Cyberpunk and Witcher hackers claim they’ll auction off stolen source code for millions of dollars

Cyberpunk and Witcher hackers auction off stolen source code for millions of dollars
Cyberpunk 2077 source code is for sale.
www.theverge.com

Nick Statt:

The hackers who targeted video game developer CD Projekt Red (CDPR) with a ransomware attack are now auctioning off the stolen source code they acquired for a payday of potentially millions of dollars.

The breach, which CDPR first disclosed yesterday after learning of it on Monday of this week, involved critical game code related to high-profile releases like The Witcher 3 and Cyberpunk 2077. CDPR said at the time that it had no intention of meeting the hackers’ demands, even if that meant stolen material from the hack began circulating online.

[…]

But a cybersecurity firm called KELA, which specializes in providing threat intelligence to companies based on analyses of dark web websites and communities, says it has reason to believe the auctions are, in fact, legitimate.

“We do believe that this is a real auction by a real seller who accessed the data. The seller offers to use a guarantor and he allows only those who have a deposit to participate — a tactic that is used by many sellers to show that they are serious and to ensure that no scam will occur,” a spokesperson for KELA tells The Verge.

[…]

KELA says the auction is offering source code files for both the Red Engine and CDPR game releases, including The Witcher 3: Wild Hunt, Thronebreaker: The Witcher Tales spinoff, and the recently released Cyberpunk 2077. The stolen material is also believed to include internal documents, though it’s not clear what types of documents or additional material the full cache includes.

KELA says the starting price of the auction is $1 million, with higher bids in increments of $500,000 and a buy-it-now price of $7 million. Only users who deposit 0.1 bitcoin can participate, which is why Kivilevich believes the hackers are serious about hosting the auction and that the material for sale is likely legitimate because it ensures nobody participating in the auction is trying to scam the sellers

Projekt Red just can’t catch a break.

Jeff Bezos Walks Through a One-Way Door, Opening a New Age for Amazon

Bloomberg:

The walls of his highly compartmentalized empire have been crumbling for some time. It’s becoming increasingly difficult to be Jeff Bezos (at least by Bezos’s standards). He presides over a collection of properties that spans not only Amazon but The Washington Post, several philanthropies and a space company, Blue Origin LLC, that lags far behind its chief rival, Elon Musk’s Space Exploration Technologies Corp.

A Cyberpunk 2077 security exploit makes installing mods risky business

A Cyberpunk 2077 security exploit makes installing mods risky business
“Please refrain from using files from unknown sources”
www.theverge.com

CD Projekt Red has warned players that installing Cyberpunk 2077 mods or custom save files on the PC could pose a security risk (via Kotaku). According to the company’s tweet, there’s apparently a “vulnerability in external DLL files the game uses which can be used to execute code on PCs.” The game’s official mod tools were just released last week.

The company warns users not to install files from unknown sources, though as Kotaku points out, that pretty much rules out all mods unless you can read and understand their code. When you’re dealing with a vulnerability that could potentially lead to arbitrary code running on your computer, it’s probably best not to risk it until a fix is available.

This game just can not get a break it seems.

Google killing Tilt Brush VR painting app but…

The Future of Tilt Brush
Tilt Brush, Google’s virtual reality painting application, has collaborated with amazing creators over the years.
opensource.googleblog.com

Tilt Brush, Google’s virtual reality painting application, has collaborated with amazing creators over the years, many of whom were part of our Artist in Residence Program. We have tremendous pride for all those collaborations, and the best part has been watching our community learn from each other and develop their abilities over the years.

As we continue to build helpful and immersive AR experiences, we want to continue supporting the artists using Tilt Brush by putting it in your hands. This means open sourcing Tilt Brush, allowing everyone to learn how we built the project, and encouraging them to take it in directions that are near and dear to them.

I’ve enjoyed using Tilt Brush on the Oculus Quest so will be interesting to see how this continues as an open source project.

Why Is Apple Dropping the Ball on Cloud Gaming?

Cloud Gaming… It’s kind of where things are going. Consoles are great but being able to seamlessly pick up your game and keep playing on other devices makes them even greater.

Google has Stadia, which has been a fantastic cloud gaming experience so far, especially when it can be used on Chromecast, Android devices and from the browser.

Microsoft has xCloud which was bundled into their Gamepass Ultimate which lets you take selected included games you use via Gamepass on your xbox to your Android devices.

Nvidia has GeForce Now, which is one of the first cloud gaming platforms.

Amazon even has their cloud gaming platform Luna that is starting to come out.

And Apple?

Apple has Apple Arcade, which when it was announced, some Apple fans said would blow Stadia out of the water, but since Apple Arcade is really just a pass to play exclusive games via the app store. Google even has this as their Play Pass.

Notice I mentioned Android devices and not iOS devices?Apple gets weird with their cloud gaming rules. Really weird.

According to Apple, the primary reason why it wouldn’t allow Stadia, Gamepass, and GeForce Now into the App Store is this: its App Store rules require developers to submit each and every game individually so they can be reviewed and listed as apps in Apple’s App Store. If they didn’t want to do that, then they were out.

