An anonymous reader quotes a report from Ars Technica: Amnesty International on Friday said it determined that a zero-day exploit sold by controversial exploit vendor Cellebrite was used to compromise the phone of a Serbian student who had been critical of that country's government. [...] The chain exploited a series of vulnerabilities in device drivers the Linux kernel uses to support USB hardware. "This new case provides further evidence that the authorities in Serbia have continued their campaign of surveillance of civil society in the aftermath of our report, despite widespread calls for reform, from both inside Serbia and beyond, as well as an investigation into the misuse of its product, announced by Cellebrite," authors of the report wrote.

Amnesty International first discovered evidence of the attack chain last year while investigating a separate incident outside of Serbia involving the same Android lockscreen bypass. [...] The report said that one of the vulnerabilities, tracked as CVE-2024-53104, was patched earlier this month with the release of the February 2025 Android Security Bulletin. Two other vulnerabilities -- CVE-2024-53197 and CVE-2024-50302 -- have been patched upstream in the Linux kernel but have not yet been incorporated into Android. Forensic traces identified in Amnesty International's analysis of the compromised phone showed that the Serbian authorities tried to install an unknown application after the device had been unlocked. The report authors said the installation of apps on Cellebrite-compromised devices was consistent with earlier cases the group has uncovered in which spyware tracked as NoviSpy spyware were installed.

As part of the attack, the USB port of the targeted phone was connected to various peripherals during the initial stages. In later stages, the peripherals repeatedly connected to the phone so they could "disclose kernel memory and groom kernel memory as part of the exploitation." The people analyzing the phone said the peripherals were likely special-purpose devices that emulated video or sound devices connecting to the targeted device. The 23-year-old student who owned the phone regularly participates in the ongoing student protests in Belgrade. Any Android users who have yet to install the February patch batch should do so as soon as possible.

Cellebrite says it has stopped Serbia from using its technology following allegations that Serbian police and intelligence used Cellebrite's technology to unlock the phones of a journalist and an activist, and then plant spyware. From a report: In December 2024, Amnesty International published a report that accused Serbian police of using Cellebrite's forensics tools to hack into the cellphones of a local journalist and an activist. Once their phones were unlocked, Serbian authorities then installed an Android spyware, which Amnesty called Novispy, to keep surveilling the two.

In a statement, Cellebrite said that "after a review of the allegations brought forth by the December 2024 Amnesty International report, Cellebrite took precise steps to investigate each claim in accordance with our ethics and integrity policies. We found it appropriate to stop the use of our products by the relevant customers at this time."

Denmark is set to ban mobile phones in schools and after-school clubs, following a government commission's recommendation that children under 13 should not have their own smartphones. The Guardian reports: The government said it would change existing legislation to force all folkeskole -- comprehensive primary and lower secondary schools -- to become phone-free, meaning that almost all children aged between seven and 16-17 will be required by law not to bring their phones into school. The announcement marks a U-turn by the government, which had previously refused to introduce such a law. It comes as governments across Europe are trying to impose tighter regulations on children's access to phones and social media.

The Danish wellbeing commission was set up by the prime minister, Mette Frederiksen, in 2023 to investigate growing dissatisfaction among children and young people. Its long-awaited report, published on Tuesday, raised the alarm over the digitisation of children and young people's lives and called for a better balance between digital and analogue life. Among its 35 recommendations was the need for government legislation banning phones from schools and after-school clubs.

The minister for children and education, Mattias Tesfaye, told Politiken: "There is a need to reclaim the school as an educational space, where there is room for reflection and where it is not an extension of the teenage bedroom." There will be scope for local authorities to make exceptions, including for children with special educational needs, but he said mobile phones and personal tablets "do not belong in school, neither during breaks nor during lessons." He said the government had started preparing a legislative amendment.

AT&T and Verizon have successfully completed their first cellphone-to-satellite video calls using AST SpaceMobile's satellites, marking a significant step toward commercial satellite networks. The Verge reports: Verizon has completed its first cellphone-to-satellite video call, while AT&T has completed its first using satellites that will be used as part of a commercial network. [...] Verizon pulled off "a live video call between two mobile devices with one connected via satellite and the other connected via Verizon's terrestrial network connection," according to a company press release.

In AT&T's case, "AT&T and AST SpaceMobile have successfully completed another video call by satellite to an everyday smartphone over AT&T spectrum," per AT&T's press release. Both phone companies relied on AST's constellation of five BlueBird satellites that were launched last September for the tests. AT&T's initial video call test happened in June 2023.

