MacRumors

The United Kingdom's National Cyber Security Centre has backed Apple's and Amazon's denials of a Bloomberg Businessweek report that claimed Chinese spies planted tiny chips the size of a pencil tip on motherboards manufactured by Supermicro, which both Apple and Amazon used at one time in data center servers.

"We are aware of the media reports but at this stage have no reason to doubt the detailed assessments made by AWS and Apple," the agency, a unit of the GCHQ, said in a statement provided to Reuters today.

"The NCSC engages confidentially with security researchers and urges anybody with credible intelligence about these reports to contact us," it added.

Apple was a Supermicro customer for several years, using its servers to power the likes of iCloud, Siri, and the App Store, although it severed ties with the company in 2016 due to a previously-reported and allegedly unrelated incident in which Apple discovered an infected driver on a single server in one of its labs.

Bloomberg Businessweek yesterday reported that Apple discovered the suspicious microchips around May 2015, after detecting odd network activity and firmware problems. Two senior Apple insiders were cited as saying the company reported the incident to the FBI, but kept details tightly held.

The insiders cited in the report said in the summer of 2015, a few weeks after Apple identified the malicious chips, the company started removing all Supermicro servers from its data centers. Every one of the 7,000 or so Supermicro servers was replaced in a matter of weeks, according to one of the insiders.

One government official cited in the Bloomberg Businessweek report said China's goal was "long-term access to high-value corporate secrets and sensitive government networks." No consumer data is known to have been stolen, the report added, but the extent of the alleged attack appears to be unclear.

Apple denied Bloomberg Businessweek's report in a strongly-worded statement:

Over the course of the past year, Bloomberg has contacted us multiple times with claims, sometimes vague and sometimes elaborate, of an alleged security incident at Apple. Each time, we have conducted rigorous internal investigations based on their inquiries and each time we have found absolutely no evidence to support any of them. We have repeatedly and consistently offered factual responses, on the record, refuting virtually every aspect of Bloomberg's story relating to Apple.

On this we can be very clear: Apple has never found malicious chips, "hardware manipulations" or vulnerabilities purposely planted in any server. Apple never had any contact with the FBI or any other agency about such an incident. We are not aware of any investigation by the FBI, nor are our contacts in law enforcement.

In response to Bloomberg's latest version of the narrative, we present the following facts: Siri and Topsy never shared servers; Siri has never been deployed on servers sold to us by Super Micro; and Topsy data was limited to approximately 2,000 Super Micro servers, not 7,000. None of those servers has ever been found to hold malicious chips.

As a matter of practice, before servers are put into production at Apple they are inspected for security vulnerabilities and we update all firmware and software with the latest protections. We did not uncover any unusual vulnerabilities in the servers we purchased from Super Micro when we updated the firmware and software according to our standard procedures.

We are deeply disappointed that in their dealings with us, Bloomberg's reporters have not been open to the possibility that they or their sources might be wrong or misinformed. Our best guess is that they are confusing their story with a previously-reported 2016 incident in which we discovered an infected driver on a single Super Micro server in one of our labs. That one-time event was determined to be accidental and not a targeted attack against Apple.

While there has been no claim that customer data was involved, we take these allegations seriously and we want users to know that we do everything possible to safeguard the personal information they entrust to us. We also want them to know that what Bloomberg is reporting about Apple is inaccurate.

Apple has always believed in being transparent about the ways we handle and protect data. If there were ever such an event as Bloomberg News has claimed, we would be forthcoming about it and we would work closely with law enforcement. Apple engineers conduct regular and rigorous security screenings to ensure that our systems are safe. We know that security is an endless race and that's why we constantly fortify our systems against increasingly sophisticated hackers and cybercriminals who want to steal our data.

Apple later clarified that it is not under any kind of gag order or other confidentiality obligations after speculation mounted.

Note: Due to the political nature of the discussion regarding this topic, the discussion thread is located in our Politics, Religion, Social Issues forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

Apple CEO Tim Cook has tweeted in memory of his former boss and mentor Steve Jobs, who passed away on October 5, 2011. Today marks the seventh anniversary of the Apple co-founder's death. He was 56 years old.

"Steve showed me—and all of us—what it means to serve humanity," tweeted Cook, alongside a photo of Steve.

Apple has lost a visionary and creative genius, and the world has lost an amazing human being. Those of us who have been fortunate enough to know and work with Steve have lost a dear friend and an inspiring mentor. Steve leaves behind a company that only he could have built, and his spirit will forever be the foundation of Apple. […]

No words can adequately express our sadness at Steve's death or our gratitude for the opportunity to work with him. We will honor his memory by dedicating ourselves to continuing the work he loved so much.

