An anonymous reader shares a report: You can now choose WhatsApp as your iPhone's default app for calls and text messages, as noted by WABetaInfo. After updating WhatsApp to version 25.8.74, you'll see the app appear as an option in your Messaging and Calling default app settings.

Apple first announced that it would let iPhone users in the European Union change their default phone and messaging apps, but it later said that everyone would be able to do the same in iOS 18.2.

Apple's latest iOS 18.3.2 update is automatically re-enabling its Apple Intelligence feature even for users who previously disabled it, adding to mounting concerns about the company's AI strategy.

The update presents a splash screen with no option except to tap "Continue," which activates the feature. Users must then manually disable it through settings, with the AI consuming up to 7GB of storage space. This forced activation comes amid broader troubles with Apple's AI initiatives.

DaringFireball: Whole Reddit thread examining this simple question: "What month is it?" and Siri's "I'm sorry, I don't understand" response (which I just reproduced on my iPhone 16 Pro running iOS 18.4b4). One guy changed the question to "What month is it currently?" and got the answer "It is 2025." More comments from that thread:"I ask Siri to play a podcast and she literally says, "I'm trying to play from Apple Podcasts but it doesn't look like you have it installed." I didn't even know you could delete that app. I certainly haven't. So I have to manually do it every time now. It used to work."

"I asked Siri last night to set a reminder for 3:50, so naturally she set it for 10:00." Further reading:
Apple Shakes Up AI Executive Ranks in Bid to Turn Around Siri;
'Something Is Rotten in the State of Cupertino'.

Pebble founder Eric Migicovsky has warned that the company's revived smartwatch line will face significant functionality limitations when paired with iPhones, blaming Apple's restrictive policies that favor its own Apple Watch. "It's impossible for a 3rd party smartwatch to send text messages, or perform actions on notifications (like dismissing, muting, replying) and many, many other things," Migicovsky wrote in a blog post, adding that the situation has "actually gotten worse over the last 8 years."

A 2024 class action lawsuit cited in the post claims Apple has added further restrictions since iOS 13, including requiring users to display full content previews on their lock screens for notifications to reach third-party watches. Pebble is still developing an iOS app because 40% of potential customers use iPhones, he said. Migicovsky warned that the watch will "always appear to have less developed functionality on iOS than Android" and some features will arrive on Android first.

Most mobile apps fail to reach $1,000 in monthly revenue within their first two years, according to a new report from RevenueCat examining data from over 75,000 mobile apps. Across all categories, only about 20% of apps achieve the $1,000 threshold, while just 5% reach $10,000 monthly.

In 2025, the top 5% of apps generate 500 times more revenue than the remaining 95% -- up from 200 times in 2024. After one year, elite performers in gaming, photo and video, health and fitness, and social categories exceed $5,000 monthly, while those in the 25th percentile earn a meager $5-20 per month. The report also highlights North American developers' heavy iOS dependence, with 76.1% making over 80% of their revenue from Apple's platform. Subscription retention presents another challenge, with barely 10% of monthly subscribers staying beyond the first year.

A leaked Apple meeting reveals significant internal struggles with Siri's development, as AI-powered features announced last June have been delayed and may not make it into iOS 19. The Verge reports: Bloomberg (paywalled) has the full scoop on what happened at a Siri team meeting led by senior director Robby Walker, who oversees the division. He called the delay an "ugly" situation and sympathized with employees who might be feeling burned out or frustrated by Apple's decisions and Siri's still-lackluster reputation. He also said it's not a given that the missing Siri features will make it into iOS 19 this year; that's the company's current target, but "doesn't mean that we're shipping then," he told employees. "We have other commitments across Apple to other projects," Walker said, according to Bloomberg's report. "We want to keep our commitments to those, and we understand those are now potentially more timeline-urgent than the features that have been deferred."

The meeting also hinted at tension between Apple's Siri unit and the marketing division. Walker said the communications team wanted to highlight features like Siri understanding personal context and being able to take action based on what's currently on a user's screen -- even though they were nowhere near ready. Those WWDC teases and the resulting customer expectations only made matters worse, Walker acknowledged. Apple has since pulled an iPhone 16 ad that showcased the features and has added disclaimers to several areas of its website noting they've all been punted to a TBD date. They were held back in part due to quality issues "that resulted in them not working properly up to a third of the time," according to Mark Gurman.