An anonymous reader quotes a report from VentureBeat: A new startup PIN AI (not to be confused with the poorly reviewed hardware device the AI Pin by Humane) has emerged from stealth to launch its first mobile app, which lets a user select an underlying open-source AI model that runs directly on their smartphone (iOS/Apple iPhone and Google Android supported) and remains private and totally customized to their preferences. Built with a decentralized infrastructure that prioritizes privacy, PIN AI aims to challenge big tech's dominance over user data by ensuring that personal AI serves individuals -- not corporate interests. Founded by AI and blockchain experts from Columbia, MIT and Stanford, PIN AI is led by Davide Crapis, Ben Wu and Bill Sun, who bring deep experience in AI research, large-scale data infrastructure and blockchain security. [...]

PIN AI introduces an alternative to centralized AI models that collect and monetize user data. Unlike cloud-based AI controlled by large tech firms, PIN AI's personal AI runs locally on user devices, allowing for secure, customized AI experiences without third-party surveillance. At the heart of PIN AI is a user-controlled data bank, which enables individuals to store and manage their personal information while allowing developers access to anonymized, multi-category insights -- ranging from shopping habits to investment strategies. This approach ensures that AI-powered services can benefit from high-quality contextual data without compromising user privacy. [...] The new mobile app launched in the U.S. and multiple regions also includes key features such as:

- The "God model" (guardian of data): Helps users track how well their AI understands them, ensuring it aligns with their preferences.
- Ask PIN AI: A personalized AI assistant capable of handling tasks like financial planning, travel coordination and product recommendations.
- Open-source integrations: Users can connect apps like Gmail, social media platforms and financial services to their personal AI, training it to better serve them without exposing data to third parties.
- "With our app, you have a personal AI that is your model," Crapis added. "You own the weights, and it's completely private, with privacy-preserving fine-tuning." Davide Crapis, co-founder of PIN AI, told VentureBeat that the app currently supports several open-source AI models, including small versions of DeepSeek and Meta's Llama. "With our app, you have a personal AI that is your model," Crapis added. "You own the weights, and it's completely private, with privacy-preserving fine-tuning."

You can sign up for early access to the PIN AI app here.

Longtime Slashdot reader theodp writes: Monday brought chilling news reports of the all-count trial convictions of three individuals for a conspiracy to rob and drug people outside of LGBTQ+ nightclubs in Manhattan's Hell's Kitchen neighborhood, which led to the deaths of two of their victims. The defendants were found guilty on all 24 counts, which included murder, robbery, burglary, and conspiracy. "As proven at trial," explained the Manhattan District Attorney's Office in a press release, "the defendants lurked outside of nightclubs to exploit intoxicated individuals. They would give them drugs, laced with fentanyl, to incapacitate their victims so they could take the victims' phones and drain their online financial accounts [including unauthorized charges and transfers using Cash App, Apple Cash, Apple Pay]." District Attorney Alvin L. Bragg, Jr. added, "My Office will continue to take every measure possible to protect New Yorkers from this type of criminal conduct. That includes ensuring accountability for those who commit this harm, while also working with financial companies to enhance security measures on their phone apps."

In 2024, D.A. Bragg called on financial companies to better protect consumers from fraud, including: adding a second and separate password for accessing the app on a smartphone as a default security option; imposing lower default limits on the monetary amount of total daily transfers; requiring wait times of up to a day and secondary verification for large monetary transactions; better monitoring of accounts for unusual transfer activities; and asking for confirmation when suspicious transactions occur. "No longer is the smartphone itself the most lucrative target for scammers and robbers -- it's the financial apps contained within," said Bragg as he released letters (PDF) sent to the companies that own Venmo, Zelle, and Cash App. "Thousands or even tens of thousands can be drained from financial accounts in a matter of seconds with just a few taps. Without additional protections, customers' financial and physical safety is being put at risk. I hope these companies accept our request to discuss commonsense solutions to deter scammers and protect New Yorkers' hard-earned money."

"Our cellphones aren't safe," warned the EFF's Cooper Quintin in a 2018 New York Times op-ed. "So why aren't we fixing them?" Any thoughts on what can and should be done with software, hardware, and procedures to stop "bank jackings"?