We rounded up many other comments in our 2011 article for those who wish to look back, while Apple still has a Remembering Steve page on its website with condolences and memories from customers.

Steve Jobs narrated this unaired version of Apple's famous Think Different ad in 1997:

The new Apple Watch Nike+ officially launches today and early pre-orders are being delivered to customers, with pick-ups available in stores in limited quantities.

The new Apple Watch Nike+ devices come with all the features new to the Series 4 models, including a larger screen, thinner body, a (currently U.S-only) ECG reader, fall detection, and more.

In addition, the Nike+ collection features redesigned Nike watch faces that match to the new band colors, including a Pure Platinum/Black Sport Band and a Summit White Sport Loop with reflective yarn.

Apple Watch Nike+ comes in four styles in both 40mm and 44mm sizes, with both cellular and Wi-Fi + GPS only models to choose from:

• Silver Aluminum Case with Pure Platinum/Black Nike Sport Band
• Space Grey Aluminum Case with Anthracite/Black Nike Sport Band
• Silver Aluminum Case with Summit White Nike Sport Loop
• Space Grey Aluminum Case with Black Nike Sport Loop

Apple Watch Nike+ models are priced between $399 and $499 in the United States. Additional Nike+ bands are $49 each.

Launch countries include Australia, Austria, Bahrain, Belgium, Canada, China, Czech Republic, Denmark, Finland, France, Germany, Greece, Guam, Hong Kong, Hungary, Ireland, Italy, Japan, Kuwait, Luxembourg, Macau, Monaco, Netherlands, New Zealand, Norway, Oman, Poland, Portugal, Puerto Rico, Qatar, Russia, Saudi Arabia, Singapore, South Africa, Spain, Sweden, Switzerland, the UAE, the U.K., and the U.S.

Apple's upcoming iOS 12.1 update will introduce more than 70 new emoji, which debuted earlier this week in the second iOS 12.1 beta.

We went hands-on with the new iOS 12.1 update to preview the new characters that you can expect to see when iOS 12.1 is released, such as cold face, face with hearts, red hair, white hair, no hair, parrot, swan, llama, mango, cupcake, and more.

The 2018 emoji release includes new emoji in a range of categories, from faces and people to food, animals, and common household objects. Every new emoji coming in iOS 12.1 is depicted below, organized by category.

New faces: Face with hearts, hot face, cold face, partying face, woozy face, and pleading face.

New people: Man/woman with red hair, man/woman with white hair, man/woman with curly hair, man/woman with no hair, superhero (male and female), and supervillain (male and female).

Body parts: Leg, foot, tooth, and bone.

Clothing: Goggles, lab coat, hiking boot, and flat shoe,

Toys: Teddy bear, jigsaw, and chess pawn.

Sports: Skateboard, lacrosse, softball, and flying disc.

Animals: Raccoon, llama, hippopotamus, kangaroo, badger, swan, peacock, parrot, lobster, and mosquito.

Science: Microbe, test tube, petri dish, DNA.

Household: Lotion bottle, soap, sponge, safety pin, broom, roll of paper, thread, and yarn.

Food: Mango, leafy green, bagel, salt, moon cake, and cupcake.

Random objects: Compass, brick, luggage, firecracker, red envelope, nazar amulet (evil eye), receipt, toolbox, fire extinguisher, basket, infinity symbol, and pirate flag.

In addition to all of the new emoji in iOS 12, there are some tweaks to existing emoji. Most notably, the iPhone emoji has had a design overhaul to make it look like the iPhone XS rather than the iPhone 8 with no Home button or bezels.

Emoji being added in iOS 12.1 are from Unicode 11, which was finalized and released in June of this year. It often takes Apple and other tech companies several months to implement new emoji because artwork needs to be created for each new character.

Unicode 12, which Apple will adopt in 2019, is already in the works. Emoji candidates for Unicode 12 include flamingo, white heart, snorkel, axe, orangutan, otter, sloth, butter, onion, ice cube, chair, kite, waffle, oyster, and more.

Apple says that it is working with the Unicode Consortium to add additional disability-themed emoji to Unicode 12.

It's still early in the iOS 12.1 beta testing process, so it's not quite clear when the update, new emoji included, will be released. It's likely to come at the end of October or the beginning of November. Late October is a strong possibility given that the iPhone XR releases on October 26.

What do you think of the new emoji coming in iOS 12.1? Let us know in the comments.

Apple has gone to unusual lengths to thoroughly and definitively refute a Bloomberg Businessweek article that today suggested Chinese spies had planted microchips in the Chinese-made Supermicro server motherboards that Apple uses in its facilities.