Back in September, Apple added these rules:

4.9.1: Each streaming game must be submitted to the App Store as an individual app so that it has an App Store product page, appears in charts and search, has user ratings and review, can be managed with ScreenTime and other parental control apps, appears on the user’s device, etc.

4.9.2 Streaming game services may offer a catalog app on the App Store to help users sign up for the service and find the games on the App Store, provided that the app adheres to all guidelines, including offering users the option to pay for a subscription with in-app purchase and use Sign in with Apple. All the games included in the catalog app must link to an individual App Store product page.

“What’s so wrong with listing cloud games on the App Store,” you might wonder? Well, it’s a whole lot of work with little benefit for Microsoft and Google, to start.

They have to individually submit every single game, create App Store pages for each one, and hand the customer relationship to Apple — instead of just beaming their ready-made platform into an iOS device the same way they beam it into an Android device right now.

Oh, and then there’s rule 3.1.2(a):

3.1.2(a): Games offered in a streaming game service subscription must be downloaded directly from the App Store, must be designed to avoid duplicate payment by a subscriber, and should not disadvantage non-subscriber customers.

Ok, let’s start with “downloaded directly from the App Store”,  Apple doesn’t mean that games have to run locally on the iPhone — they can still be thin-client cloud games harnessing the power of remote servers to produce AAA graphics.

We have seen this already with Square Enix using a service called G-cluster to wrap a thin-client cloud game like Final Fantasy XIII on the App Store

But the point of cloud gaming is that you want to jump directly into a game within one app, like they do with movies or songs and not have to download over 100 apps to play different games from the cloud.

Why all the hate on cloud gaming from Apple?

Why doesn’t Apple require other subscription services to do this? Netflix? Prime? Youtube? Spotify? Twitch?  Why aren’t they under the same restrictions as gaming?

I guess this is getting into rant territory but really, what is with the hate?

Apple is astonishingly confident in its new M1 Mac processors

Apple is astonishingly confident in its new M1 Mac processors
Big promises — can Apple deliver?
www.theverge.com

Apple’s big Mac event delivered three new computers — a new MacBook Air, a new entry-level 13-inch MacBook Pro, and a new Mac mini. But really, it delivered one thing that those three computers have in common: the M1 chip. That’s the official name for the Arm-based Apple Silicon the company is going to migrate all of its Mac computers over to.

[…]

Here’s my takeaway: Apple is astonishingly confident in this chip, these computers, and the software it has developed to ensure they all run well.

First, Apple is making battery claims that I would characterize as “bombastic at best” if they were applied to a laptop with an Intel chip inside. With this M1 chip, I have no frame of reference at all except for Apple’s claims — which are substantial.

Apple claims 18 hours of video playback on the MacBook Air and 20 hours on the MacBook Pro. Video playback is a bad metric (especially since modern chips are optimized for it), so the real thing to note is those claims are significantly higher than what Apple claimed on their Intel-based predecessors: 6 more on the Air and nearly double on the Pro.

Since the M1 is based on the Arm architecture, Apple needs an extra software layer to run apps designed for Intel chips — it’s called Rosetta 2. The very idea of emulated x86 apps on an Arm processor gives me hives. The experience of emulated Intel apps inside Arm on Windows is not great. But Apple says that for certain graphically-intensive apps it can get better performance on an app running through Rosetta 2 than it did on an equivalent Intel chip.

[…]

I’m less sure what the plan will be for graphics. The M1 chip has an integrated GPU, and on Intel machines that usually means sub-par graphics. We’ll need to see what the reviews for these machines say, but again Apple is exuding confidence. Going forward, though, I do wonder whether discrete GPUs are in the cards, especially since Apple is also touting the benefits of sharing RAM across both the CPU and GPU in its integrated system.

Those are all interesting questions, but Apple has two years to answer them — that’s how long it says this transition will take. Right now the company is already selling and will soon be shipping these new computers. I can’t wait to see if Apple’s confidence is justified by the performance and battery life of these computers. If it is, the M1 chip will be a huge indictment of Intel, Qualcomm, and even Microsoft — each for different reasons.

It’s been a long time since a company has both promised and then delivered a step-change improvement in laptop computers. As of this moment we have a big promise, now let’s see if Apple can deliver.

The new iPad Air

Apple unveils all-new iPad Air with A14 Bionic, Apple’s most advanced chip
Apple today introduced an all-new iPad Air — the most powerful, versatile, and colorful iPad Air ever.
www.apple.com

Cupertino, California — Apple today introduced an all-new iPad Air — the most powerful, versatile, and colorful iPad Air ever. Now available in five gorgeous finishes, iPad Air features an all-screen design with a larger 10.9-inch Liquid Retina display, camera and audio upgrades, a new integrated Touch ID sensor in the top button, and the powerful A14 Bionic for a massive boost in performance, making this by far the most powerful and capable iPad Air ever made.

The new iPad Air will be available starting next month.

“Today we’re excited to introduce a completely redesigned and far more powerful iPad Air, debuting Apple’s most powerful chip ever made, the A14 Bionic,” said Greg Joswiak, Apple’s senior vice president of Worldwide Marketing.