Today T-Mobile announced what they're calling "the next big thing in wireless" — T-Mobile Starlink. But the real surprise is "The beta is now open for absolutely everyone — yes, even Verizon and AT&T customers — to register for free access until July."

And, as they explained to Americans watching the Super Bowl, "If you can see the sky you're connected." Now in public beta, this breakthrough service, developed in partnership with Starlink, uses straight-out-of-a-sci-fi-movie satellite and mobile communications technology to help keep people connected — even you, Verizon and AT&T customers — in the more than 500,000 square miles of the country unreached by any carrier's earth-bound cell towers. That's nearly the size of two Texases...! The beauty of the service is its simplicity: users don't need to do anything out of the ordinary. When a user's cell phone gets out of range of a cell tower, the phone automatically connects to the T-Mobile Starlink network. No need to manually connect. Messages are sent and received just as they are today on a traditional network, even group texts and reactions. And it works on most smartphones from the last four years. It's not limited to a few smartphones or operating systems...

The beta is free until July at which point T-Mobile Starlink will be included at no extra cost on Go5G Next (including variations like Go5G Next 55+), T-Mobile's best plan. Business customers will also get T-Mobile Starlink at no extra cost on Go5G Business Next, first responder agencies on T-Priority plans and other select premium rate plans. T-Mobile customers on any other plan can add the service for $15/month per line. Through February, T-Mobile customers who have registered for the beta can secure a $10/month per line Early Adopter Discount, 33% off the full price.

AT&T and Verizon customers hate dead zones, too

When your service is amazing and different, you want as many people to try it as possible. T-Mobile is giving AT&T and Verizon customers the opportunity to try out T-Mobile Starlink satellite service on their existing phones... During the beta period, Verizon and AT&T customers can experience T-Mobile Starlink text messaging for free, and once the service launches in July, it will be available for $20/month per line... More details and consumer registration can be found here.

A Vision for Universal Coverage

As T-Mobile and Starlink continue to work towards eliminating mobile deadzones, the companies welcome wireless providers from around the world to join their growing alliance, which aims to provide reciprocal roaming for all participating carriers. So far, KDDI (Japan), Telstra (Australia), Optus (Australia), One NZ (New Zealand), Salt (Switzerland), Entel (Chile & Peru), Rogers (Canada) and Kyivstar (Ukraine) are among the providers that have signed on to join the cause and launch satellite-to-mobile technology. Learn more about the alliance and how providers can join at direct.starlink.com.

Longtime Slashdot reader AmiMoJo shares a report from the BBC: Banning phones in schools is not linked to pupils getting higher grades or having better mental wellbeing, the first study of its kind suggests. Students' sleep, classroom behavior, exercise or how long they spend on their phones overall also seems to be no different for schools with phone bans and schools without, the academics found. But they did find that spending longer on smartphones and social media in general was linked with worse results for all of those measures.

The first study in the world to look at school phone rules alongside measures of pupil health and education feeds into a fierce debate that has played out in homes and schools in recent years. [...] The University of Birmingham's findings, peer-reviewed and published by the Lancet's journal for European health policy, compared 1,227 students and the rules their 30 different secondary schools had for smartphone use at break and lunchtimes. The schools were chosen from a sample of 1,341 mainstream state schools in England.

The paper says schools restricting smartphone use did not seem to be seeing their intended improvements on health, wellbeing and focus in lessons. However, the research did find a link between more time on phones and social media, and worse mental wellbeing and mental health, less physical activity, poorer sleep, lower grades and more disruptive classroom behavior. The study used the internationally recognized Warwick-Edinburgh Mental Wellbeing Scales to determine participants' wellbeing. It also looked at students' anxiety and depression levels. Dr Victoria Goodyear, the study's lead author, told the BBC the findings were not "against" smartphone bans in schools, but "what we're suggesting is that those bans in isolation are not enough to tackle the negative impacts."

She said the "focus" now needed to be on reducing how much time students spent on their phones, adding: "We need to do more than just ban phones in schools."

An anonymous reader quotes a report from Ars Technica: Robocallers posing as employees of the Federal Communications Commission made the mistake of trying to scam real employees of the FCC, the FCC announced yesterday. "On the night of February 6, 2024, and continuing into the morning of February 7, 2024, over a dozen FCC staff and some of their family members reported receiving calls on their personal and work telephone numbers," the FCC said. The calls used an artificial voice that said, "Hello [first name of recipient] you are receiving an automated call from the Federal Communications Commission notifying you the Fraud Prevention Team would like to speak with you. If you are available to speak now please press one. If you prefer to schedule a call back please press two."