Following the publishing of the article, Apple released a strongly worded statement calling Businessweek's report inaccurate with no evidence to support the claims, and this afternoon, Apple went further and published an entire rebuttal on its website.

Apple's press release includes the same statement that was initially provided to Bloomberg Businessweek, along with additional information that the company says it shared with Bloomberg Businessweek ahead of when the server article was released.

While Bloomberg Businessweek's report claims that Apple reported the alleged microchip incident to the FBI in 2015, Apple told the news site in no uncertain terms that no one from Apple ever reached out to the FBI, nor had Apple ever heard from the FBI about an investigation.

Apple also told Bloomberg Businessweek that despite "numerous discussions" across teams and organizations, no one at Apple had heard anything about the supposed microchip investigation.

Apple's updated statement clarifies that Apple is not under any kind of gag order or held to a confidentiality obligation, and it says clearly that the report is "completely untrue" and that no malicious chips have been found in Apple servers. The full additional statement is below:

The published Businessweek story also claims that Apple "reported the incident to the FBI but kept details about what it had detected tightly held, even internally." In November 2017, after we had first been presented with this allegation, we provided the following information to Bloomberg as part of a lengthy and detailed, on-the-record response. It first addresses their reporters' unsubstantiated claims about a supposed internal investigation:

Despite numerous discussions across multiple teams and organizations, no one at Apple has ever heard of this investigation. Businessweek has refused to provide us with any information to track down the supposed proceedings or findings. Nor have they demonstrated any understanding of the standard procedures which were supposedly circumvented.

No one from Apple ever reached out to the FBI about anything like this, and we have never heard from the FBI about an investigation of this kind -- much less tried to restrict it.

In an appearance this morning on Bloomberg Television, reporter Jordan Robertson made further claims about the supposed discovery of malicious chips, saying, "In Apple's case, our understanding is it was a random spot check of some problematic servers that led to this detection."

As we have previously informed Bloomberg, this is completely untrue. Apple has never found malicious chips in our servers.
Finally, in response to questions we have received from other news organizations since Businessweek published its story, we are not under any kind of gag order or other confidentiality obligations.

Apple's initial statement, available below, was shared this morning after Bloomberg Businessweek published its article claiming Apple discovered illicit microchips in its Supermicro server motherboards that were able to inject code or provide instruction to the CPU with the ultimate goal of providing the Chinese government with access to "high-value corporate secrets and sensitive government networks."

Bloomberg Businessweek claimed to have spoken to officials with knowledge of the investigation, which Apple says did not happen at all.

Over the course of the past year, Bloomberg has contacted us multiple times with claims, sometimes vague and sometimes elaborate, of an alleged security incident at Apple. Each time, we have conducted rigorous internal investigations based on their inquiries and each time we have found absolutely no evidence to support any of them. We have repeatedly and consistently offered factual responses, on the record, refuting virtually every aspect of Bloomberg's story relating to Apple.

On this we can be very clear: Apple has never found malicious chips, "hardware manipulations" or vulnerabilities purposely planted in any server. Apple never had any contact with the FBI or any other agency about such an incident. We are not aware of any investigation by the FBI, nor are our contacts in law enforcement.

In response to Bloomberg's latest version of the narrative, we present the following facts: Siri and Topsy never shared servers; Siri has never been deployed on servers sold to us by Super Micro; and Topsy data was limited to approximately 2,000 Super Micro servers, not 7,000. None of those servers have ever been found to hold malicious chips.

As a matter of practice, before servers are put into production at Apple they are inspected for security vulnerabilities and we update all firmware and software with the latest protections. We did not uncover any unusual vulnerabilities in the servers we purchased from Super Micro when we updated the firmware and software according to our standard procedures.

We are deeply disappointed that in their dealings with us, Bloomberg's reporters have not been open to the possibility that they or their sources might be wrong or misinformed. Our best guess is that they are confusing their story with a previously-reported 2016 incident in which we discovered an infected driver on a single Super Micro server in one of our labs. That one-time event was determined to be accidental and not a targeted attack against Apple.

While there has been no claim that customer data was involved, we take these allegations seriously and we want users to know that we do everything possible to safeguard the personal information they entrust to us. We also want them to know that what Bloomberg is reporting about Apple is inaccurate.

Apple has always believed in being transparent about the ways we handle and protect data. If there were ever such an event as Bloomberg News has claimed, we would be forthcoming about it and we would work closely with law enforcement. Apple engineers conduct regular and rigorous security screenings to ensure that our systems are safe. We know that security is an endless race and that's why we constantly fortify our systems against increasingly sophisticated hackers and cybercriminals who want to steal our data.

