Rivet and Other Cool Children Apps

I'm always looking for new, child friendly apps for the iPad / iPhone or even maybe Amazon's newly updated Amazon Kindle Fire 7 Kids Edition Tablet specifically when it comes to reading or math. Granted, I'm pretty sure that my children do not spend more than 20 minutes on any device per week when I'm home as I have a strict no screen time during the week and only VERY limited time on the weekend. Anyways, that's a whole different batttle these days as the Wall Street Journal points out.

Out today is Google's new Rivet app from their incubator team Area 120 called Rivet on Apple App Store or Google Play. It's a speech processing app that has over 200 books availble for children to read and learn. I played with it yesterday with my son for just over 3 minutes and it was awesome. I've also done the Apple Coding App for children called Swift Playground on the iPad but of course, Google has their own app as well, by the same group called Grasshopper. I encourage you to check them all out. Pretty intuitive and interactive stuff!

Current Tesla Owners Still Get Over the Air FSD for $4k

Current owners of Model S and Model X with Autopilot 2.0 have reported to Electrek that they are now also seeing the price of the upgrade increase.

We contacted Tesla to get an explanation about the situation and the company confirmed that it is a mistake and they will honor the original $4,000 price. The new $5,000 price is for new orders.

Tesla CEO Elon Musk recently said that the first new features under the ‘Full Self-Driving Capability’ package should be released with Tesla’s version 9 software update, which is expected to be released this summer.

Here’s to honor! Thanks Elon. (As always, emphasis is my own.)

LogTen Pro X Cadet

A wonderful and fantastic update for all my pilot friends out there logging their hours in flight! Still the best in the business and love Noah and the company. (this is not a paid or endorsed advertisement. I just love their software and support)

My biggest takeaway from this, besides the obvious Nightmode, would be that if you are just getting into aviation, truth is, the initial 40 hour limit for trial was a little on the lighter side. Now, with 'Cadet,' you get to log up to 250 hours which would put you at the tail end of your commercial rating. Great stuff!

  • Automatic 'Night Mode'

  • Mobile roster importing with integrated Roster Buster access

  • Completely overhauled 'Reports'

  • 'Recent items' listings

  • and a 600% increase in free time for students (to 250 hours Total Time)

iPhone 7 Plus' Camera Kills the Competition

Today the iPhone 7 Plus became way better at capturing the most important thing in our lives: the people we love. If you haven't already, be sure to download iOS 10.1 (Settings > General > Software Update) and give it a shot. You'll be capturing stunning portraits in no time.

Impressive and indeed, game-changing.

Android’s Full-Disk Encryption Has Holes

Beniamini's research highlights several other previously overlooked disk-encryption weaknesses in Qualcomm-based Android devices. Since the key resides in software, it likely can be extracted using other vulnerabilities that have yet to be made public. Beyond hacks, Beniamini said the design makes it possible for phone manufacturers to assist law enforcement agencies in unlocking an encrypted device. Since the key is available to TrustZone, the hardware makers can simply create and sign a TrustZone image that extracts what are known as the keymaster keys. Those keys can then be flashed to the target device. (Beniamini's post originally speculated QualComm also had the ability to create and sign such an image, but the Qualcomm spokeswoman disputed this claim and said only manufacturers have this capability.)

"That's significantly different than how iOS works," Dan Guido, an expert in mobile device encryption and the founder and CEO of security consultancy Trail of Bits, told Ars. "What it means is that now you trust a second party, you trust somebody who built the software that holds the key. Maybe people didn't realize that before, that it's not just Google that can mess around with the software on your phone, but it's also [Google partners], and it's in a very significant way."

So, essentially if you are wondering why some users have turned to Apple as of recently, it's because of the broken promises that Google once offered and has failed on thus far. Of course, if you have nothing to hide anyways, use Android or Apple doesn't matter, but don't go saying that you use Android and stay away from Apple because it's more secure. 

Comparing the 2015 Toyota Prius to the Brand New Redesigned 2016 Toyota Prius

It's been a while (almost a month to be exact) since my last post, but I've been around.  Lately, it's that my 1999 BMW 5.28 iT (wagon) is on it's last leg.  And with that, I'm out with the necessity of yet another car payment.  So with that, here's to 2016! 

Over a gentle drive of 22.5 mostly highway miles, we got a dashboard display of 67.3 mpg. But when you add in a similar stretch of more stop and go driving and some winding roads, our total for 48.8 miles was 57.3 mpg. That's a great number, even if the overall average amount of fuel you'll save over the course of a year with the fourth-gen Prius instead of a third-gen model is negligible. Given 50 mpg combined in the third-gen and an estimated 52 in the new Prius, you'll save around 12 gallons if you drive 15,000 miles a year

Toyota dealerships are giving around $4,000 - $6,000 off the outgoing 2015 model. That's around $65 - $100 a month in savings at 0% APR which they don't offer on the 2016 model.