You may not be surprised to learn that the FCC does not have any "Fraud Prevention Team" like the one mentioned in the robocalls, and especially not one that demands Google gift cards in lieu of jail time. "The FCC's Enforcement Bureau believes the purpose of the calls was to threaten, intimidate, and defraud," the agency said. "One recipient of an imposter call reported that they were ultimately connected to someone who 'demand[ed] that [they] pay the FCC $1,000 in Google gift cards to avoid jail time for [their] crimes against the state.'" The FCC said it does not "publish or otherwise share staff personal phone numbers" and that it "remains unclear how these individuals were targeted." Obviously, robocallers posing as FCC employees probably wouldn't intentionally place scam calls to real FCC employees. But FCC employees are just as likely to get robocalls as anyone else. This set of schemers apparently only made about 1,800 calls before their calling accounts were terminated.

The FCC described the scheme yesterday when it announced a proposed fine of $4,492,500 against Telnyx, the voice service provider accused of carrying the robocalls. The FCC alleges that Telnyx violated "Know Your Customer (KYC)" rules by providing access to calling services without verifying the customers' identities. When contacted by Ars today, Telnyx denied the FCC's allegations and said it will contest the proposed fine.

A proposed class-action lawsuit accuses Amazon of secretly tracking consumers' movements through their cellphones via its Amazon Ads SDK embedded in third-party apps, allegedly collecting sensitive geolocation data without consent. The complaint, filed by a California resident in a San Francisco federal court, claims Amazon violated state laws on unauthorized computer access in the process. Reuters reports: This allegedly enabled Amazon to collect an enormous amount of timestamped geolocation data about where consumers live, work, shop and visit, revealing sensitive information such as religious affiliations, sexual orientations and health concerns. "Amazon has effectively fingerprinted consumers and has correlated a vast amount of personal information about them entirely without consumers' knowledge and consent," the complaint said.

The complaint was filed by Felix Kolotinsky of San Mateo, California, who said Amazon collected his personal information through the "Speedtest by Ookla" app on his phone. He said Amazon's conduct violated California's penal law and a state law against unauthorized computer access, and seeks unspecified damages for millions of Californians.

A new update to CVS's mobile app includes a feature that allows some customers to access items on locked shelves using their phone -- "without having to summon an overworked employee to open it first," reports The Verge. The feature is currently being trialed in a handful of stores, but will be expanded to many more locations later this year if it goes well. From the report: According to The Wall Street Journal, "app users need to be logged in, on the local store Wi-Fi, and with their device's Bluetooth enabled to activate the feature." You've also got to be a member of the CVS loyalty program if you want the convenience of grabbing secured merchandise without calling for help. Signing up for that gives CVS plenty of insight into your shopping habits, so keep that in mind as you weigh the convenience of not waiting around.

"People really, really dislike locked cabinets," Tilak Mandadi, executive vice president of ventures at CVS Health, told the Journal. Walmart has apparently come to the same realization, as the massive US retailer conducted a similar test last year. CVS aims to expand the program to around 15 stores soon and eventually reach national availability if all goes well.

TikTok is still not available for download from U.S.-based app stores, reports CBS News. So "Some fast-acting entrepreneurs are selling phones with TikTok preloaded on devices for thousands of dollars online." The Associated Press notes that New York-based Nicholas Matthews "listed an iPhone 14 Plus with TikTok for $10,000. As of Friday, Matthews said his highest bid was for $4,550."

Another example from The New York Times: An information technology engineer, Mr. Gustab listed his iPhone 15 Pro with TikTok downloaded onto it for $3,000 on Facebook Marketplace. That's about three times the cost of a brand-new iPhone 16 Pro. On Thursday night, he had an offer for $1,200, still more than almost every brand-new iPhone and nearly twice as much as a refurbished iPhone 15 Pro without TikTok.
Business Insider reports the search term iPhone TikTok "yielded more than 45,000 results" on eBay...

Longtime Slashdot reader shanen writes: What matters to you when buying a new smartphone? How can we make the recurring topic relevant without more SCREAMS about "dupe"? I do have a bit of recent research I could share -- quite a bit of fresh data since my latest search started a couple of months ago. Or perhaps I could start with a summary of the useful bits from an ancient Ask Slashdot discussion about batteries?