Along with Apple, Bloomberg Businessweek claimed that other companies, such as Amazon, were also affected. Amazon has also issued a similarly worded denial. According to Amazon, the report is untrue and Amazon has never found any issues "relating to modified hardware or malicious chips in Supermicro motherboards" nor has Amazon participated in an investigation with the government.

Supermicro has also denied all reports and says it is not aware of any investigation regarding the topic.

Note: Due to the political nature of the discussion regarding this topic, the discussion thread is located in our Politics, Religion, Social Issues forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

A little over two weeks after launch, iOS 12 is installed on 46 percent of iOS devices, according to data collected by analytics company Mixpanel.

iOS 12 adoption will soon overtake iOS 11 adoption, as iOS 11 is also installed on just over 46 percent of devices in Mixpanel's daily iOS 12 adoption calculation.

At the time this article was written, iOS 12 was installed on 46.25 percent of devices, while iOS 11 was installed on 46.57 percent of devices. 7.18 percent of devices continue to run an older version of iOS.

It's worth noting that Apple has not yet released official iOS 12 installation numbers. Mixpanel's data has historically overestimated iOS adoption rates compared to Apple's own numbers, but the data is not usually too far off. Even if there's a discrepancy between Mixpanel and actual installation rates calculated by Apple, Mixpanel's data still offers solid insight into adoption rates comparative to the adoption rates of earlier versions of iOS.

iOS 12 adoption rates have outpaced iOS 11 adoption rates at the same time last year. On October 3, 2017, which was two weeks after the launch of iOS 11, the operating system was installed on 38.5 percent of devices, according to Mixpanel data, almost 8 percent less than the 46 percent of devices running iOS 12 at the two week mark.

Customers are adopting iOS 12 at rates that are similar to the adoption rates of iOS 10 in 2016, which was installed on 48.16 percent of devices two weeks after it launched.

It's not surprising that customers are choosing to install iOS 12 at a more rapid pace given the significant speed improvements introduced with the update. On older devices, performance enhancements can make iPhones and iPads feel much faster.

On the iPhone 6 Plus, for example, apps launch up to 40 percent faster, while the keyboard can appear up to 50 percent faster. Opening the camera on the Lock screen to take a photo can be done 70 percent faster.

iOS 12 also includes optimizations for when the operating system is under load. Apps launch up to twice as fast under a heavy load, as does the Share Sheet.

MacRumors readers in particular were heavy early adopters, and in a Twitter poll conducted shortly after the launch of the operating system, 85 percent of those surveyed had already installed the update.

Due to advanced security features of the Apple T2 chip, iMac Pro and 2018 MacBook Pro models must pass Apple diagnostics for certain repairs to be completed, according to an internal document from Apple obtained by MacRumors.

For the 2018 MacBook Pro, the requirement applies to repairs involving the display, logic board, Touch ID, and top case, which includes the keyboard, battery, trackpad, and speakers, according to the document. For the iMac Pro, the requirement only applies to logic board and flash storage repairs.

If any of these parts are repaired in an iMac Pro or 2018 MacBook Pro, and the Apple diagnostics are not run, this will result in an inoperative system and an incomplete repair, according to Apple's directive to service providers.

Apple's diagnostic suite is limited to internal use by Apple Stores and Apple Authorized Service Providers, as part of what is called the Apple Service Toolkit. As a result, independent repair shops without Apple certification may be unable to repair certain parts on the iMac Pro and 2018 MacBook Pro.

Moreover, when the iMac Pro and 2018 MacBook Pro are eventually classified as vintage products, meaning they are no longer eligible for hardware service from Apple, repairs through alternative channels might not be possible.

MacRumors has reached out to Apple for comment.

This requirement is a result of the T2 chip, which integrates several previously separate components, including the system management controller, image signal processor, audio controller, and SSD controller. It also features a Secure Enclave coprocessor for secure boot, encrypted storage, and authenticating Touch ID.

To initiate a Mac repair, visit the Get Support page on Apple.com.

Update: Despite the specific wording of Apple's document, which says failure to run Apple diagnostics after certain parts are replaced in T2-equipped Macs "will result in an inoperative system," the repair experts at iFixit swapped out the display and logic board on a 2018 MacBook Pro, and it remained operational without passing diagnostics.

iFixit is not an Apple Authorized Service Provider, so at this time, it appears that independent repair shops should be able to repair the iMac Pro and 2018 MacBook Pro without issue. It's unclear why Apple's document suggests otherwise.