Apple reported stronger-than-anticipated iPhones sales in its second-fiscal quarter earnings report today.

"The highlight of Apple's report was iPhone sales, which grew from the year-ago quarter even as the broader smartphone industry contracted nearly 15% during the same time," reports CNBC, citing an IDC estimate. "IPhone revenue grew 2% during the quarter, suggesting that parts shortages and supply chain issues that had hampered the product for the last few years, including an iPhone factory shutdown late last year, had finally abated." From the report: Here's how the company did versus Wall Street expectations per Refinitiv consensus expectations:

EPS: $1.52 vs. $1.43 expected
Revenue: $94.84 billion vs. $92.96 billion expected
Gross margin: 44.3% vs. 44.1% expected

Apple reported $24.16 billion in net income during the quarter versus $25.01 billion last year. Overall revenue was down 3% from last year's $97.28 billion in sales.

Here's how Apple's individual product lines did versus StreetAccount consensus expectations:

iPhone revenue: $51.33 billion vs. $48.84 billion expected
Mac revenue: $7.17 billion vs. $7.80 billion expected
iPad revenue: $6.67 billion vs. $6.69 billion expected
Other Products revenue: $8.76 billion vs. $8.43 billion expected
Services revenue: $20.91 billion vs. $20.97 billion expected

Apple promised faster turnaround times for security patches with iOS 16 and macOS Ventura, and it's now delivering on that claim. From a report: The company has released its first Rapid Security Response updates for devices running iOS 16.4.1, iPadOS 16.4.1 and macOS 13.3.1. They're available through Software Update as usual, but are small downloads that don't require much time to install. MacRumors says the fix is deploying over the course of 48 hours, so don't be surprised if you have to wait a short while.

The Washington Post's "Tech Friend" newsletter suggests some "tech fears you can stop worrying about." And it starts by reasuring readers, "You're fine using the WiFi in a coffee shop, hotel or airport. "Yes, it is safe," said Chester Wisniewski, a digital security specialist with the firm Sophos. Five or 10 years ago, it wasn't secure to use the shared WiFi in a coffee shop or another place outside your home. But now, most websites and apps scramble whatever you do online. That makes it tough for crooks to snoop on you when you're connected to public WiFi. It's not impossible, but criminals have easier targets.

Even Wisniewski, whose job involves sensitive information, said he connected to the WiFi at the airport and hotel on a recent business trip. He plans to use the WiFi at a conference in Las Vegas attended by the world's best computer hackers. Wisniewski generally does not use an extra layer of security called a VPN, although your company might require it. He avoids using WiFi in China.

You should be wary of public WiFi if you know you're a target of government surveillance or other snooping. But you are probably not Edward Snowden or Brad Pitt... For nearly all of us and nearly all of the time, you can use public WiFi without stress.
The newsletter also suggests we stop worrying about public phone chargers. ("Security experts told me that 'juice jacking' is extremely unlikely... Don't worry about the phone chargers unless you know you're being targeted by criminals or spies.")

Beyond that, "Focus your energy on digital security measures that really matter" — things like using strong and unique passwords for online accounts. ("This is a pain. Do it anyway.") And it calls two-factor authentication possibly the single best thing you can do to protect yourself online.

An anonymous reader quotes a report from The Register: Tokyo has five million Wi-Fi access points -- and that's 20 times what the city needs, because they're reserved for private use, according to NTT. The Japanese tech giant proposes sharing the fleet to cope with increased demand for wireless comms without adding more hardware. NTT says it's successfully tested network sharing with a scheme that starts by asking operators of Wi-Fi access points or other connections if they're open to sharing their bandwidth and allowing random netizens to connect. In return they get a share of revenue from those connections.

Under the scheme, netizens search for available networks and, as they connect, a contract would be executed allowing a link to be made. That contract would use Ethereum Proof of Authority to verify identities and initiate the back-end billing arrangements before allowing signed-up users and devices to join private networks. The operator of the Wi-Fi access point gets paid, the punter gets a connection, and everything's on a blockchain so the results can be read for eternity. [...] If this all scales, NTT estimates Tokyo won't need to add any more Wi-Fi access points or private 5G cells, even as demand for connectivity increases. The company also suggests it can enable networks to scale without requiring commensurate increases in energy consumption, and that spectrum will also be freed for other uses.

The Lenovo ThinkPhone by Motorola is being launched today in the U.S. for $699. It's the first co-branded phone from Motorola that arrives nine years after Lenovo purchased the Motorola brand for $2.91 billion. According to The Verge, the smartphone offers "a suite of productivity features designed to work with ThinkPad laptops." From the report: The ThinkPhone has a lot of the same stuff as a mainstream flagship phone, even though it's priced just below the likes of the $799 Samsung Galaxy S23. It comes with a big 6.6-inch 1080p OLED with up to 144Hz refresh rate. Build quality is quite sturdy with an aluminum frame, Gorilla Glass on the front panel, and Lenovo's signature textured aramid fiber back panel for a softer touch. The whole device is IP68 rated for strong dust and water resistance, and it's also MIL-STD-810H compliant to protect against falls and more extreme conditions.

In addition to the ThinkPad-like look and feel, there's a red key on the side of the phone in a nod to Lenovo's classic keyboard nub. You can customize it to a degree: a double-press can be assigned one of the phone's ThinkPad integration features, while a single-press can act as an app shortcut. Some apps will even let you launch certain features -- mapping it to the "Pay" screen of the Starbucks app could save you a lot of embarrassing fumbling at the register, for example. The ThinkPhone is available first to enterprise customers, with general availability on April 28th via Motorola.com.

Satellite manufacturer AST SpaceMobile partnered with AT&T to make the first two-way audio call using satellites with a standard smartphone. "The initial call was placed using AT&T's networks in Midland, Texas, to mobile carrier Ratuken in Japan on an unmodified Samsung Galaxy S22 smartphone using AST SpaceMobile's BlueWalker 3 satellite," reports Engadget. AST SpaceMobile claims to be building "the first and only space-based cellular broadband network." From the report: AT&T aims to use satellites to provide global cellular broadband from 2G to 5G. "Achieving what many once considered impossible, we have reached the most significant milestone to date in our quest to deliver global cellular broadband from space," Abel Avellan, CEO and chairman of AST SpaceMobile, said in a release. "While we take a moment to celebrate this tremendous accomplishment, we remain focused on the path ahead and pivotal next steps that get us closer to our goal of transforming the way the world connects."

It's unclear whether satellite access would come at an extra cost. In AT&T's original AST SpaceMobile partnership announcement, the company couldn't say whether existing plans would include satellite coverage. [...] While satellite offerings aren't available for consumers yet, this successful test brings widespread access one step closer to becoming a reality.

Google Fi, Google's cellular service, is getting its third rebrand in eight years. Ars Technica reports: First it was Project Fi, then Google Fi, and now it's "Google Fi Wireless." It also has its third logo, and this one's kind of clever: It's an "F" styled to look like sideways signal bars and in Google's trademark rainbow colors. There is also now a free trial mode. Google is harnessing the power of remotely configurable eSIMs to give anyone with an eSIM-compatible phone a seven-day/10GB free trial of Google Fi. That makes it easy to run around and test coverage.

Google Fi is a mobile virtual network operator (MVNO) -- a cellular reseller -- of T-Mobile's network, so whatever your T-Mobile coverage is like, that's what Fi is like. Google says that during the trial, "We'll give you a new Fi number to try out on your phone, but your current number will still work. During the trial, you can choose between Fi or your current network whenever you're calling, texting, or using mobile data." You'll need to enter a credit card for the trial, and after seven days, you'll be automatically billed on a $50 "Simply Unlimited" plan. Google notes you can cancel immediately (this is just one or two taps inside the app) and will still get the seven-day trial.

