Last week an Air France flight to the Caribbean had to turn around and return to Paris, reports the Washington Post, "after a passenger could not locate their cellphone."

Because of fears that an unattended cellphone could overheat — and because the passenger and crew couldn't find the phone — the Boeing 777 turned around off the coast of France "and returned to the airport, according to the flight-tracking service FlightAware. It landed back where it started a little more than two hours after taking off, with 375 passengers, 12 cabin crew and two pilots on board..." It was the airline's second Caribbean-bound flight to turn around because of a phone since early February as the aviation industry grapples with the risk of fires sparked by lithium batteries... Air France did not say where on the plane the phone was lost — or where it was ultimately located. "After checks by the maintenance teams, the device was found and the aircraft was able to take off again quickly," the airline said in an unsigned statement. "Air France regrets this situation and reminds that the safety of its customers and crew members is its absolute priority." The plane made it to Guadeloupe, a French overseas territory, about four hours later than scheduled...
The articles notes that U.S. air passengers "are required to keep vape pens and spare lithium batteries, such as portable chargers, in the cabin at all times, according to the Federal Aviation Administration. The items are not allowed in checked bags..."

The agency — which handles about 16.4 million flights per year — "says it is aware of 85 lithium battery air incidents involving smoke, fire or extreme heat last year."

An anonymous reader shares a report: You can now choose WhatsApp as your iPhone's default app for calls and text messages, as noted by WABetaInfo. After updating WhatsApp to version 25.8.74, you'll see the app appear as an option in your Messaging and Calling default app settings.

Apple first announced that it would let iPhone users in the European Union change their default phone and messaging apps, but it later said that everyone would be able to do the same in iOS 18.2.

The governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore "are likely customers of Israeli spyware maker Paragon Solutions," reports TechCrunch, "according to a new technical report by a renowned digital security lab." On Wednesday, The Citizen Lab, a group of academics and security researchers housed at the University of Toronto that has investigated the spyware industry for more than a decade, published a report about the Israeli-founded surveillance startup, identifying the six governments as "suspected Paragon deployments."

At the end of January, WhatsApp notified around 90 users that the company believed were targeted with Paragon spyware, prompting a scandal in Italy, where some of the targets live... Paragon's executive chairman John Fleming told TechCrunch that the company "licenses its technology to a select group of global democracies — principally, the United States and its allies." Israeli news outlets reported in late 2024 that U.S. venture capital AE Industrial Partners had acquired Paragon for at least $500 million upfront....

Among the suspected customer countries, Citizen Lab singled out Canada's Ontario Provincial Police (OPP), which specifically appears to be a Paragon customer given that one of the IP addresses for the suspected Canadian customer is linked directly to the OPP.
In a related development the Guardian reports that a prominent activist in Italy "has warned the international criminal court that his mobile phone was under surveillance" when he was providing them confidential information about torture victims in Libya.

Both articles submitted by long-time Slashdot reader ISayWeOnlyToBePolite.

According to Politico, Gov. Gavin Newsom has distributed prepaid burner phones to around 100 California business leaders, giving them direct access to him and reinforcing his pro-business stance. "If you ever need anything, I'm a phone call away," read one of the notes. From the report: It was Newsom's idea, a representative said, and has already yielded some "valuable interactions." That arrangement surprised some people POLITICO spoke with, largely because Newsom is already known as an inveterate texter whose digits live in many business titans' contacts. He's also long been seen as more aligned with business interests than the Legislature, the proverbial adult in the room when private pillars like Silicon Valley need a sympathetic ear or a veto. But Newsom wanted to convey that he's intent on maintaining California's competitive edge. Phones are still going out.

The California Protocol Foundation picked up the tab. That organization gets money from businesses and nonprofits for gubernatorial expenses like trips abroad -- or, evidently, burner phones -- so taxpayers aren't on the hook. It also drew leftover funds from Newsom's inauguration account, which itself drew business, so in a roundabout way California's private sector helped fund phones nurturing ties with the private sector.

Apple will introduce a slimmer iPhone 17 "Air" this fall, marking a strategic shift toward potentially port-free devices in future product lines, according to a Bloomberg report.