[...] Walker told his staff that senior executives like software chief Craig Federighi and AI boss John Giannandrea are taking "intense personal accountability" for a predicament that's drawing fierce criticism as the months pass by with little to show for it beyond a prettier Siri animation. "Customers are not expecting only these new features but they also want a more fully rounded-out Siri," Walker said. "We're going to ship these features and more as soon as they are ready." He praised the team for its "incredibly impressive" work so far. "These are not quite ready to go to the general public, even though our competitors might have launched them in this state or worse," he said of the delayed features.

Apple is planning a new AirPods feature that allows the earbuds to live-translate an in-person conversation into another language, Bloomberg reports, citing people with knowledge of the matter. From the report: The capability will be offered as part of an AirPods software upgrade due later this year, said the people, who asked not to be identified because the effort is private. It will be tied to iOS 19, the upcoming update to Apple's mobile-device operating system.

The GSM Association has released new specifications for RCS messaging incorporating end-to-end encryption (E2EE) based on the Messaging Layer Security protocol, six months after iOS 18 introduced RCS compatibility.

The specifications ensure messages remain secure between Android and iOS devices, making RCS "the first large-scale messaging service to support interoperable E2EE between client implementations from different providers," said GSMA Technical Director Tom Van Pelt.

The system combines E2EE with SIM-based authentication to strengthen protection against scams and fraud. Apple confirmed it "helped lead a cross industry effort" on the standard and will implement support in future software updates without specifying a timeline. Google's RCS implementation has featured default E2EE since early 2024.

On March 9, older Chromecast and Chromecast Audio devices stopped working due to an expired device authentication certificate authority that made them untrusted by Google's apps. While unofficial apps like VLC continue to function, Google's fix will require either updating client apps to bypass the issue or replacing the expired certificates, a process that could take weeks; however, Google has since announced it is beginning a gradual rollout of a fix. The Register reports: Tom Hebb, a former Meta software engineer and Chromecast hacker, has published a detailed analysis of the issue and suggests a fix could take more than a month to prepare. He's also provided workarounds here for folks to try in the meantime. We spoke to Hebb, and he says the problem is this expired device authentication certificate authority. [...] The fix is not simple. It's either going to involve a bit of a hack with updated client apps to accept or workaround the situation, or somehow someone will need to replace all the key pairs shipped with the devices with ones that use a new valid certificate authority. And getting the new keys onto devices will be a pain as, for instance, some have been factory reset and can't be initialized by a Google application because the bundled cert is untrusted, meaning the client software needs to be updated anyway.

Given that the product family has been discontinued, teams will need to be pulled together to address this blunder. And it does appear to be a blunder rather than planned or remotely triggered obsolescence; earlier Chromecasts have a longer certificate validity, of 20 years rather than 10. "Google will either need to put in over a month of effort to build and test a new Chromecast update to renew the expired certificates, or they will have to coordinate internally between what's left of the Chromecast team, the Android team, the Chrome team, the Google Home team, and iOS app developers to push out new releases, which almost always take several days to build and test," Hebb explained. "I expect them to do the latter. A server-side fix is not possible."

So either a week or so to rush out app-side updates to tackle the problem, or much longer to fix the problem with replaced certs. Polish security researcher Maciej Mensfeld also believes the outage is most likely due to an expired device authentication certificate authority. He's proposed a workaround that has helped some users, at least. Hebb, meanwhile, warns more certificate authority expiry pain is looming, with the Chromecast Ultra and Google Home running out in March next year, and the Google Home Mini in January 2027.

Mozilla is urging Firefox users to update their browsers to version 128 or later (or ESR 115.13 for extended support users) before March 14, 2025, to avoid security risks and add-on disruptions caused by the expiration of a key root certificate. "On 14 March a root certificate (the resource used to prove an add-on was approved by Mozilla) will expire, meaning Firefox users on versions older than 128 (or ESR 115) will not be able to use their add-ons," warns a Mozilla blog post. "We want developers to be aware of this in case some of your users are on older versions of Firefox that may be impacted." BleepingComputer reports: A Mozilla support document explains that failing to update Firefox could expose users to significant security risks and practical issues, which, according to Mozilla, include:

- Malicious add-ons can compromise user data or privacy by bypassing security protections.
- Untrusted certificates may allow users to visit fraudulent or insecure websites without warning.
- Compromised password alerts may stop working, leaving users unaware of potential account breaches.