At Google I/O on May 10th, Google will launch its first foldable smartphone, "challenging Samsung's market-leading foldable phone business," reports CNBC. From the report: The Pixel Fold, known internally by the codename "Felix," will have the "most durable hinge on a foldable" phone, according to the documents. It will cost upward of $1,700 and compete with Samsung's $1,799 Galaxy Z Fold 4. Google plans to market the Pixel Fold as water-resistant and pocket-sized, with an outside screen that measures 5.8 inches across, according to the documents. Photos viewed by CNBC show that the phone will open like a book to reveal a small tablet-sized 7.6-inch screen, the same size as the display on Samsung's competitor. It weighs 10oz, slightly heavier than the Samsung Galaxy Z Fold 4, but it has a larger battery that Google says will last for 24 hours, or up to 72 hours in a low power mode.

The Pixel Fold is powered by Google's Tensor G2 chip, according to the documents. That's the same processor that launched in the Pixel 7 and Pixel 7 Pro phones last year.

Israeli spyware maker NSO Group deployed at least three new "zero-click" hacks against iPhones last year, finding ways to penetrate some of Apple's latest software, researchers at Citizen Lab have discovered. From a report: The attacks struck phones with iOS 15 and early versions of iOS 16 operating software, Citizen Lab said in a report Tuesday. The lab, based at the University of Toronto, shared its results with Apple, which has now fixed the flaws that NSO had been exploiting. It's the latest sign of NSO's ongoing efforts to create spyware that penetrates iPhones without users taking any actions that allow it in. Citizen Lab has detected multiple NSO hacking methods in past years while examining the phones of likely targets, including human rights workers and journalists.

While it is unsettling to civil rights groups that NSO was able to come up with multiple new means of attack, it did not surprise them. "It is their core business," said Bill Marczak, a senior researcher at Citizen Lab. "Despite Apple notifying targets, and the Commerce Department putting NSO on a blacklist, and the Israeli ministry cracking down on export licenses -- which are all good steps and raising costs -- NSO for the moment is absorbing those costs," Marczak said. Given the financial and legal fights NSO is involved in, Marczak said it was an open question how long NSO could keep finding or buying new exploits that are effective.

An anonymous reader shares a report from KrebsOnSecurity: KrebsOnSecurity received a nice bump in traffic this week thanks to tweets from the Federal Bureau of Investigation (FBI) and the Federal Communications Commission (FCC) about "juice jacking," a term first coined here in 2011 to describe a potential threat of data theft when one plugs their mobile device into a public charging kiosk. It remains unclear what may have prompted the alerts, but the good news is that there are some fairly basic things you can do to avoid having to worry about juice jacking.

The term juice jacking crept into the collective paranoia of gadget geeks in the summer of 2011, thanks to the headline for a story here about researchers at the DEFCON hacker convention in Vegas who'd set up a mobile charging station designed to educate the unwary to the reality that many mobile devices were set up to connect to a computer and immediately sync data by default. Since then, Apple, Google and other mobile device makers have changed the way their hardware and software works so that their devices no longer automatically sync data when one plugs them into a computer with a USB charging cable. Instead, users are presented with a prompt asking if they wish to trust a connected computer before any data transfer can take place. On the other hand, the technology needed to conduct a sneaky juice jacking attack has become far more miniaturized, accessible and cheap. And there are now several products anyone can buy that are custom-built to enable juice jacking attacks. [...]

How seriously should we take the recent FBI warning? An investigation by the myth-busting site Snopes suggests the FBI tweet was just a public service announcement based on a dated advisory. Snopes reached out to both the FBI and the FCC to request data about how widespread the threat of juice jacking is in 2023. "The FBI replied that its tweet was a 'standard PSA-type post' that stemmed from the FCC warning," Snopes reported. "An FCC spokesperson told Snopes that the commission wanted to make sure that their advisory on "juice-jacking," first issued in 2019 and later updated in 2021, was up-to-date so as to ensure 'the consumers have the most up-to-date information.' The official, who requested anonymity, added that they had not seen any rise in instances of consumer complaints about juice-jacking." The best way to protect yourself from juice jacking is by using your own gear to charge and transfer data from your device(s) to another.

"Juice jacking isn't possible if a device is charged via a trusted AC adapter, battery backup device, or through a USB cable with only power wires and no data wires present," says security researcher Brian Krebs. "If you lack these things in a bind and still need to use a public charging kiosk or random computer, at least power your device off before plugging it in."

Andrew Cunningham writes via Ars Technica: Microsoft is aware of the problems running Windows on the Steam Deck and other similar handheld Windows PCs, and at least some developers inside the company have spent time thinking of ways to address them. That's the thrust of a leaked presentation (posted in two parts by Twitter user _h0x0d_) about a new "Handheld Mode" for Windows, developed as part of an internal Microsoft hackathon in September 2022.

As presented, Handheld Mode includes several components: a new first-time setup screen that simplifies driver installation and setup; an improved touchscreen keyboard that fits better on a 7-inch screen and can be controlled Xbox-style with the built-in buttons and joysticks; a simplified Nintendo Switch-esque game launcher; and improved OS-wide controller support thanks to the open source Steamdeck Windows Controller Driver (SWICD) project. The presentation also calls for other changes to Windows' default behaviors, like always opening apps in full-screen mode when in Handheld Mode, better UI scaling for small screens, and "mapping of controls to common Windows functions."

A siren will go off on nearly every smartphone in the UK on Sunday 23 April, the government has announced. From a report: The 10 seconds of sound and vibration at 15:00 BST will test a new emergency alerts system. The test had originally been planned for the early evening but was moved to avoid clashing with an FA Cup semi-final, which kicks off at 16:30. The government was also keen to avoid a clash with the London Marathon, which starts at 09:30 on that Sunday. The alert system will be used to warn of extreme weather events, such as flash floods or wildfires. It could also be used during terror incidents or civil defence emergencies if the UK was under attack. The minister in charge of the system, Oliver Dowden, said it would be used only in situations where there was an immediate risk to life. In most cases it will be targeted at very specific areas, rather than the entire country and, according to officials, may not be used for months or years.

An anonymous reader shares a report from the New York Post: A supposed glitch in the popular "Find My iPhone" app has been directing random strangers to the home of an unsuspecting Texas dad at all hours of the day, falsely accusing him of stealing their electronic devices.

[Software engineer] Scott Schuster told the local news station KTRK that he's been visited by close to a dozen irate people over the past few years, telling him that their missing phone had last pinged at his address. "[I] had to wake up and go answer the door and explain to them that I didn't have their device, and people don't tend to believe you," the dad of two told the outlet.
The Texas resident tells KTRK that his biggest concern was "someone coming to the house potentially with a weapon."

And the same station reports that local sheriff Eric Fagan "said he was so shocked and concerned that he informed his patrol units and dispatchers, just in case anyone called about the address." "Apple needs to do more about this," Fagan said. "Please come out and check on this. This is your expertise. Mine is criminal and keeping our public safe here in Fort Bend County." Fagan added that Apple doing nothing puts a family's safety in jeopardy. "I would ask them to come out and see what they can do. It should be taken seriously. You are putting innocent lives at risk," he said....

There have been other high-profile device pinging errors elsewhere in the country, with at least one that brought armored vehicles to a neighborhood. In 2021, body camera footage captured a Denver police SWAT team raiding the home of a 77-year-old woman in Colorado over a false ping on the app. Denver officers believed she had stolen guns connected to a car theft after tracking a stolen iPhone to her address using the Find My app. That woman later sued the lead detective.

ABC13 has tried contacting the software giant since Tuesday. Someone called back, so we know they are aware of the incident. Still, no one has said if they are going to fix the issue, or at the very least, look into the matter.

The Free Software Foundation certifies products that meet their standards in regard to users' freedom, control over the product, and privacy. And they put out a new "Respects Your Freedom" certification on Thursday for ThinkPenguin's free software gigabit mini VPN router, the TPE-R1400.