The new model will feature a 6.6-inch display with ProMotion scrolling, Dynamic Island interface, and a Camera Control button while measuring approximately 2 millimeters thinner than current models -- roughly a 20% reduction in depth, the report said. Despite its slimmer profile, the device will maintain battery life comparable to existing iPhones through redesigned display and silicon components. It will incorporate Apple's power-efficient C1 in-house modem chip but will retain USB-C connectivity, despite earlier internal discussions about eliminating ports entirely.

Long-time Slashdot reader chicksdaddy writes: A group of U.S. consumer advocacy groups on Wednesday proposed legislation to address the growing epidemic of "zombie" Internet of Things (IoT) devices that have had software support cut off by their manufacturer, Fight To Repair News reports.

The Connected Consumer Product End of Life Disclosure Act is a collaboration between Consumer Reports, US PIRG, the Secure Resilient Future Foundation (SRFF) and the Center for Democracy and Technology. It requires manufacturers of connected consumer products to disclose for how long they will provide technical support, security updates, or bug fixes for the software and hardware that are necessary for the product to operate securely.
The groups proposed legal requirements that manufacturers "must notify consumers when their devices are nearing the end of life and provide guidance on how to handle the device's end of life," while end-of-life notifications "must include details about features that will be lost, and potential vulnerabilities and security risks that may arise." And when an ISP-provided device (like a router) reaches its end of life, the ISP must remove them.

"The organizations are working with legislators at the state and federal level to get the model legislation introduced," according to Fight To Repair News.

An anonymous reader quotes a report from Broadband TV News: The National Association of Broadcasters (NAB) has filed a petition with the Federal Communications Commission (FCC) urging the agency to establish a clear, industry-wide transition plan for the full deployment of Next Gen TV (ATSC 3.0). The proposal outlines a two-phased transition while modernizing regulatory requirements to support consumer access and innovation. [...] Under the plan, stations in the top 55 markets, covering 70% of the US population, would transition by February 2028, with all remaining full-power and Class A stations following in or before February 2030. The petition also calls for updates to FCC rules to ensure television reception devices support Next Gen TV, maintain existing MVPD carriage obligations and eliminate regulatory hurdles that could slow adoption. To clarify, ATSC 1.0 is the current standard for free over-the-air (OTA) TV. While ATSC 3.0 (also called NextGen TV) is its intended replacement, it's not backward-compatible, meaning consumers need new equipment to receive it. NAB's petition is to allow a complete shutdown of ATSC 1.0 to accelerate the transition to ATSC 3.0, meaning older TV setups relying on free OTA signals would stop working unless consumers upgrade their equipment. Their argument is that ATSC 3.0 adoption has been slow, and networks would benefit more from shifting away from OTA broadcasting entirely.

Reddit user bshensky argues that shutting down OTA TV would benefit large media corporations and harm independent stations. It's also worth noting that OTA TV operates on valuable spectrum, which could be repurposed for mobile broadband (this has happened before), benefiting cellular providers.

Morgan Stanley has reduced its iPhone shipment forecasts after Apple confirmed the delay of a more advanced Siri personal assistant, dampening prospects for accelerating phone upgrades. The investment bank now predicts 230 million iPhone shipments in 2025 (flat year-over-year) and 243 million in 2026 (up 6%), down from previous estimates.

An upgraded Siri was the most sought-after Apple Intelligence feature among prospective buyers, according to the bank's survey data. "Access to Advanced AI Features" appeared as a top-five driver of smartphone upgrades for the first time, with about 50% of iPhone owners who didn't upgrade to iPhone 16 citing the delayed Apple Intelligence rollout as affecting their decision. The firm also incorporated headwinds from China tariffs in its assessment, noting Apple is unlikely to fully offset these costs without broader exemptions.

"The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an undocumented 'backdoor' that could be leveraged for attacks," writes BleepingComputer.