It is noted that the problem impacts Firefox on all platforms, including Windows, Android, Linux, and macOS, except for iOS, where there's an independent root certificate management system. Mozilla says that users relying on older versions of Firefox may continue using their browsers after the expiration of the certificate if they accept the security risks, but the software's performance and functionality may be severely impacted.

Britain's competition watchdog has concluded that Apple and Google are stifling competition in the UK mobile browser market, following an investigation by the Competition and Markets Authority (CMA). The inquiry found Apple's iOS policies particularly restrictive, requiring all browsers to use its WebKit engine while giving Safari preferential access to features.

Apple's practice of pre-installing Safari as the default browser also reduces awareness of alternatives, despite allowing users to change defaults. Google faces similar criticism for pre-installing Chrome on most Android devices, though investigators noted both companies have recently taken steps to facilitate browser switching. The probe identified Apple's revenue-sharing arrangement with Google -- which pays a significant share of search revenue to be the default iPhone search engine -- as "significantly reducing their financial incentives to compete."

New submitter CInder123 shares a report from TechSpot: Apple is undertaking one of the most significant software overhauls in its history, aiming to revamp the user interface across iPhone, iPad, and Mac devices. This ambitious update, set for release later this year, will fundamentally transform the look and feel of Apple's operating systems, enhancing consistency and the user experience.

The updates are part of iOS 19 and iPadOS 19, codenamed "Luck," and macOS 16, dubbed "Cheer," according to Bloomberg's Mark Gurman. He cited sources who requested anonymity since the project has yet to be officially announced. These major upgrades will introduce a new design language while simplifying navigation and controls. Apple's push for consistency across platforms aims to create a seamless user experience when switching between devices. Currently, applications, icons, and window styles vary significantly across macOS, iOS, and visionOS, leading to a disjointed experience.

Apple has pulled an iPhone 16 ad featuring a "more personal Siri" after delaying Apple Intelligence features originally planned for iOS 18. The now-private video starred actor Isabella Ramsey demonstrating contextual awareness capabilities. Apple stated the delayed features, including personal context and improved app integration, will release "in the coming year," while Bloomberg reports some Apple AI staff believe these features might be completely rebuilt.

A Brazilian judge has ordered Apple to open its iOS platform to alternative app stores within 90 days, according to Valor International. The ruling cited Apple's compliance with similar requirements in the European Union under the Digital Markets Act without showing "significant impact or irreparable harm to its economic model."

The case originated from a 2022 complaint by Mercado Livre. Brazil previously issued a 20-day deadline in November for Apple to permit alternative payment options and sideloading, but that injunction was overturned in December. Apple plans to appeal.

Apple users noticed a change in 2023, "when streaming platforms like Netflix, HBO Max, Amazon Prime, and the Criterion Channel imposed a quiet embargo on the screenshot," noted the film blog Screen Slate: At first, there were workarounds: users could continue to screenshot by using the browser Brave or by downloading extensions or third-party tools like Fireshot. But gradually, the digital-rights-management tech adapted and became more sophisticated. Today, it is nearly impossible to take a screenshot from the most popular streaming services, at least not on a Macintosh computer. The shift occurred without remark or notice to subscribers, and there's no clear explanation as to why or what spurred the change...

For PC users, this story takes a different, and happier, turn. With the use of Snipping Tool — a utility exclusive to Microsoft Windows, users are free to screen grab content from all streaming platforms. This seems like a pointed oversight, a choice on the part of streamers to exclude Mac users (though they make up a tiny fraction of the market) because of their assumed cultural class.
"I'm not entirely sure what the technical answer to this is," tech blogger John Gruber wrote this weekend, "but on MacOS, it seemingly involves the GPU and video decoding hardware..." These DRM blackouts on Apple devices (you can't capture screenshots from DRM video on iPhones or iPads either) are enabled through the deep integration between the OS and the hardware, thus enabling the blackouts to be imposed at the hardware level. And I don't think the streaming services opt into this screenshot prohibition other than by "protecting" their video with DRM in the first place. If a video is DRM-protected, you can't screenshot it; if it's not, you can.