From the FSF's announcement: This is ThinkPenguin's first device to receive RYF certification in 2023, adding to their vast catalogue of certified devices from previous years. As with previous routers from ThinkPenguin, the Free Software Gigabit Mini VPN Router ships with an FSF-endorsed fully free embedded GNU/Linux distribution called libreCMC. It also comes with a custom flavor of the U-Boot boot loader, assembled by Robert Call, the maintainer of libreCMC and a former FSF intern.

The router enables users to run their network connection through a VPN service, helping to simplify the process of keeping their communications secure and private. While ThinkPenguin offers a VPN service, users are not required to purchase a subscription to their service in order to use the router, and the device comes with detailed instructions on how to use the router with a wide variety of VPN providers.

"We're pleased to see ThinkPenguin continue with their commitment to bringing out devices that put software freedom as their first priority under the RYF program. The release of this router shows that ThinkPenguin is committed to the privacy and freedom of their users," said the FSF's executive director, Zoë Kooyman....

"The latest version of ThinkPenguin's VPN router lets its users take advantage of gigabit per second Internet connections while protecting their rights and privacy," said FSF's copyright and licensing associate, Craig Topham.

An anonymous reader quotes a report from MacRumors: An Apple Store at the Alderwood Mall was burgled last weekend, with thieves infiltrating the location through a nearby coffee shop. According to Seattle's King 5 News, thieves broke into Seattle Coffee Gear, went into the bathroom, and cut a hole in the wall to get to the Apple Store backroom. The burglars were able to bypass the Apple Store's security system by using the adjacent coffee shop, stealing a total of 436 iPhones that were worth around $500,000.

According to Seattle Coffee Gear manager Eric Marks, the coffee shop is not noticeably adjacent to the Apple Store because of the way that the store is laid out. "I would have never suspected we were adjacent to the Apple Store, how it wraps around I mean," Marks told King 5 News. "So, someone really had to think it out and have access to the mall layout." Police were able to obtain surveillance footage of the theft, but as it is part of an active investigation, it has not yet been released. Nothing was stolen from the coffee shop, but it will cost $1,500 to replace locks and repair the bathroom wall.

Apple will expand ProMotion to the standard iPhone models in two years, according to Ross Young, CEO of Display Supply Chain Consultants. ProMotion was first introduced on the iPhone 13 Pro models in 2021 and remains exclusive to Pro models for now. MacRumors reports: In a tweet today, Young provided a roadmap outlining various display-related technologies coming to future iPhones. Notably, the roadmap indicates that low-power LTPO display technology will be expanded to the standard iPhones in 2025, which Young said will enable ProMotion on these devices, allowing the display to ramp up to a 120Hz refresh rate for smoother scrolling and video content when necessary.

ProMotion would also allow the display to ramp down to a more power-efficient refresh rate. iPhone 13 Pro models can ramp down to 10Hz, while iPhone 14 Pro models can go as low as 1Hz, allowing for an always-on display that can show the Lock Screen's clock, widgets, notifications, and wallpaper even when the device is locked. All in all, the roadmap suggests that the so-called "iPhone 17" and "iPhone 17 Plus" will feature ProMotion, and likely an always-on display too. Young also claimed the "iPhone 17 Pro" will be the first iPhone to feature under-panel Face ID technology.

Dumb phones may be falling out of fashion on a global scale, but it's a different story in the U.S. From a report: Companies like HMD Global, the maker of Nokia phones, continue to sell millions of mobile devices similar to those used in the early 2000s. This includes what's known as "feature phones" -- traditional flip or slide phones that have additional features like GPS or a hotspot. "I think you can see it with certain Gen Z populations -- they're tired of the screens," said Jose Briones, dumb phone influencer and moderator of the subreddit, "r/dumbphones." "They don't know what is going on with mental health and they're trying to make cutbacks."

In the U.S., feature flip phone sales were up in 2022 for HMD Global, with tens of thousands sold each month. At the same time, HMD's global feature phone sales were down, according to the company. In 2022, almost 80% of feature phone sales in 2022 came from the Middle East, Africa and India, according to Counterpoint Research. But some see that number shifting, as a contingency of young people in the U.S. revert back to dumb or minimalist phones. "In North America, the market for dumb phones is pretty much flatlined," said Moorhead. "But I could see it getting up to 5% increase in the next five years if nothing else, based on the public health concerns that are out there."

France announced Friday it is banning the "recreational" use of TikTok, Twitter, Instagram and other apps on government employees' phones because of concern about insufficient data security measures. Reuters reports: The French Minister for Transformation and Public Administration, Stanislas Guerini, said in a statement that ''recreational" apps aren't secure enough to be used in state administrative services and "could present a risk for the protection of data." The ban will be monitored by France's cybersecurity agency. The statement did not specify which apps are banned but noted that the decision came after other governments took measures targeting TikTok.

Guerini's office said in a message to The Associated Press that the ban also will include Twitter, Instagram, Netflix, gaming apps like Candy Crush and dating apps. Exceptions will be allowed. If an official wants to use a banned app for professional purposes, like public communication, they can request permission to do so. Case in point: Guerini posted the announcement of the ban on Twitter.

During its State of Unreal keynote at GDC 2023, the company showed off new animation tools that make it possible to create realistic facial animations using only video captured from an iPhone. The Verge reports: Epic showed this off with a live demonstration featuring the actor behind the upcoming game Senua's Saga: Hellblade II. It was a short clip, with the actor speaking directly into the camera, but it appeared to be rendered both quickly and accurately. Even more impressive, the company then showed off the same animations captured onstage used to bring another MetaHuman character to life. The animator is launching this summer. Epic's MetaHuman Creator was announced in early 2021 to streamline the process of making more realistic human faces, body movements, and facial animations.

The European Commission has adopted a new set of right to repair rules (PDF) that, among other things, will add electronic devices like smartphones and tablets to a list of goods that must be built with repairability in mind. The Register reports: The new rules will need to be need to be negotiated between the European Parliament and member states before they can be turned into law. If they are, a lot more than just repairability requirements will change. One provision will require companies selling consumer goods in the EU to offer repairs (as opposed to just replacing a damaged device) free of charge within a legal guarantee period unless it would be cheaper to replace a damaged item. Beyond that, the directive also adds a set of rights for device repairability outside of legal guarantee periods that the EC said will help make repair a better option than simply tossing a damaged product away.

Under the new post-guarantee period rule, companies that produce goods the EU defines as subject to repairability requirements (eg, appliances, commercial computer hardware, and soon cellphones and tablets) are obliged to repair such items for five to 10 years after purchase if a customer demands so, and the repair is possible. OEMs will also need to inform consumers about which products they are liable to repair, and consumers will be able to request a new Repair Information Form from anyone doing a repair that makes pricing and fees more transparent. The post-guarantee period repair rule also establishes the creation of an online "repair matchmaking platform" for EU consumers, and calls for the creation of a European repair standard that will "help consumers identify repairers who commit to a higher quality."

"Repair is key to ending the model of 'take, make, break, and throw away' that is so harmful to our planet, our health and our economy," said Frans Timmermans, EVP for the European Green Deal, which aims to make the whole of EU carbon neutral by 2050. On that note, the EC proposed a set of anti-greenwashing laws alongside passing its right to repair rule yesterday that would make it illegal to make any green claims about a product without evidence. Citing the fact that 94 percent of Europeans believe protecting the environment is important, the EC said its proposal covers any explicit, voluntarily-made claims "which relate to the environmental impact, aspect, or performance of a product or the trader itself." Any such claims, like a laptop being made from recycled plastic, would need to be independently verified and proven with scientific evidence, the EC said.