"The undocumented commands allow spoofing of trusted devices, unauthorized data access, pivoting to other devices on the network, and potentially establishing long-term persistence." This was discovered by Spanish researchers Miguel Tarascó Acuña and Antonio Vázquez Blanco of Tarlogic Security, who presented their findings yesterday at RootedCON in Madrid. "Tarlogic Security has detected a backdoor in the ESP32, a microcontroller that enables WiFi and Bluetooth connection and is present in millions of mass-market IoT devices," reads a Tarlogic announcement shared with BleepingComputer. "Exploitation of this backdoor would allow hostile actors to conduct impersonation attacks and permanently infect sensitive devices such as mobile phones, computers, smart locks or medical equipment by bypassing code audit controls...."

Tarlogic developed a new C-based USB Bluetooth driver that is hardware-independent and cross-platform, allowing direct access to the hardware without relying on OS-specific APIs. Armed with this new tool, which enables raw access to Bluetooth traffic, Targolic discovered hidden vendor-specific commands (Opcode 0x3F) in the ESP32 Bluetooth firmware that allow low-level control over Bluetooth functions. In total, they found 29 undocumented commands, collectively characterized as a "backdoor," that could be used for memory manipulation (read/write RAM and Flash), MAC address spoofing (device impersonation), and LMP/LLCP packet injection.

Espressif has not publicly documented these commands, so either they weren't meant to be accessible, or they were left in by mistake.
Thanks to Slashdot reader ZipNada for sharing the news.

Equuleus42 (Slashdot reader #723) brings word that the Electronic Frontier Foundation (EFF) is sharing a new tool for fighting back against cellphone surveillance by Stingray cell-site simulators.

Android Authority reports: "Rayhunter" uses an open-source software package designed to look for evidence of IMSI catchers in action, running on an old Orbic Speed RC400L mobile hotspot. The great thing about that choice is that you can pick one up for practically nothing — we're seeing them listed for barely over $10 on Amazon, and you can find them even cheaper on eBay. There's an installation script for Macs and Linux to automate getting set up, but once the Orbic is flashed with the Rayhunter software, it should be ready go, collecting data about sketchy-looking "cell towers" it picks up.

Right now, much of the use of IMSI catchers is still shrouded in mystery, with the groups who regularly employ them extremely hesitant to disclose their methods. As a result, a big focus of this EFF project is just getting more info on how and where these are actually used, giving protestors a better sense of the steps they'll need to take if they want to protect their privacy.

Realme plans to double smartphone battery capacity to 10,000mAh within its three-year strategic roadmap, the company said at tradeshow MWC on Tuesday. Current flagship devices typically offer 5,000mAh, while Realme's latest models already ship with 6,000mAh cells. The company expects to implement 7,500mAh batteries next year before reaching the 10,000mAh target, PCMag reported, citing the firm.

Lenovo demonstrated "a laptop with a foldable screen and one that can get extra battery life from solar power," reports CNBC, emphasizing that "These laptops are just concepts, meaning they are not commercially available."

But "Lenovo, the world's biggest PC maker, has a history of showing off imaginative concepts with some becoming reality, so it's worth keeping an eye on what the Chinese technology giant is up to..." The latest concepts were unveiled at the Mobile World Congress trade show in Barcelona... When fully unfolded, the screen is an 18-inch display [on the Lenovo ThinkBook 'flip' concept]... The screen can then be folded in half horizontally to create two screens — one on the front and one on the back. The entire display can be folded down flat so the laptop turns into a tablet-like device.
Lenovo also showed off a Yoga Solar PC concept, reports Gizmodo, calling it "relatively thin and light" despite a solar panel in its lid with "a supposed 24% solar conversion rate": Lenovo claims they achieved this by maneuvering the gridlines you usually find on a solar panel behind the solar cells, offering more real estate for energy absorption... Lenovo's software showed the power accumulation at around 7 V when facing away from the sunlight and 12 V when facing toward it. It could get more when getting direct sunlight. Despite the presence of the solar panel, the laptop still weighs a little more than 2.6 pounds, which isn't out of the realm of what to expect from most modern laptops.