On the Mac, it used to be the case that DRM video was blacked-out from screen capture in Safari, but not in Chrome (or the dozens of various Chromium-derived browsers). But at some point a few years back, you stopped being able to capture screenshots from DRM videos in Chrome, too -- by default. But in Chrome's Settings page, under System, if you disable "Use graphics acceleration when available" and relaunch Chrome, boom, you can screenshot everything in a Chrome window, including DRM video...

What I don't understand is why Apple bothered supporting this in the first place for hardware-accelerated video (which is all video on iOS platforms -- there is no workaround like using Chrome with hardware acceleration disabled on iPhone or iPad). No one is going to create bootleg copies of DRM-protected video one screenshotted still frame at a time -- and even if they tried, they'd be capturing only the images, not the sound. And it's not like this "feature" in MacOS and iOS has put an end to bootlegging DRM-protected video content.
Gruber's conclusion? "This 'feature' accomplishes nothing of value for anyone, including the streaming services, but imposes a massive (and for most people, confusing and frustrating) hindrance on honest people simply trying to easily capture high-quality (as opposed to, say, using their damn phone to take a photograph of their reflective laptop display) screenshots of the shows and movies they're watching."

Google's Threat Intelligence Group notes "the growing threat to secure messaging applications." While specifically acknowledging "wide ranging efforts to compromise Signal accounts," they add that the threat "also extends to other popular messaging applications such as WhatsApp and Telegram, which are also being actively targeted by Russian-aligned threat groups using similar techniques.

"In anticipation of a wider adoption of similar tradecraft by other threat actors, we are issuing a public warning regarding the tactics and methods used to date to help build public awareness and help communities better safeguard themselves from similar threats."

Computer Weekly reports: Analysts predict it is only a matter of time before Russia starts deploying hacking techniques against non-military Signal users and users of other encrypted messaging services, including WhatsApp and Telegram. Dan Black, principal analyst at Google Threat Intelligence Group, said he would be "absolutely shocked" if he did not see attacks against Signal expand beyond the war in Ukraine and to other encrypted messaging platforms...

Russia-backed hackers are attempting to compromise Signal's "linked devices" capability, which allows Signal users to link their messaging account to multiple devices, including phones and laptops, using a quick response (QR) code. Google threat analysts report that Russia-linked threat actors have developed malicious QR codes that, when scanned, will give the threat actor real-time access to the victim's messages without having to compromise the victim's phone or computer. In one case, according to Black, a compromised Signal account led Russia to launch an artillery strike against a Ukrainian army brigade, resulting in a number of casualties... Google also warned that multiple threat actors have been observed using exploits to steal Signal database files from compromised Android and Windows devices.
The article notes that the attacks "are difficult to detect and when successful there is a high risk that compromised Signal accounts can go unnoticed for a long time." And it adds that "The warning follows disclosures that Russian intelligence created a spoof website for the Davos World Economic Forum in January 2025 to surreptitiously attempt to gain access to WhatsApp accounts used by Ukrainian government officials, diplomats and a former investigative journalist at Bellingcat."

Google's Threat Intelligence Group notes there's a variety of attack methods, though the "linked devices" technique is the most widely used. "We are grateful to the team at Signal for their close partnership in investigating this activity," Google's group says in their blog post, adding that "the latest Signal releases on Android and iOS contain hardened features designed to help protect against similar phishing campaigns in the future. Update to the latest version to enable these features."

Apple's Google Lens-like took called Visual Intelligence is coming to the iPhone 15 Pro, according to John Gruber of Daring Fireball. It's unclear which update will offer the feature but Gruber speculates it could arrive with iOS 18.4 in April. From a report: Visual Intelligence was originally introduced with the initial iPhone 16 lineup in September, and Apple showed it off as a feature that you launched from the Camera Control button. But yesterday, Apple announced that Visual Intelligence would be available on the iPhone 16E, which does not have the Camera Control button, through its Action Button.

That suggested that the feature could technically work with the iPhone 15 Pro, which also has an Action Button, and now Apple is confirming that Visual Intelligence will indeed come to that phone and be available via the Action Button. You'll also be able to launch Visual Intelligence from the Control Center on the iPhone 15 Pro, Apple told Gruber.