The FCC has officially proposed, and voted unanimously to move forward with, a framework under which satellites can communicate directly with smartphones in a structured and useful way. From a report: The Notice of Proposed Rulemaking, circulated earlier this month and formally voted on today, is essentially a complete first public draft of what the FCC hopes to accomplish by establishing rules and guidelines around this emerging area of communication. Apple already made the news with a dramatic rescue made possible by its new emergency satellite feature, and companies like Lynk and AST SpaceMobile are working on providing universally accessible two-way data anywhere in the world.

Qualcomm and Iridium are integrating the capability at the chipset level. T-Mobile and SpaceX have said they plan to test their own Starlink-based system this year, and plenty of others are looking to enter the fray. There's still the matter of how this space-based connectivity would integrate with existing systems. Our mobile networks run on very carefully defined frequencies so that phones and towers don't interfere with one another, including satellites, which have totally different frequencies and signal powers.

An anonymous reader quotes a report from Ars Technica: The Federal Communications Commission today finalized rules requiring mobile carriers to block robotext messages that are likely to be illegal. The FCC described the rules as the agency's "first regulations specifically targeting the increasing problem of scam text messages sent to consumers." Carriers will be required to block text messages that come from "invalid, unallocated, or unused numbers." Carriers must also block texts from "numbers that the subscriber to the number has self-identified as never sending text messages, and numbers that government agencies and other well-known entities identify as not used for texting," the FCC said. Carriers will have to establish a point of contact for text senders so the senders can inquire about blocked texts. The FCC already requires similar blocking of voice calls from these types of numbers. The order will take effect 30 days after it is published in the Federal Register, according to a draft of the order released before the meeting.

More robotext rules may be on the way because today's "action also seeks public comment on further proposals to require providers to block texts from entities the FCC has cited as illegal robotexters," the FCC said. For example, the FCC proposes to clarify that Do Not Call Registry protections apply to text messaging. The FCC said it's further proposing to close the "lead generator loophole" that "allows companies to use a single consumer consent to deliver robocalls and text messages from multiple -- perhaps thousands -- of marketers on subjects that may not be what the consumer had in mind." The FCC "will also take further public comment on text authentication measures and other proposals to continue to fight illegal scam robotexts." The FCC separately voted today to close another gap in its Caller ID authentication rules that target illegal robocalls. The rules already required phone companies to implement the caller ID authentication technologies known as STIR and SHAKEN. But the rules don't apply in every possible scenario, so the FCC has periodically strengthened them. In June 2022, for example, the FCC required carriers with 100,000 or fewer customers to comply a year earlier than these small carriers were originally required to. The FCC said in a statement: "The new rules will require intermediate providers that receive unauthenticated IP calls directly from domestic originating providers to use STIR/SHAKEN to authenticate those calls. Although STIR/SHAKEN has been widely implemented under FCC rules, some originating providers are not capable of using the framework. In other cases, unscrupulous originating providers may deliberately fail to authenticate calls. By requiring the next provider in the call path to authenticate those calls, the FCC closes a gap in the caller ID authentication regime and facilitates government and industry efforts to identify and block illegal robocalls."

Britain is to ban the Chinese-owned video-sharing app TikTok from ministers' and civil servants' mobile phones, bringing the UK in line with the US and the European Commission and reflecting deteriorating relations with Beijing. From a report: The decision marks a sharp U-turn from the UK's previous position and came a few hours after TikTok said its owner, ByteDance, had been told by Washington to sell the app or face a possible ban in the country. The UK government's announcement was made on Thursday by Oliver Dowden, the Cabinet Office minister, in the Commons. He said the ban was taking place "with immediate effect."

The decision follows a review of TikTok by government cybersecurity experts at the National Cyber Security Centre, and will cover ministers' and civil servants' work phones, but not their personal phones. "This is a proportionate move based on a specific risk with government devices," Dowden added. At least two cabinet ministers use TikTok. Michelle Donelan, the science and technology secretary, and Grant Shapps, the energy security and net zero secretary have an account on the app, which is used by millions of young people and many celebrities and influencers.

T-Mobile is buying Mint Mobile, the budget-friendly mobile carrier that's partially owned by Ryan Reynolds. The Verge reports: In a post published on Wednesday, T-Mobile announced that the deal's valued at up to $1.35 billion and comes as T-Mobile looks to build out its prepaid phone offering. The acquisition should close later this year and involves a 39 percent cash and 61 percent stock purchase of Mint's parent company, Ka'ena Corporation. The price could change, however, as it depends on Mint's performance.

Once the deal closes, Mint founders David Glickman and Rizwan Kassim will join T-Mobile to continue managing the brand, which T-Mobile says "will generally operate as a separate business unit." Meanwhile, Reynolds will also remain a part of Mint's branding, as T-Mobile says he will "continue on in his creative role on behalf of Mint." "I never dreamt I'd own a wireless company and I certainly never dreamt I'd sell it to T-Mobile," Reynolds said in a tweet. "Life is strange and I'm incredibly proud and grateful."

As noted by T-Mobile CEO Mike Sievert in a YouTube video posted on Wednesday, T-Mobile will retain the price of Mint's cheapest phone plan at $15 per month. The deal also includes Ka'ena's other companies, including Ultra Mobile, a prepaid carrier that offers international calling, and Plum, a wholesale wireless solutions provider. [...] By purchasing Mint, T-Mobile may be looking to claw back the customers it lost when it sold Boost Mobile to Dish as part of its merger with Sprint.

An anonymous reader shares a report: The Google Pixel Fold could be available as soon as the second week in June, according to WinFuture's Roland Quandt. The reliable leaker tweeted on Tuesday that the phone will come with 256GB base storage and that you'll be able to get it in either a black / dark gray color or white. The foldable has been rumored for a long time, and there have been whispers that it would be announced sometime in the next few months. However, a January report from The Elec threw some cold water on that idea, saying that the screen wasn't even set to go into production until July or August.

Last summer, Elon Musk and T-Mobile CEO Mike Sievert announced "Coverage Above and Beyond," a joint initiative that aimed to bring Starlink satellite coverage compatible T-Mobile devices. Now, SpaceX is getting ready to begin testing its satellite-to-cellular service. Engadget reports: During a panel at the Satellite Conference and Exhibition 2023, SpaceX VP of Starlink enterprise sales Jonathan Hofeller said the company had plans to "start getting into testing" its satellite-to-cell service this year. "We're going to learn a lot by doing -- not necessarily by overanalyzing -- and getting out there, working with the telcos."

Hofeller didn't specifically say which Telco SpaceX was working with, but the timeline certainly lines up with Musk's original vision for the T-Mobile partnership. [...] Either way, the panel seemed optimistic about the future of sat-to-cell technology. Lynk Global CEO Charles Miller said that satellite cellular service has the potential to be the "biggest category in satellite," and Iridium CEO Matt Desch sees cellular satellite service as just the beginning. "Satellite should connect everything everywhere," he said at the event, imagining the technology connecting to computers, vehicles and more.

Samsung's Galaxy smartphones now offer "Space Zoom," writes Apple Insider, a feature augmenting 3x and 10x telephoto cameras with digital zoom "aided by Samsung's AI Super Resolution technology."

But the resulting 100X zoom levels "appear to be more a feat of AI trickery than anything else," they conclude, citing an investigation by a Reddit user: That so-called Space Zoom could potentially allow users to photograph the moon, and many do. However, it may be the case that the level of detail in the moon shots may only be higher due to software shenanigans....

The user tested the effect by downloading a high-resolution image of the moon, then downsized it to a 170 by 170-resolution image, and then applied a gaussian blur to obliterate any final details of its surface. They then showed the low-res blurry moon at full screen on their monitor, walked to the other end of their room, zoomed in on the fake celestial body, and took a photograph. After some processing, an image of the moon was produced by the smartphone, but the surface had considerably more detail for the surface than the doctored source. The user reckons Samsung "is leveraging an AI model to put craters and other details on places which were just a blurry mess."