“With its gorgeous new all-screen design, larger 10.9-inch Liquid Retina display, next-generation Touch ID, and a massive boost in performance with A14 Bionic, the new iPad Air brings customers powerful pro features at an even more affordable price. Along with major upgrades to the iPad Pro and eighth-generation iPad this year, and the powerful new features of iPadOS 14, this is our strongest iPad lineup ever, giving our customers even more ways to enrich their daily lives.”

[..]

The new iPad Air features a completely new thin and light design in five gorgeous finishes: silver, space gray, rose gold, green, and sky blue. The new all-screen design features a larger 10.9-inch Liquid Retina display for a stunning visual experience, with 3.8 million pixels and advanced technologies, including full lamination, P3 wide color support, True Tone, and an anti-reflective coating for an amazing visual experience.

To allow the display to extend on all sides, a next-generation Touch ID sensor is integrated into the top button, providing the same fast, easy, and secure way to unlock iPad Air, log in to apps, or use Apple Pay that customers know and love. iPad Air is compatible with Magic Keyboard and its floating design, and built-in trackpad, Smart Keyboard Folio, and new Smart Folio covers, as well as Apple Pencil, which attaches magnetically to the side for easy pairing, charging, and storing.

iPad Air delivers a massive boost in performance with Apple’s most advanced chip, A14 Bionic. Handling even the most demanding apps, A14 Bionic makes it even easier for users to edit 4K videos, create gorgeous works of art, play immersive games, and more. Using breakthrough 5-nanometer process technology, A14 Bionic is packed with 11.8 billion transistors for increased performance and power efficiency in nearly every part of the chip.

Joanna Stern on the Surface Duo

Microsoft Surface Duo Review: Two Screens, Too Many Problems
Microsoft’s new phone-tablet provides a glimpse of what is ahead for mobile devices, if you can look past the slow performance and buggy software.
www.wsj.com

It isn’t always clear when something is ready.

Take my grilling. Sometimes I remove steak well before or after I should’ve. You might say it’s a “tough” call. But there’s nothing tough about stating this: The new two-screen Surface Duo is undercooked.

Microsoft’s new $1,400 book-like phone-tablet thingy is not ready for me and not ready for you.

Unless, of course, you want an Android device that repeatedly ignores your taps on its screens, randomly slows down, struggles to figure out its own up, down and sideways positioning, and abruptly rearranges parts of its own interface. If that is your dream, well, then it is ready.

Somehow, Microsoft disagrees. “We had been testing for some time. We wanted to get it out. We thought this was the right time for us,” said Matt Barlow, Microsoft’s corporate vice president of modern life, search and devices.

The device, which begins shipping on Thursday, has already received one software update that has rectified some of the bugs I’ve experienced. Additional fixes related to the performance and software quirks I’ve been experiencing are said to be coming. “Monthly updates will continue to improve the experience,” Mr. Barlow added.

John Gruber said it well in his own review of Joanna’s review:

This is exactly what I thought when they let the first round of YouTuber reviews come out under the condition that they not turn the devices on. The hardware really is well-designed and the concept is both fascinating and original. But if the experience were actually good, you wouldn’t do a round of reviews that forbade talking about the actual experience.

Stern’s video, as usual, is extremely good, too — and she gives a very fair shake to the Duo for what is good and clever about it. But the bugginess of the software really makes clear why it’s better (necessary?) to control the OS when you want to invent a new form factor.

The fact that the camera is subpar is to me a dealbreaker for a $1,400 phone. I can’t shake the feeling that despite the fact that the Surface Duo is itself a phone — not just a folding tablet that can use a SIM card for cellular data — that Microsoft sees this as something one might carry in addition to a dedicated phone (with a better camera).

Also, I saw a couple of TV ads for the Surface Duo yesterday while watching football — Microsoft is marketing this.

Why you can no longer install Fortnite on iOS

Why you can no longer install Fortnite on iOS
Reinstalling Fortnite on an iOS device was an easy process — until Apple pulled the plug.
www.theverge.com

Fortnite disappeared from the App Store last month as part of developer Epic Games’ big legal and regulatory showdown with Apple, but the battle royale hit was not gone entirely — at least not for a little while. Apple terminated Epic’s developer account last week, making it impossible to reinstall iOS versions of Epic’s apps, but there was a short period of time during which iPhone and iPad owners were still able to get their hands on Fortnite using a lesser-known feature of iOS.

[…]

As part of Apple’s termination of Epic’s developer account, Epic is no longer able to submit new apps to the App Store or issue updates to any existing ones. And with the apps completely delisted, they can’t be reinstalled even if you search for and find them in your purchase history. Trying to do so just results in a message reading, “This item is no longer available.”

There’s no telling how long this Fortnite struggle will persist or whether Epic will ever decide to give in to Apple’s demands and remove its own in-app payment method. As of right now, you can still take Epic up on its price cut offer by paying less for Fortnite V-bucks. But you’re no longer able to buy the new season’s battle pass because Epic can’t update the app properly.

The Apple / Epic Games battle has been interesting to watch.