Seems funny to ask about relevant books, even though two come to mind already. One is The Anxious Generation by Jonathan Haidt, where he argues that smartphone use by preadolescents is destroying their personalities. The other is Antifragile by Nassim Nicholas Taleb, who doesn't actually say much about them, but I still think they should have been included in the the big table of examples at the end of the prologue. The "system" of smartphones is antifragile, even though the earliest models were quite fragile. The essence of this question is about which current smartphone models are the most robust...

Maybe I should include a list of my own criteria so far? However, would would just be responses to the problems with my current Samsung Galaxy and the Oppo I had before that. I've already determined that the two main problems with those models don't exist with any of the current options offered by my phone company... And the ancient battery problems are still lurking, too.

At Galaxy Unpacked today in San Jose, California, Samsung unveiled the new Galaxy S25 series of flagship smartphones loaded with AI capabilities and LLMs. "Currently, the Galaxy S25 range is comprised of the Galaxy S25 ($800), Galaxy S25+ ($1,000), and Galaxy S25 Ultra ($1,300)," reports Wired. "The phones are available for preorder today and will officially go on sale February 7." Since the hardware is relatively unchanged from last year's Galaxy S24 series, here's what Wired has to say about the new AI smarts: The Galaxy S25 is a tale of two AIs: Gemini and Bixby. Yes, while Google's Gemini AI assistant sits at the forefront -- it can finally be triggered through a long press of the power button-- Samsung is bringing its original Bixby voice assistant out from the shadows. Bixby has been enhanced with large language models but is still designed to handle phone functions, like changing device settings. Gemini is meant to be used for general web queries and more complex actions. You can even have two hot words, one for each assistant. I foresee all of this being confusing [...].

The highlight AI feature debuting on the Galaxy S25 series is "cross-app experiences." These are tasks you can ask Gemini to perform, even if the task requires multiple apps. For example, you can ask for the schedule of this season's Arsenal matches and then add it to your calendar; Gemini will then search and add every Arsenal FC game in the season to your schedule. Or you can ask it to find pet-friendly vegan restaurants nearby and text the list to a friend. It even works with images too -- snap a pic of your fridge and ask Gemini to find you a recipe based on the available ingredients. These cross-app experiences work with Google apps, Samsung's Galaxy apps, and select third-party apps, like WhatsApp and Spotify.

All these AI features have culminated in a new app: Now Brief. Samsung calls this proactive assistance (remember Google's Now on Tap?) where a morning brief arrives with the weather, upcoming calendar events, stock details, news articles, and suggestions to trigger routines. There's also an evening brief with a summary of the day's events with photos. Since the feature can plug into email, it'll send reminders about expiring coupons and upcoming travel tickets. Samsung claims it can even suggest changing an 8:45 am alarm even earlier if it sees a 9 am meeting on the schedule. On the lock screen, a "Now Bar" widget persists at the bottom, much like Apple's Live Activities. It'll offer quick access to the Now Brief app, but it will also show updates for favorite sports teams, along with glanceable directions from Google Maps.

The rest of the AI features are playing a bit of catch-up to Apple and Google's Pixel phones. There's Drawing Assist, a generative AI tool to craft new images in different art styles based on sketches or text prompts. AI Select works with the S Pen stylus on the S25 Ultra and understands what is selected -- for example, if a video is selected, it will suggest turning it into a GIF. Audio Eraser is an editing tool to cut out background noise in videos post-capture, canceling out the sound of a crowd's chatter or an ambulance's siren. Finally, Samsung's Generative Edit feature, which lets you erase unwanted objects in images, now works locally on the device and is much more accurate and faster. A full list of specs can be found here. You can watch a recording of the event on YouTube.

New Jersey Governor Phil Murphy called for a statewide ban on cellphones in K-12 classrooms during his State of the State address on Tuesday, citing concerns over student distraction and mental health. The Democratic governor, in his final year in office, also proposed full salary payments for state workers using parental leave and expanded full-day pre-K programs across the state.

The cellphone initiative follows similar restrictions in seven other states, including California and Florida. A Pew Research poll showed 68% of U.S. adults support classroom phone bans, with 72% of teachers calling the devices a major distraction. "Mobile devices are fueling a rise in cyberbullying and making it incredibly difficult for our kids to learn," Murphy told state legislators.