They go further to stress that while super resolution processing uses multiple images to recover otherwise-lost detail, this seems to be something different. It is proposed that this is a case "where you have a specific AI model trained on a set of moon images, in order to recognize the moon and slap on the moon texture on it."
The Reddit user has now posted an update: I photoshopped one moon next to another (to see if one moon would get the AI treatment, while another would not), and managed to coax the AI to do exactly that.... [O]ne moon got the "AI enhancement", while the other one shows what was actually visible to the sensor — a blurry mess....

It's literally adding in detail that weren't there. It's not deconvolution, it's not sharpening, it's not super resolution, it's not "multiple frames or exposures". It's generating data.

Here's an interesting bit of news out of Mobile World Congress: Qualcomm says the Snapdragon 8 Gen 2 has been certified as the "world's first commercially deployable iSIM (Integrated SIM)." ArsTechnica: What the heck is an iSIM? Didn't we just go through a SIM card transition with eSIM? We did, but iSIM is better than eSIM. We'll explain, but the short answer is that iSIM is the next step in the continual march to reduce the size of SIM cards. [...] eSIMs are still a chip taking up space on your motherboard, and that's not ideal if you want to squeeze every square millimeter of space out of a phone. The next shrinking step is iSIM -- an Integrated Subscriber Identity Module. Rather than a chip on the motherboard, iSIMs are integrated directly onto the SoC. SoC (system on a chip) integration is the technology that makes smartphones possible. Instead of a thousand little chips for things like the CPU, GPU, RAM, modem, and a bunch of other things, everything gets packed into one single do-everything piece of silicon.

Individual chips require more space and power thanks to having to make motherboard traces to connect everything and having to deal with chip packages. Building everything in one chip, with the tiniest transistors you can muster, is the cheapest and most space-efficient and power-efficient way to do things, and now SIM cards are going to disappear into that big block of stuff. iSIMs will be measured in fractions of a millimeter, and as part of the SoC, they will continually shrink every year as chip process nodes hit ever-smaller nm measurements. It sounds like this is the endgame for SIM technology, and besides helping out phones, will be great for evermore space-constrained devices like smartwatches.

Google has begun the process of bringing Chrome's full Blink browser engine to iOS against current App Store rules, and now we have our first look at the test browser in action. 9to5Google reports: In the weeks since the project was announced, Google (and Igalia, a major open source consultancy and frequent Chromium contributor) have been hard at work getting a simplified "content_shell" browser up and running in iOS and fixing issues along the way. As part of that bug fixing process, some developers have even shared screenshots of the minimal Blink-based browser running on an iPhone 12. In the images, we can see a few examples of Google Search working as expected, with no glaringly obvious issues in the site's appearance. Above the page contents, you can see a simple blue bar containing the address bar and typical browser controls like back, forward, and refresh.

With a significant bit of effort, we were able to build the prototype browser for ourselves and show other sites including 9to5Google running in Blink for iOS, through the Xcode Simulator. As an extra touch of detail, we now know what the three-dots button next to the address bar is for. It opens a menu with a "Begin tracing" button, to aid performance testing. From these work-in-progress screenshots, it seems clear that the Blink for iOS project is already making significant progress, but it's clearly a prototype not meant to be used like a full web browser. The next biggest step that Google has laid out is to ensure this version of Blink/Chromium for iOS passes all of the many tests that ensure all aspects of a browser are working correctly.

An anonymous reader quotes a report from Bloomberg: Apple partner Foxconn Technology Group plans to invest about $700 million on a new plant in India to ramp up local production, people familiar with the matter said, underscoring an accelerating shift of manufacturing away from China as Washington-Beijing tensions grow. The Taiwanese company, also known for its flagship unit Hon Hai Precision Industry Co., plans to build the plant to make iPhone parts on a 300-acre site close to the airport in Bengaluru, the capital of the southern Indian state of Karnataka [...]. The factory may also assemble Apple's handsets [...], and Foxconn may also use the site to produce some parts for its nascent electric vehicle business.

The investment is one of Foxconn's biggest single outlays to date in India and underscores how China's at risk of losing its status as the world's largest producer of consumer electronics. Apple and other US brands are leaning on their Chinese-based suppliers to explore alternative locations such as India and Vietnam. It's a rethink of the global supply chain that's accelerated during the pandemic and the war in Ukraine and could reshape the way global electronics are made. The new production site in India is expected to create about 100,000 jobs, the people said. The company's sprawling iPhone assembly complex in the Chinese city of Zhengzhou employs some 200,000 at the moment, although that number surges during peak production season.

At Mobile World Congress (MWC) this week in Barcelona, OnePlus showcased a concept smartphone with liquid cooling technology, dubbed "Active CryoFlux." While the headset may never see the light of day, at least in its current form, it serves to show how serious OnePlus hopes to get about mobile gaming. From a report: A 0.2 square centimeter piezoelectric ceramic micropump moves the coolant up and down a pipeline near the rear of the device and around the massive camera array. The rear of the device is covered in a transparent material, showcasing the process as a kind of light show. It's a cool effect, and one that invariably shares comparisons to Phone (1), released by OnePlus co-founder Carl Pei's Nothing last year. "A lot of young people like playing games," said OnePlus President and COO Kinder Liu. "Gaming plays an important role in their digital life, and in the future, we will continuously improve their gaming experience. Currently, we definitely engage with our users about gaming development. We are talking about how to improve the gaming experience, and in the future, we believe we will have more time to talk to them."

At Mobile World Congress in Barcelona, Lenovo demoed a laptop and smartphone with rollable screens that "can gradually expand to offer more screen real-estate, rather than needing to be completely unfolded like books," writes Jon Porter from The Verge. These are early proof of concept devices that don't have any public release dates as of yet. From the report: Before we get into the concept laptop's signature feature, it's worth pointing out just how unassuming the device looks before its screen unrolls. Lenovo had the device sitting alongside its other laptops in a conference suite, and not a single one of the dozen-or-so journalists in attendance clocked that it was anything other than a standard ThinkPad. In its unextended form, it's got a regular looking 12.7-inch display with a 4:3 aspect ratio. That all changes with a flip of a small switch on the right of the chassis, at which point you can hear some motors whirring and the screen extends upwards. That switch causes a couple of motors in the laptop to spring into action, pulling the screen out from underneath the laptop's keyboard to hoist it up more or less vertically in front of you. It's an admittedly slow process on this concept device (from our footage it seems to take a little over ten seconds to fully extend) but eventually you're left with an almost square 15.3-inch display with an 8:9 aspect ratio. The device brings to mind LG's fancy (and eye-wateringly expensive) rollable TV that's designed to roll away when you're not using it. Only in Lenovo's case the screen is rolling down into the laptop's keyboard rather than a small box, and it also can't roll away entirely. Once fully extended, Lenovo's laptop screen has a small crease where its screen originally bent underneath the keyboard. But again -- it's a prototype.

Lenovo's other rollable device it's demoing at MWC is a Motorola smartphone. We've seen numerous companies including Samsung Display, Oppo, TCL, and even LG (RIP) show off rollable concept devices in various stages of development over the years, but we're yet to see the technology break through in a consumer device. Like a foldable, the idea is that a rollable smartphone can be small when you need it to be portable, and big when you need more screen to get the job at hand done. Lenovo's phone -- which it's calling the Motorola rollable smartphone concept -- is all about taking a small square of a display and making it longer. It's almost like a foldable flip phone, but without a secondary cover display because it's the same screen the entire time. When all neatly rolled up, Lenovo's Motorola rollable offers a 5-inch display with a 15:9 aspect ratio. Then, with a small double tap of a side button, the screen unfurls to give you a remarkably tall 6.5-inch display with a 22:9 aspect ratio. [...] "In 2019, it seemed like foldable phones were about to become the next big thing in the world of smartphones," writes Porter, in closing. "But four years later, it feels like we're still waiting for this future to become a mainstream reality. Lenovo would be the first to admit that its rollable concept devices are far from ready for prime time, but they offer a compelling argument for an alternative, rollable future."

