for sharing among next-generation satellite systems that seek to finally make productive use of the spectrum for consumers and first responders."

EchoStar countered that SpaceX's filing is "intended to cloak another land grab for even more free spectrum," and that its "methodology is completely nonsensical, given that EchoStar's terrestrial deployment is subject to population-based milestones that EchoStar has repeatedly demonstrated in status reports."

Google is enhancing Android's Factory Reset Protection (FRP) to make stolen phones virtually unusable by detecting setup wizard bypasses and requiring a second factory reset until ownership is verified. Android Authority reports: You can factory reset an Android phone in several ways. However, triggering a reset through the Android recovery menu or Google's Find My Device service activates Factory Reset Protection (FRP). During setup after such a reset, the wizard requires you to verify ownership by either signing into the previously associated Google account or entering the device's former lock screen PIN, password, or pattern. Failing this verification step blocks setup completion, rendering the device unusable. [...]

Factory Reset Protection (FRP) is a valuable feature that discourages theft by rendering stolen Android phones useless to potential buyers if wiped improperly. However, FRP isn't foolproof; thieves have discovered numerous methods over the years to circumvent it. These bypasses typically involve skipping the setup wizard, allowing someone to use the phone without entering the previous owner's Google account details or screen lock.

During The Android Show: I/O Edition, Google announced plans to "further harden Factory Reset protections, which will restrict all functionalities on devices that are reset without the owner's authorization." While the company didn't elaborate much, a screenshot it shared suggests that Android will likely detect if someone bypasses the setup wizard and then force another factory reset, preventing unauthorized use until the user proves ownership. [...] Google stated this FRP improvement is coming "later this year." Since the stable Android 16 release is coming soon, this timeline suggests the feature won't be part of the initial launch. It might arrive later in one of Android 16's Quarterly Platform Releases (QPRs), but that remains to be seen.

Apple is planning to use AI technology to address a frequent source of customer frustration: the iPhone's battery life. From a report: The company is planning an AI-powered battery management mode for iOS 19, an iPhone software update due in September, according to people with knowledge of the matter. The enhancement will analyze how a person uses their device and make adjustments to conserve energy, said the people, who asked not to be identified because the service hasn't been announced.

To create the technology -- part of the Apple Intelligence platform -- the company is using battery data it has collected from users' devices to understand trends and make predictions for when it should lower the power draw of certain applications or features. There also will be a lock-screen indicator showing how long it will take to charge up the device, said the people.

Apple is weighing price increases for its fall iPhone lineup, a step it is seeking to couple with new features and design changes, according to WSJ, which cited people familiar with the matter. From the report: The company is determined to avoid any scenario in which it appears to attribute price increases to U.S. tariffs on goods from China, where most Apple devices are assembled, the people said. The U.S. and China agreed Monday to suspend most of the tariffs they had imposed on each other in a tit-for-tat trade war.

An anonymous reader shared this report from the Verge: This morning, while summarizing an Apple "product blitz" he expects for 2027, Bloomberg's Mark Gurman writes in his Power On newsletter that Apple is planning a "mostly glass, curved iPhone" with no display cutouts for that year, which happens to be the iPhone's 20th anniversary... [T]he closest hints are probably in Apple patents revealed over the years, like one from 2019 that describes a phone encased in glass that "forms a continuous loop" around the device.

Apart from a changing iPhone, Gurman describes what sounds like a big year for Apple. He reiterates past reports that the first foldable iPhone should be out by 2027, and that the company's first smart glasses competitor to Meta Ray-Bans will be along that year. So will those rumored camera-equipped AirPods and Apple Watches, he says. Gurman also suggests that Apple's home robot — a tabletop robot that features "an AI assistant with its own personality" — will come in 2027...

Finally, Gurman writes that by 2027 Apple could finally ship an LLM-powered Siri and may have created new chips for its server-side AI processing.
Earlier this week Bloomberg reported that Apple is also "actively looking at" revamping the Safari web browser on its devices "to focus on AI-powered search engines." (Apple's senior VP of services "noted that searches on Safari dipped for the first time last month, which he attributed to people using AI.")

An anonymous reader quotes a report from BleepingComputer: Law enforcement authorities have dismantled a botnet that infected thousands of routers over the last 20 years to build two networks of residential proxies known as Anyproxy and 5socks. The U.S. Justice Department also indicted three Russian nationals (Alexey Viktorovich Chertkov, Kirill Vladimirovich Morozov, and Aleksandr Aleksandrovich Shishkin) and a Kazakhstani (Dmitriy Rubtsov) for their involvement in operating, maintaining, and profiting from these two illegal services.