"What if they ban TikTok and people keep using it anyway?" asks the New York Times, saying a pending ban in America "is vague on how it would be enforced" Some experts say that even if TikTok is actually banned this month or soon, there may be so many legal and technical loopholes that millions of Americans could find ways to keep TikTok'ing. The law is "Swiss cheese with lots of holes in it," said Glenn Gerstell, a former top lawyer at the National Security Agency and a senior adviser at the Center for Strategic and International Studies, a policy research organization. "There are obviously ways around it...." When other countries ban apps, the government typically orders internet providers and mobile carriers to block web traffic to and from the blocked website or app. That's probably not how a ban on TikTok in the United States would work. Two lawyers who reviewed the law said the text as written doesn't appear to order internet and mobile carriers to stop people from using TikTok.

There may not be unanimity on this point. Some lawyers who spoke to Bloomberg News said internet providers would be in legal hot water if they let their customers continue to use a banned TikTok. Alan Rozenshtein, a University of Minnesota associate law professor, said he suspected internet providers aren't obligated to stop TikTok use "because Congress wanted to allow the most dedicated TikTok users to be able to access the app, so as to limit the First Amendment infringement." The law also doesn't order Americans to stop using TikTok if it's banned or to delete the app from our phones....

Odds are that if the Supreme Court declares the TikTok law constitutional and if a ban goes into effect, blacklisting the app from the Apple and Google app stores will be enough to stop most people from using TikTok... If a ban goes into effect and Apple and Google block TikTok from pushing updates to the app on your phone, it may become buggy or broken over time. But no one is quite sure how long it would take for the TikTok app to become unusable or compromised in this situation.
Users could just sideload the app after downloading it outside a phone's official app store, the article points out. (More than 10 million people sideloaded Fortnite within six weeks of its removal from Apple and Google's app stores.) And there's also the option of just using a VPN — or watching TikTok's web site.

(I've never understood why all apps haven't already been replaced with phone-optimized web sites...)

The OnePlus 13 launched in the North American market today, making it the first flagship smartphone of 2025. As the smartphone market continues to consolidate, it has become increasingly difficult for non-Samsung, Google, and Apple devices to gain significant traction in the competitive U.S. market. Nevertheless, OnePlus has continually released premium flagship-tier devices at relatively modest price points, hoping to pry users away from the Big Tech monoliths.

The OnePlus 13 features Qualcomm's latest Snapdragon 8 Elite chipset, up to 16GB of RAM, a 6.82" QHD+ OLED display, a triple Hasselblad-branded camera system, a massive 6,000mAh battery, and support for 5G networks across all major carriers in the U.S. and Canada. A full list of specifications can be found here.

Based on the early reviews, the OnePlus 13 appears to set the bar high with not a lot of faults to highlight among reviewers. Here are some of our favorite reviews published today:

OnePlus 13 review: finally, a flagship that can hang (The Verge)
OnePlus 13 review: I'm dumbfounded, I can't find anything wrong with this phone (TechRadar)
OnePlus 13 Review: Ship Shape? (Michael Fisher)
OnePlus 13 Review: The Bar Has Been Set! (Marques Brownlee)
The OnePlus 13 is finally a OnePlus flagship I trust to do it all (Android Authority)
OnePlus 13 Review: 2025's First Flagship Finds Success (Forbes)
OnePlus 13 review: The complete package (BGR)
The OnePlus 13 sets a new bar for smartphone performance (Business Insider)

This is not a Slashvertisement. We just like shiny, new tech.

The head of America's FCC "has drafted plans to regulate the cybersecurity of telecommunications companies," reports the Washington Post, and the plans could include financial penalties phone network operators with insufficient security — "the first time the agency has asserted such powers under federal wiretapping law." Rosenworcel said the FCC's authority in this matter comes from Section 105 of the Communications Assistance for Law Enforcement Act [passed in 1994] — a single sentence that stipulates, without elaboration, that telecommunications carriers should ensure systems security "in accordance with regulations prescribed by the Commission." As one of the measures, she is seeking to require network providers to submit an annual certification to the FCC that they are implementing a cybersecurity risk management plan. In addition to imposing fines, the FCC could coordinate with other agencies to pursue criminal penalties against carriers deemed too careless on cybersecurity...