Since the earliest versions of the iPhone, "The ability to dynamically execute code was nearly completely removed," write security researchers at Trellix, "creating a powerful barrier for exploits which would need to find a way around these mitigations to run a malicious program. As macOS has continually adopted more features of iOS it has also come to enforce code signing more strictly.

"The Trellix Advanced Research Center vulnerability team has discovered a large new class of bugs that allow bypassing code signing to execute arbitrary code in the context of several platform applications, leading to escalation of privileges and sandbox escape on both macOS and iOS.... The vulnerabilities range from medium to high severity with CVSS scores between 5.1 and 7.1. These issues could be used by malicious applications and exploits to gain access to sensitive information such as a user's messages, location data, call history, and photos."

Computer Weekly explains that the vulnerability bypasses strengthened code-signing mitigations put in place by Apple on its developer tool NSPredicate after the infamous ForcedEntry exploit used by Israeli spyware manufacturer NSO Group: So far, the team has found multiple vulnerabilities within the new class of bugs, the first and most significant of which exists in a process designed to catalogue data about behaviour on Apple devices. If an attacker has achieved code execution capability in a process with the right entitlements, they could then use NSPredicate to execute code with the process's full privilege, gaining access to the victim's data.

Emmitt and his team also found other issues that could enable attackers with appropriate privileges to install arbitrary applications on a victim's device, access and read sensitive information, and even wipe a victim's device. Ultimately, all of the new bugs carry a similar level of impact to ForcedEntry.

Senior vulnerability researcher Austin Emmitt said the vulnerabilities constituted a "significant breach" of the macOS and iOS security models, which rely on individual applications having fine-grain access to the subset of resources needed, and querying services with more privileges to get anything else.
"The key thing here is the vulnerabilities break Apple's security model at a fundamental level," Trellix's director of vulnerability research told Wired — though there's some additional context: Apple has fixed the bugs the company found, and there is no evidence they were exploited.... Crucially, any attacker trying to exploit these bugs would require an initial foothold into someone's device. They would need to have found a way in before being able to abuse the NSPredicate system. (The existence of a vulnerability doesn't mean that it has been exploited.)

Apple patched the NSPredicate vulnerabilities Trellix found in its macOS 13.2 and iOS 16.3 software updates, which were released in January. Apple has also issued CVEs for the vulnerabilities that were discovered: CVE-2023-23530 and CVE-2023-23531. Since Apple addressed these vulnerabilities, it has also released newer versions of macOS and iOS. These included security fixes for a bug that was being exploited on people's devices.
TechCrunch explores its severity: While Trellix has seen no evidence to suggest that these vulnerabilities have been actively exploited, the cybersecurity company tells TechCrunch that its research shows that iOS and macOS are "not inherently more secure" than other operating systems....

Will Strafach, a security researcher and founder of the Guardian firewall app, described the vulnerabilities as "pretty clever," but warned that there is little the average user can do about these threats, "besides staying vigilant about installing security updates." And iOS and macOS security researcher Wojciech ReguÅa told TechCrunch that while the vulnerabilities could be significant, in the absence of exploits, more details are needed to determine how big this attack surface is.

Jamf's Michael Covington said that Apple's code-signing measures were "never intended to be a silver bullet or a lone solution" for protecting device data. "The vulnerabilities, though noteworthy, show how layered defenses are so critical to maintaining good security posture," Covington said.

An anonymous reader quotes the Guardian: Nokia has announced one of the first budget Android smartphones designed to be repaired at home allowing users to swap out the battery in under five minutes in partnership with iFixit.

Launched before Mobile World Congress in Barcelona on Saturday, the Nokia G22 has a removable back and internal design that allows components to be easily unscrewed and swapped out including the battery, screen and charging port. Nokia phones manufacturer HMD Global will make "quick fix" repair guides and genuine parts available for five years via specialists iFixit, in addition to affordable professional repair options.

"People value long-lasting, quality devices and they shouldn't have to compromise on price to get them. The new Nokia G22 is purposefully built with a repairable design so you can keep it even longer," said Adam Ferguson, head of product marketing for HMD Global.

The G22 is partially made of recycled plastic and has a 6.53in screen, large-capacity battery, 50-megapixel camera and a fingerprint scanner. It runs Android 12 and will be supported for three years of monthly security updates and two major Android version upgrades.

After an iPhone was stolen, $10,000 vanished from the owner's bank account — and they were locked out of their Apple account's photos, contacts and notes. The thieves "stole thousands of dollars through Apple Pay" and "opened an Apple Card to make fraudulent charges," writes 9 to 5 Mac, citing a report from the Wall Street Journal. These thieves often work in groups with one distracting a victim while another records over a shoulder as they enter their passcode. Others have been known to even befriend victims, asking them to open social media or other apps on their iPhones so they can watch and memorize the passcode before stealing it. A 12-person crime ring in Minnesota was recently taken down after targeting iPhones like this in bars. Almost $300,000 was stolen from 40 victims by this group before they were caught.
The Journal adds that "similar stories are piling up in police stations around the country," while one of their article's authors has tweeted Apple's official response. "We sympathize with users who have had this experience and we take all attacks on our users very seriously, no matter how rare.... We will continue to advance the protections to help keep user accounts secure."

The reporter suggests alphanumeric passwords are harder to steal, while MacRumors offers some other simple fixes. "Use Face ID or Touch ID as much as possible when in public to prevent thieves from spying... In situations where entering the passcode is necessary, users can hold their hands over their screen to hide passcode entry."

Staff working at the European Commission have been ordered to remove the TikTok app from their phones and corporate devices. The BBC reports: The commission said it was implementing the measure to "protect data and increase cybersecurity." EU spokeswoman Sonya Gospodinova said the corporate management board of the European Commission, the EU's executive arm, had made the decision for security reasons. "The measure aims to protect the Commission against cybersecurity threats and actions which may be exploited for cyberattacks against the corporate environment of the commission," she said. The ban also means that European Commission staff cannot use TikTok on personal devices that have official apps installed.

The commission says it has around 32,000 permanent and contract employees. They must remove the app as soon as possible and no later than March 15. For those who do not comply by the set deadline, the corporate apps -- such as the commission email and Skype for Business -- will no longer be available. [...] TikTok, owned by Chinese company ByteDance, has faced allegations that it harvests users' data and hands it to the Chinese government.

An anonymous reader shares a report: There was speculation that Samsung could use smartphone-to-satellite technology in its Galaxy S23 much like Apple has for the iPhone 14, but that didn't happen in the end. Now, the company has unveiled a new standardized 5G NTN (non-terrestrial network) modem that will enable two-way communication between smartphones and satellites. The technology will allow users to send and receive calls, text messages and data without the need for a cellular network, and will be integrated into Samsung's future Exynos chips.

The aim is to allow people in mountains, deserts or other remote areas to communication with others in critical situations. 5G NTN conforms to 3rd Generation Partnership Project (3GPP Release 17) standards, meaning it works with traditional communication services from chip manufacturers, smartphone makers and telecoms. However, Samsung indicated that the tech could eventually be used to transmit high-definition photos and even video, on top of texts and calls.

AI voice clones are already being deployed in podcasts and video games, but how long until they can be harnessed directly by the general public? From a report: Probably sooner than you think, with Samsung today announcing a feature for its Bixby mobile assistant that lets users clone their voice to answer phone calls. The idea is that if someone calls you but you can't answer aloud you can type out a response and it'll be read in a simulacrum of your voice. Some caveats here: this feature is only currently available in Korean as the Bixby Custom Voice Creator app for a small number of Samsung handsets (the new Galaxy S23, S23+ and S23 Ultra), which means we've been unable to test it ourselves. The voice quality might be abysmal and response time too slow to be useful. But cloning voices to answer calls is well within the scope of current technology, with AI tools able to create realistic copies of voices from just a few minutes of audio.