Google has gained permission to sell its e-books and audiobooks directly to customers through its iOS app, Google Play Books. From a report: While iOS apps today can offer access to content previously purchased elsewhere, like e-books bought via a website, developers have to request a specific exception to link their iOS app's users to the company's own website to make purchases. According to a brief post on Google's blog, users will now be able to click on a new "Get book" button in the Google Play Books iOS app which will take them to the Google Play website to complete their e-book or audiobook purchase.

From there, users will be able to see their recently opened book listings and complete a purchase using their Google Account and saved payment information. By processing the transaction on its own website, Google can avoid paying Apple a commission (generally 30%) on in-app purchases of digital content.

xAI has launched Grok 3, the latest iteration of its large language model, alongside new capabilities for its iOS and web applications. The model has been trained on approximately 200,000 GPUs in a Memphis data center, representing what CEO Elon Musk claims is a tenfold increase in computing power compared to its predecessor.

The new release introduces two specialized variants: Grok 3 Reasoning and Grok 3 mini Reasoning, designed to methodically analyze problems similar to OpenAI's o3-mini and DeepSeek's R1 models. According to xAI's benchmarks, Grok 3 outperforms GPT-4o on several technical evaluations, including AIME for mathematical reasoning and GPQA for PhD-level science problems.

A notable addition is the DeepSearch feature, which combs through web content and X posts to generate research summaries. The platform will be available through X's Premium+ subscription and a new SuperGrok tier ($30/month or $300/year), with the latter offering enhanced reasoning capabilities and unlimited image generation. To prevent knowledge extraction through model distillation -- a technique recently attributed to DeepSeek's alleged copying of OpenAI's models -- xAI has implemented measures to obscure the reasoning models' thought processes in the Grok app. The company plans to release the Grok 2 model as open source once Grok 3 achieves stability.

"Security researchers say the Chinese government-linked hacking group, Salt Typhoon, is continuing to compromise telecommunications providers," reports TechCrunch, "despite the recent sanctions imposed by the U.S. government on the group."

TechRadar reports that the Chinese state-sponsored threat actor is "hitting not just American organizations, but also those from the UK, South Africa, and elsewhere around the world." The latest intrusions were spotted by cybersecurity researchers from Recorded Future, which said the group is targeting internet-exposed web interfaces of Cisco's IOS software that powers different routers and switches. These devices have known vulnerabilities that the threat actors are actively exploiting to gain initial access, root privileges, and more. More than 12,000 Cisco devices were found connected to the wider internet, and exposed to risk, Recorded Future further explained. However, Salt Typhoon is focusing on a "smaller subset" of telecoms and university networks.
"The hackers attempted to exploit vulnerabilities in at least 1,000 Cisco devices," reports NextGov, "allowing them to access higher-level privileges of the hardware and change their configuration settings to allow for persistent access to the networks they're connected on... Over half of the Cisco appliances targeted by Salt Typhoon were located in the U.S., South America and India, with the rest spread across more than 100 countries." Between December and January, the unit, widely known as Salt Typhoon, "possibly targeted" — based on devices that were accessed — offices in the University of California, Los Angeles, California State University, Loyola Marymount University and Utah Tech University, according to a report from cyber threat intelligence firm Recorded Future... The Cisco devices were mainly associated with telecommunications firms, but 13 of them were linked to the universities in the U.S. and some in other nations... "Often involved in cutting-edge research, universities are prime targets for Chinese state-sponsored threat activity groups to acquire valuable research data and intellectual property," said the report, led by the company's Insikt Group, which oversees its threat research.

The cyberspies also compromised Cisco platforms at a U.S.-based affiliate of a prominent United Kingdom telecom operator and a South African provider, both unnamed, the findings added. The hackers also "carried out a reconnaissance of multiple IP addresses" owned by Mytel, a telecom operator based in Myanmar...

"In 2023, Cisco published a security advisory disclosing multiple vulnerabilities in the web UI feature in Cisco IOS XE software," a Cisco spokesperson said in a statement. "We continue to strongly urge customers to follow recommendations outlined in the advisory and upgrade to the available fixed software release."