Biden administration officials said voluntary efforts to protect against aggressive Chinese hacking activity have fallen short. "We've had for the last decade voluntary public-private partnership efforts," Neuberger told The Post in a recent interview. "But we continue to see successful breaches, and in many cases, as with ransomware attacks, we continue to see pretty basic cybersecurity practices not being followed." With China's hackers becoming more brazen, pre-positioning themselves in U.S. critical networks, "we need to lock our digital doors," Neuberger said...

Cyber requirements can make a difference, she said. After the Colonial Pipeline ransomware attack in 2021 shut down one of the nation's largest energy pipelines for several days, creating a national security scare, the Transportation Security Administration issued several security directives, and today, all of the country's several dozen critical pipeline companies are in compliance, she said. Similar directives were subsequently issued for rail and aviation sectors, and the compliance rates in those industries are now at 68 and 57 percent respectively, she said.

China-linked spies may still be lurking in U.S. telecommunications networks — but the breach could be much, much wider. In fact, a "couple dozen" countries were hit by the attack, the Wall Street Journal reported this week, citing a top U.S. national security adviser. "Chinese government hackers have compromised telecommunications infrastructure across the globe as part of a massive espionage campaign..." Speaking during a press briefing Wednesday, Anne Neuberger, President Biden's deputy national security adviser for cyber and emerging technology, said the so-called Salt Typhoon campaign is ongoing and that at least eight telecommunications firms in the U.S. had been breached... The Journal previously identified Verizon, AT&T, T-Mobile and Lumen Technologies among the victims... [M]etadata grabs appeared to be "regional" in focus, and were likely a means to identify phone lines of valuable senior government officials, which the hackers then targeted to steal encrypted text messages and listen in on some phone calls, the official said... President-elect Donald Trump, Vice President-elect JD Vance, senior congressional staffers and an array of U.S. security officials were among scores of individuals to have their calls and texts directly targeted, an intelligence-collection coup that likely ensnared their private communications with thousands of Americans, the Journal has reported.

The senior administration official said the global tally of countries victimized was currently believed to be in the "low, couple dozen" but didn't give a precise figure. The global campaign of hacking activity dates back at least a year or two, the official said.
"Neuberger, on the press briefing, said that it wasn't believed that classified communications were accessed in the breaches."

"SpaceX has launched 20 of its Starlink satellites up into Earth's orbit, enabling direct-to-cellphone connectivity for subscribers anywhere on the planet," reports the tech blog New Atlas. That completes the constellation's first orbital shell, following a launch of an initial batch of six satellites for testing back in January. The satellites were launched with a Falcon 9 rocket from California's Vandenberg Space Force Base on December 5 at 10 PM EST; they were then deployed in low Earth orbit. SpaceX founder Elon Musk noted on X that the effort will "enable unmodified cellphones to have internet connectivity in remote areas." He added a caveat for the first orbital shell — "Bandwidth per beam is only ~10 Mb, but future constellations will be much more capable...."

The big deal with this new venture is that unlike previous attempts at providing satellite-to-phone service, you don't need a special handset or even a specific app to get access anywhere in the world. Starlink uses standard LTE/4G protocols that most phones are compatible with, partners with mobile operators like T-Mobile in the U.S. and Rogers in Canada, and has devised a system to make its service work seamlessly with your phone when it's connecting to satellites 340 miles (540 km) above the Earth's surface. The SpaceX division noted it's also worked out latency constraints, ideal altitudes and elevation angles for its satellites, along with several other parameters, to achieve reliable connectivity. Each satellite has an LTE modem on board, and these satellites plug into the massive constellation of 6,799 existing Starlink spacecraft, according to Space.com.

Connecting to that larger constellation happens via laser backhaul, where laser-based optical communication systems transmit data between satellites. This method leverages the advantages of lasers over traditional radio frequency communications, enabling data rates up to 100 times faster, increased bandwidth, and improved security.
The direct-to-cell program was approved last month, the article points out — but it's ready to ramp up. "You'll currently get only text service through the end of 2024; voice and data will become available sometime next year, as will support for IoT devices (such as smart home gadgets). The company hasn't said how much its service will cost. " (They also note there's already competing services from Lynk, "which has satellites in orbit and launched in the island nation of Palau back in 2023, and AST SpaceMobile, which also has commercial satellites in orbit and contracts with the U.S. government, Europe, and Japan.")

Elon Musk's announcement on X.com prompted this interesting exchange:

X.com User: You've stated that purchasing Starlink goes toward funding the journey to Mars, yes?

Elon Musk: Yes.