Starry, an ISP that launched in 2016 with a focus on delivering home internet with wireless antennas instead of cables, has declared bankruptcy. The Verge reports: In a press release (PDF), the company says that it intends to quickly restructure and that it'll continue providing internet service in its "five core operating markets." Those are Boston, New York City, Los Angeles, Denver, and Washington, DC. The ISP has clearly been struggling over the past few months. In October 2022, it announced that it was laying off around 500 people, which amounted to about half of its staff. A few months later, Starry announced it was leaving Columbus, Ohio, in a bid to focus more on its five "core" markets. All the while, it was burning millions of dollars in cash, and its stock was dropping after a special purpose acquisition company-backed IPO in March -- it started at around $10 a share but is now worth $0.012, down from last week when it was approximately $0.02 per share.

The company also defaulted on its Rural Digital Opportunity Fund bids after it won awards from the FCC to work on providing internet to underserved areas in the US. Had it completed the work, it stood to receive almost $269 million, according to Light Reading. Starry has asked the United States Bankruptcy Court for the District of Delaware to approve a plan that would give it $43 million in funding from lenders, which it says would provide "the necessary liquidity to continue its normal business operations and meet its post-filing obligations to its employees, customers and vendors." "With the support of our lenders, we feel confident in our ability to successfully exit this process as a stronger company, well-positioned to continue" providing internet to customers, said Starry CEO Chet Kanojia in the company's press release.

Their video says it all. Its official page brags it can "Transform your Librem 5 into a laptop."

But it all apparently started because Purism is proud that their Librem 5 line of phones run "the same desktop applications as our full-sized computers, just on a smaller screens," according to the announcement by Purism president Kyle Rankin: When only using the Librem 5 in its mobile form factor, it's easy to overlook that this is happening, as adaptive applications morph to fit the smaller screen.... It's only when you dock the Librem 5 that you really experience the power of convergence.... We have wanted to provide a lapdock kit to customers for some time now, and I've personally evaluated almost all of the options available to pick which one would best showcase the Librem 5. I'm so happy to announce that today we are launching our new Lapdock Kit and in this post I will explain a bit more about what's included and why it's a great companion to a Librem 5 or Librem 5 USA.

A lapdock is a docking station (or "dock") combined with a laptop shell. One approach to docking your Librem 5 is to get a USB-C hub and attach it to a power supply, monitor, keyboard and mouse, and we even sell those accessories for our Librem 5. Now imagine taking all of those components and squeezing them into a laptop form-factor, add a battery to power it, and you have a lapdock.

From the outside a lapdock looks no different from a standard laptop, but the difference is that a lapdock has no CPU, RAM or storage of its own. Instead, it uses the Librem 5 as the computer. Once docked, the Librem 5's screen extends to the lapdock screen, and you can use the keyboard and mouse on the lapdock to drag windows back and forth between screens. All of the applications are running on the Librem 5 and once docked, it behaves like a laptop running PureOS. Even better, the lapdock's battery charges the Librem 5 while it's docked, extending its run time. After evaluating a number of different options, we have decided to offer the Nexdock 360 in our Lapdock Kit....

The Lapdock Kit allows you to realize the power of having all of your apps and all of your data in one device that can fit in your pocket and act like a phone when you need it to, but then transform into a laptop when you want to type out an email, do some image editing or watch a video on a larger screen. The Lapdock Kit also allows you to run thousands of other desktop applications that haven't yet been updated to adapt to a phone's screen. Traditional Linux applications like the full LibreOffice suite, GIMP, Wireshark, Gqrx and many others run well on the Librem 5 with the addition of the Lapdock Kit's extra screen real estate.
"It demonstrates why we refer to the Librem 5 as a mobile computer in your pocket, and not just as a phone."

An anonymous reader quotes a report from Engadget: Now that the Safe Connections Act (SCA) has become law, the Federal Communications Commission is taking steps to help domestic violence survivors leave their partners' phone plans. The agency has proposed rules that would require carriers separate the line for a survivor within two business days of a request. Another proposal would also have carriers hide contact with abuse hotlines from consumer-facing call and text logs.

The FCC also hopes to use the Lifeline or Affordable Connectivity Program to support survivors enduring financial hardships for up to six months. Separately, providers are teaming with the National Domestic Violence Hotline to ensure survivors leaving a family plan will get in touch with someone who can offer support from experts on abuse. The proposals are entering a public comment phase and may be modified when they take effect as required by the SCA.

A 50% rejection rate for iPhone casings produced by an Indian company is a stark illustration of the difficulties Apple faces in reducing its dependence on China. 9to5Mac reports: Apple's target for casings that fail to pass quality control is 0%, with Chinese suppliers reportedly getting extremely close to this. The attitude of Indian suppliers is also said to compare poorly with the can-do approach of Chinese companies, with one former Apple engineer saying that there is no sense of urgency in its Indian supply chain...

The Financial Times reports that poor yields is a key challenge faced by Apple in attempting to replicate its Chinese supply chain in India: "At an iPhone casings factory in Hosur run by Indian conglomerate Tata, one of Apple's suppliers, just about one out of every two components coming off the production line is in good enough shape to eventually be sent to Foxconn, Apple's assembly partner for building iPhones, according to a person familiar with the matter. This 50 per cent 'yield' fares badly compared with Apple's goal for zero defects. Two people that have worked in Apple's offshore operations said the factory is on a plan towards improving proficiency but the road ahead is long."

Tech entrepreneur and academic Vivek Wadhwa said that it will likely take three years or so for Indian suppliers to be capable of the kind of volume production needed to make a noticeable dent in Chinese production. [...] He also suggested that Apple, too, will need to adapt -- especially when it comes to dealing with the bureaucratic government: "He suggested its engineers learn the art of jugaad -- a way of 'making do' or transcending obstacles. 'Because everything in India is an obstacle,' he said."

Two non-profit news site, the Markup and Grist, have co-published their investigation into how big tech rewrote America's first cellphone repair law.

"That New York passed any electronics right-to-repair bill is 'huge,' Repair.org executive director Gay Gordon-Byrne told Grist. But 'it could have been huger' if not for tech industry interference." The passage of the Digital Fair Repair Act last June reportedly caught the tech industry off guard, but it had time to act before Governor Kathy Hochul would sign it into law. Corporate lobbyists went to work, pressing for exemptions and changes that would water the bill down. They were largely successful: While the bill Hochul signed in late December remains a victory for the right-to-repair movement, the more corporate-friendly text gives consumers and independent repair shops less access to parts and tools than the original proposal called for. (The state Senate still has to vote to adopt the revised bill, but it's widely expected to do so.)

The new version of the law applies only to devices built after mid-2023, so it won't help people to fix stuff they currently own. It also exempts electronics used exclusively by businesses or the government. All those devices are likely to become electronic waste faster than they would have had Hochul, a Democrat, signed a tougher bill. And more greenhouse gases will be emitted manufacturing new devices to replace broken electronics....

Jessa Jones, who founded iPad Rehab, an independent repair shop in Honeoye Falls, about 20 miles south of Rochester, New York, says the original bill included provisions that would have made it far easier for independent shops like hers to get the tools, parts, and know-how needed to make repairs. She pointed to changes that allow manufacturers to release repair tools that only work with spare parts they make, while at the same time controlling how those spare parts are used... "If you keep going down this road, allowing manufacturers to force us to use their branded parts and service, where they're allowed to tie the function of the device to their branded parts and service, that's not repair," Jones said. "That's authoritarian control."
The bill's sponsor believes it could create momentum for dozens of other states trying to pass similar laws, the article points out, possibly leading ultimately to one national agreement between electronics manufacturers and the repair community. A lawmaker from another state argued that New York's law "gives us something to work from. We're going to take that now and try to do a better piece of legislation."