During this joint action dubbed 'Operation Moonlander,' U.S. authorities worked with prosecutors and investigators from the Dutch National Police, the Netherlands Public Prosecution Service (Openbaar Ministerie), and the Royal Thai Police, as well as analysts with Lumen Technologies' Black Lotus Labs. Court documents show that the now-dismantled botnet infected older wireless internet routers worldwide with malware since at least 2004, allowing unauthorized access to compromised devices to be sold as proxy servers on Anyproxy.net and 5socks.net. The two domains were managed by a Virginia-based company and hosted on servers globally.

On Wednesday, the FBI also issued a flash advisory (PDF) and a public service announcement warning that this botnet was targeting patch end-of-life (EoL) routers with a variant of the TheMoon malware. The FBI warned that the attackers are installing proxies later used to evade detection during cybercrime-for-hire activities, cryptocurrency theft attacks, and other illegal operations. The list of devices commonly targeted by the botnet includes Linksys and Cisco router models, including:

- Linksys E1200, E2500, E1000, E4200, E1500, E300, E3200, E1550
- Linksys WRT320N, WRT310N, WRT610N
- Cisco M10 and Cradlepoint E100 "The botnet controllers require cryptocurrency for payment. Users are allowed to connect directly with proxies using no authentication, which, as documented in previous cases, can lead to a broad spectrum of malicious actors gaining free access," Black Lotus Labs said. "Given the source range, only around 10% are detected as malicious in popular tools such as VirusTotal, meaning they consistently avoid network monitoring tools with a high degree of success. Proxies such as this are designed to help conceal a range of illicit pursuits including ad fraud, DDoS attacks, brute forcing, or exploiting victim's data."

An anonymous reader quotes a report from Ars Technica: The US Senate today voted along party lines to kill a Federal Communications Commission program to distribute Wi-Fi hotspots to schoolchildren, with Democrats saying the Republican-led vote will make it harder for kids without reliable Internet access to complete their homework. The Senate approved a Congressional Review Act (CRA) resolution to nullify the hotspot rule, which was issued by the Federal Communications Commission in July 2024 under then-Chairwoman Jessica Rosenworcel. The program would be eliminated if the House version passes and President Trump signs the joint resolution of disapproval.

The Rosenworcel FCC's rule expanded E-Rate, a Universal Service Fund program, allowing schools and libraries to use E-Rate funding to lend out Wi-Fi hotspots and services that could be used off-premises. The FCC rule was titled, "Addressing the Homework Gap through the E-Rate Program," and the hotspot lending program was scheduled to begin in funding year 2025, which starts in July 2025. Today's Senate vote on the resolution of disapproval was 50-38. There was a 53-47 vote on Tuesday that allowed the Senate measure to proceed to the final step. Sen. Richard Blumenthal (D-Conn.) said on Tuesday that "this resolution would prevent millions of students, educators, and families from getting online." Sen. Edward Markey (D-Mass.) called the Republican move "a cruel and shortsighted decision that will widen the digital divide and rob kids of the tools they need to succeed."

Netflix has officially launched a new AI-powered search feature that uses OpenAI's ChatGPT to deliver a conversational content discovery experience, allowing users to describe what they're looking for in natural language. The streaming giant is also getting into short videos with a new vertical feed set to rival Instagram Reels and TikTok. TechCrunch reports: Users can enter their preferences using natural phrases like "I want something funny and upbeat" or even more detailed requests, such as "I want something scary, but not too scary, and maybe a little bit funny, but not haha funny." The feature is set to roll out this week to iOS users as an opt-in beta. Some subscribers in Australia and New Zealand have already had access to it, as reported by Bloomberg last month. [...] Additionally, at the tech and product event, the company mentioned plans to use generative AI to update title cards in subscribers' preferred languages. Other features revealed on Wednesday include a short-form video feed for mobile users and a redesign of its TV homepage.

Netflix's new mobile-only vertical feed allows users to easily scroll through clips of its original titles. Within this feed, users can tap on buttons to watch the entire show or movie immediately, save it to their "My List," or share it with friends. Of note is that the clips are curated from the "Today's Top Picks for You" section rather than being chosen from Netflix's entire library. This approach makes it specifically tailored to each user, ultimately encouraging viewers to watch the full shows.

Eddy Cue, Apple's senior vice president of services, gave an ominous warning today that the iPhone could go the way of the iPod 10 years from now. From a report: Cue's remarks came during the Google Search antitrust remedies trial today while discussing how AI has the potential to reshape the tech industry and open the door to new entrants. Incumbents have a hard time ... we're not an oil company, we're not toothpaste -- these are things that are going to last forever ... you may not need an iPhone 10 years from now.

Cue went on to say that the best thing Apple did was kill the iPod, a move he said was bold. "Why would you kill the golden goose," he added. That may seem like a silly thing for Apple to say, given that more than half of its revenue is iPhone sales. But Cue calls AI a "huge technological shift," and suggests that such shifts can humble companies that once seemed unassailable.