We should note that the panel isn't generating the required power to run the PC continuously. Lenovo claimed that 20 minutes of direct sunlight will transform into about one hour of video playback battery life. Depending on the CPU and battery, that could be 1/20 of the laptop's battery life.
CNBC had slightly different statistics for the laptop's battery life. "Lenovo said that the solar panels can absorb even ambient light in a person's surroundings to give a user an extra hour of laptop use at the end of an eight-hour work day..."

An anonymous reader quotes a report from Ars Technica: Amnesty International on Friday said it determined that a zero-day exploit sold by controversial exploit vendor Cellebrite was used to compromise the phone of a Serbian student who had been critical of that country's government. [...] The chain exploited a series of vulnerabilities in device drivers the Linux kernel uses to support USB hardware. "This new case provides further evidence that the authorities in Serbia have continued their campaign of surveillance of civil society in the aftermath of our report, despite widespread calls for reform, from both inside Serbia and beyond, as well as an investigation into the misuse of its product, announced by Cellebrite," authors of the report wrote.

Amnesty International first discovered evidence of the attack chain last year while investigating a separate incident outside of Serbia involving the same Android lockscreen bypass. [...] The report said that one of the vulnerabilities, tracked as CVE-2024-53104, was patched earlier this month with the release of the February 2025 Android Security Bulletin. Two other vulnerabilities -- CVE-2024-53197 and CVE-2024-50302 -- have been patched upstream in the Linux kernel but have not yet been incorporated into Android. Forensic traces identified in Amnesty International's analysis of the compromised phone showed that the Serbian authorities tried to install an unknown application after the device had been unlocked. The report authors said the installation of apps on Cellebrite-compromised devices was consistent with earlier cases the group has uncovered in which spyware tracked as NoviSpy spyware were installed.

As part of the attack, the USB port of the targeted phone was connected to various peripherals during the initial stages. In later stages, the peripherals repeatedly connected to the phone so they could "disclose kernel memory and groom kernel memory as part of the exploitation." The people analyzing the phone said the peripherals were likely special-purpose devices that emulated video or sound devices connecting to the targeted device. The 23-year-old student who owned the phone regularly participates in the ongoing student protests in Belgrade. Any Android users who have yet to install the February patch batch should do so as soon as possible.

Denmark is set to ban mobile phones in schools and after-school clubs, following a government commission's recommendation that children under 13 should not have their own smartphones. The Guardian reports: The government said it would change existing legislation to force all folkeskole -- comprehensive primary and lower secondary schools -- to become phone-free, meaning that almost all children aged between seven and 16-17 will be required by law not to bring their phones into school. The announcement marks a U-turn by the government, which had previously refused to introduce such a law. It comes as governments across Europe are trying to impose tighter regulations on children's access to phones and social media.

The Danish wellbeing commission was set up by the prime minister, Mette Frederiksen, in 2023 to investigate growing dissatisfaction among children and young people. Its long-awaited report, published on Tuesday, raised the alarm over the digitisation of children and young people's lives and called for a better balance between digital and analogue life. Among its 35 recommendations was the need for government legislation banning phones from schools and after-school clubs.

The minister for children and education, Mattias Tesfaye, told Politiken: "There is a need to reclaim the school as an educational space, where there is room for reflection and where it is not an extension of the teenage bedroom." There will be scope for local authorities to make exceptions, including for children with special educational needs, but he said mobile phones and personal tablets "do not belong in school, neither during breaks nor during lessons." He said the government had started preparing a legislative amendment.

AT&T and Verizon have successfully completed their first cellphone-to-satellite video calls using AST SpaceMobile's satellites, marking a significant step toward commercial satellite networks. The Verge reports: Verizon has completed its first cellphone-to-satellite video call, while AT&T has completed its first using satellites that will be used as part of a commercial network. [...] Verizon pulled off "a live video call between two mobile devices with one connected via satellite and the other connected via Verizon's terrestrial network connection," according to a company press release.

In AT&T's case, "AT&T and AST SpaceMobile have successfully completed another video call by satellite to an everyday smartphone over AT&T spectrum," per AT&T's press release. Both phone companies relied on AST's constellation of five BlueBird satellites that were launched last September for the tests. AT&T's initial video call test happened in June 2023.