Essentially, 12 gallons a year which equates to $36 a year at current rates, it's probably best to take advantage of the 2015 deals.  Don't get me wrong, I've always believed in getting the latest and the greatest, and with the new tech in the 2016 Prius, it makes it even more tempting but let's face it; the deals they have going right now are just down right ludicrous.  

Adobe Flash Vulnerable... Again

Just one day after Adobe released its monthly security patches for various software including Flash Player, the company confirmed a major security vulnerability that affects all versions of Flash for Windows, Mac and Linux computers. You read that correctly… all versions. Adobe said it has been made aware that this vulnerability is being used by hackers to attack users, though it says the attacks are limited and targeted. Using the exploit, an attacker can crash a target PC or even take complete control of the computer.

And now for the fun part: The only way to effectively protect yourself against this serious security hole is to completely uninstall Flash Player from your machine.

Another reason why Nest needs to update their Dropcam player. I haven't installed Flash in years and use Google Chrome for the sometimes necessary Flash shenanigans. And yes, I'll say it again. Steve Jobs was way ahead of his time in NEVER enabling Flash on Apple's iPhones.

The Best Implementation of 3D Touch a la Tweetbot

3D Touch facilitates this behavior as quickly previewing tweets and links is easier than ever. If I want to see how many faves, retweets, or replies a tweet has received I no longer have to swipe on it and then swipe back – I can just press, peek, and let go to return to my timeline. Tweets are previewed in a smaller card with the same design of a standalone detail view (which is what you get if you "pop" and choose to fully expand a tweet, entering a nested view).

Leave it up to one of the best apps on iOS to implmenet 3D Touch in the way that it's suppose to be. Way to go Tapbots team! If you haven't already, buy the latest version and best twitter client now, Tweetbot 4 only for iOS.

Websites Sharing All Your Data

I've always wondered why over the years or so that one of my favorite websites started to get bogged down by excessive loading times. Now I know exactly why and no it's not your old iPhone / Android phone model.

Holy crap. It took over 30 seconds. In the end, it fetched over 9.5MB across 263 HTTP requests. That's almost an order of magnitude more data & time than needed for the article itself.

Just to put this in some rough perspective: Assuming I had a 1GB / month data plan, I could visit sites like The Verge about 3 times per day before I hit my cap. If I'm lucky, some or most of this will get cached between requests so it won't be quite that bad. In fact, another report tells me that a primed cache yields 8MB transferred - so maybe 4 visits per day.

Read his entire analysis and tell me what you think. It's mind boggling really.

Exposing Holes and Shortcuts in Android

First this (via Reuters):

The change came after security researcher Joshua Drake unveiled what he called Stagefright, hacking software that allows attackers to send a special multimedia message to an Android phone and access sensitive content even if the message is unopened.

then this:

Samsung Vice President Rick Segal acknowledged that his company could not force the telecommunications carriers that buy its devices in bulk to install the fixes and that some might do so only for higher-end users.

Samsung and telecoms taking care of only the top...maybe. And if you use the HTC One Max X and utilize the fingerprint reader (via The Guardian):

Researchers from FireEye have found that data that could be used to clone a user’s fingerprint was stored as an unencrypted “world readable” image file on HTC smartphones.

Four security researchers discovered that the image file, which is clear replica of a user’s fingerprint, could be stolen by rogue apps or hackers.

“While some vendors claimed that they store user’s fingerprints encrypted in a system partition, they put users’ fingerprints in plaintext and in a world readable place by mistake,” the authors wrote. “On the HTC One Max X the fingerprint is saved as /data/dbgraw.bmp with a 0666 permission setting (world readable). Any unprivileged processes or apps can steal user’s fingerprints by reading this file.”

This is why Apple does what it does. I can't say never, but so far, they really are winning when it comes to security and protecting its users.

I'm for Ubiquitous Encryption. Are You?

We believe that the greater public good is a secure communications infrastructure protected by ubiquitous encryption at the device, server and enterprise level without building in means for government monitoring.

I'm a strong supporter in encryption especially in light of the OPM hacks and United Airlines hacks.

Finally, and most significantly, if the United States can demand that companies make available a duplicate key, other nations such as China will insist on the same. There will be no principled basis to resist that legal demand. The result will be to expose business, political and personal communications to a wide spectrum of governmental access regimes with varying degrees of due process.

The perfect point.