Juli Clover (no release notes, no security, enterprise, no developer, full installer, IPSW): macOS Tahoe 26.4.1 addresses an issue that could cause the M5 MacBook Air and M5 Pro/Max MacBook Pro models to fail to join 802.1X Wi-Fi networks when using content filter extensions. See also Mr. Macintosh and Howard Oakley. Previously: macOS 26.4 MacBook […]

Juli Clover (iOS/iPadOS release notes, no security, enterprise, no developer): According to Apple’s release notes, the software updates contain unspecified “bug fixes.” Benjamin Mayo: While the official release notes were vague, a thread on the developer forums indicates it actually fixes a significant bug related to iCloud data syncing. Developers had noticed that iPhones running […]

Thijs Xhaflaire (via Andrew Orr): Unlike traditional ClickFix campaigns that instruct users to paste commands directly into Terminal, the discovered variant uses a browser-triggered workflow to launch Script Editor. […] The page leverages an applescript:// URL scheme Clicking the “Execute” button invokes this URL scheme from the browser The browser prompts the user to allow […]

“thenickdude”, on Reddit:

They’re using this to detect if you have Creative Cloud already installed when you visit on their website.

When you visit https://www.adobe.com/home, they load this image using JavaScript:

https://detect-ccd.creativecloud.adobe.com/cc.png

If the DNS entry in your hosts file is present, your browser will therefore connect to their server, so they know you have Creative Cloud installed, otherwise the load fails, which they detect.

They used to just hit http://localhost:<various ports>/cc.png which connected to your Creative Cloud app directly, but then Chrome started blocking Local Network Access, so they had to do this hosts file hack instead.

(Via Thom Holwerda at OSNews.)

They didn’t have to do this, of course. In fact, quite obviously, they definitely should not be doing this. Adobe is just a third-party developer, no better, no more trusted, no more important than any other. Imagine if every piece of software on your computer added entries to your /etc/hosts file. Madness. Adobe should be ashamed of themselves. Adobe used to be a bastion of best practices for developers to follow. Now their installer/updater is indistinguishable from malware.

See also: Marc Edwards on Mastodon, and Michael Tsai.

Acting Attorney General Todd Blanche, speaking of the president of the United States in a totally normal way:

I love working for President Trump. It’s the greatest honor of a lifetime. And if President Trump chooses to nominate somebody else and asks me to go do something else, I’ll say, “Thank you very much, I love you, sir.”

The phrase Blanche was looking for is “Thank you sir, may I have another.”