Thanks to long-time Slashdot reader Z00L00K for submitting the article.

System76 is announcing a "fully redesigned" version of its AMD-only Linux-powered "Pangolin" laptop with an upgraded memory, storage, processor, and display.

9to5Linux reports: It features the AMD Ryzen 7 6800U processor with up to 4.7 GHz clock speeds, 8 cores, 16 threads, and AMD Radeon 680M integrated graphics.... a 15.6-inch 144Hz Full HD (1920 x 1080) display [using 12 integrated Radeon graphics cores] with a matte finish, a sleek magnesium alloy chassis, and promises up to 10 hours of battery life with its 70 Wh Li-Ion battery. It also features a single-color backlit US QWERTY Keyboard and a multitouch clickpad. Under the hood, the Linux-powered laptop boasts 32 GB LPDDR5 6400 MHz of RAM and it can be equipped with up to 16TB PCIe 4.0 NVMe M.2 SSD storage. Another cool feature is the hardware camera kill switch for extra privacy....

As with all of System76's Linux-powered laptops, the all-new Pangolin comes pre-installed with System76's in-house built Pop!_OS Linux distribution featuring the GNOME-based COSMIC desktop and full disk-encryption or with Ubuntu 22.04 LTS.

An anonymous reader quotes a report from Motherboard: A section of the UK government has proposed making the sale or possession of bespoke encrypted phones for crime a criminal offense in its own right. The measure is intended to help the country's law enforcement agencies tackle organized crime and those who facilitate it, but civil liberties experts tell Motherboard the proposal is overbroad and poorly defined, meaning it could sweep up other forms of secure communication used by the wider population if not adjusted. "At the moment the government proposal appears to be vague and overly broad. While it states that the provisions 'will not apply to commercially available mobile phones nor the encrypted messaging apps available on them' it is difficult to see how it will not result in targeting devices used on a daily [basis] by human rights defenders, protesters and pretty much all of us who want to keep our data secure," Ioannis Kouvakas, senior legal officer and assistant general counsel at UK-based activism organization Privacy International, told Motherboard in an email.

The proposal is included in a document published by the Home Office (PDF). In that document, the Home Office proposes two legislative measures that it says could be used to improve law enforcement's response to serious and organized crime, and is seeking input from law enforcement, businesses, lawyers, civil liberties NGOs, and the wider public. [...] The first measure looks to create new criminal offenses on the "making, modifying, supply, offering to supply and possession of articles for use in serious crime." The document points to several specific items: vehicle concealments used to hide illicit goods; digital templates for 3D-printing firearms; pill presses used in the drug trade; and "sophisticated encrypted communication devices used to facilitate organized crime." In other words, this change would criminalize owning an encrypted phone, selling one, or making one for use in crime, a crime in itself. [...]

With encrypted phones, the Home Office writes that both the encryption itself and modifications made to the phones are creating "considerable barriers" to law enforcement. Typically, phones from this industry use end-to-end encryption, meaning that messages are encrypted before leaving the device, rendering any interception by law enforcement ineffective. (Multiple agencies have instead found misconfigurations in how companies' encryption works, or hacked into firms, to circumvent this protection). Encrypted phone companies sometimes physically remove the microphone, camera, and GPS functionality from handsets too. Often distributors sell these phones for thousands of dollars for yearly subscriptions. Given that price, the Home Office says it is "harder to foresee a need for anyone to use them for legitimate, legal reasons." The Home Office adds that under one option for legislation, laws could still criminalize people who did not suspect the technology would be used for serious crime, simply because the technology is so "closely associated with serious crime." Potential signs could include someone paying for a phone "through means which disguise the identity of the payer," the document reads. Often distributors sell phones for Bitcoin or cash, according to multiple encrypted phone sellers that spoke to Motherboard. The document says "the provisions will not apply to commercially available mobile phones nor the encrypted messaging apps available on them." But the Home Office does not yet have a settled definition of what encompasses "sophisticated encrypted communication devices," leaving open the question of what exactly the UK would be prepared to charge a person for possessing or selling.

An anonymous reader quotes a report from Ars Technica: As a smartphone operating system, Android strives to be a lightweight OS so it can run on a variety of hardware. The first version of the OS had to squeeze into the T-Mobile G1, with only a measly 256MB of internal storage for Android and all your apps, and ever since then, the idea has been to use as few resources as possible. Unless you have the latest Samsung phone, where Android somehow takes up an incredible 60GB of storage. Yes, the Galaxy S23 is slowly trickling out to the masses, and, as Esper's senior technical editor Mishaal Rahman highlights in a storage space survey, Samsung's new phone is way out of line with most of the ecosystem. Several users report the phone uses around 60GB for the system partition right out of the box. If you have a 128GB phone, that's nearly half your storage for the Android OS and packed-in apps. That's four times the size of the normal Pixel 7 Pro system partition, which is 15GB. It's the size of two Windows 11 installs, side by side. What could Samsung possibly be putting in there?!

We can take a few guesses as to why things are so big. First, Samsung is notorious for having a shoddy software division that pumps out low-quality code. The company tends to change everything in Android just for change's sake, and it's hard to imagine those changes are very good. Second, Samsung may want to give the appearance of having its own non-Google ecosystem, and to do that, it clones every Google app that comes with its devices. Samsung is contractually obligated to include the Google apps, so you get both the Google and Samsung versions. That means two app stores, two browsers, two voice assistants, two text messaging apps, two keyboard apps, and on and on. These all get added to the system partition and often aren't removable.

Unlike the clean OSes you'd get from Google or Apple, Samsung sells space in its devices to the highest bidder via pre-installed crapware. A company like Facebook will buy a spot on Samsung's system partition, where it can get more intrusive system permissions that aren't granted to app store apps, letting it more effectively spy on users. You'll also usually find Netflix, Microsoft Office, Spotify, Linkedin, and who knows what else. Another round of crapware will also be included if you buy a phone from a carrier, i.e., all the Verizon apps and whatever space they want to sell to third parties. The average amount users are reporting is 60GB, but crapware deals change across carriers and countries, so it will be different for everyone.

Neowin reports on "a potentially dangerous exploit capable of completely unenrolling enterprise-managed Chromebooks from their respective organizations" called SH1MMER.

The Register explains where the name came from — and how it works: A shim is Google-signed software used by hardware service vendors for Chromebook diagnostics and repairs. With a shim that has been processed and patched, managed Chromebooks can be booted from a suitably prepared recovery drive in a way that allows the device setup to be altered via the SH1MMER recovery screen menu....

In a statement provided to The Register, a Google spokesperson said, "We are aware of the issue affecting a number of ChromeOS device RMA shims and are working with our hardware partners to address it."
"Google added that it will keep the community closely updated when it ships out a fix," reports SC Magazine, "but did not specify a timetable." "What we're talking about here is jailbreaking a device," said Mike Hamilton, founder and chief information security office of Critical Insight, and a former CISO for the city of Seattle who consults with many school districts. "For school districts, they probably have to be concerned about a tech-savvy student looking to exercise their skills...."

Hamilton said Google will need to modify the firmware on the Chromebooks. He said they have to get the firmware to check for cryptographic signatures on the rest of the authorization functions, not just the kernel functions — "because that's where the crack is created to exploit it. I think Google will fix this quickly and schools need to develop a policy on jailbreaking your Chromebook device and some kind of penalty for that to make it real," said Hamilton. "Schools also have to make sure they can detect when a device goes out of policy. The danger here is if a student does this and there's no endpoint security and the school doesn't detect it and lock out the student, then some kind of malware could be introduced. I'm not going to call this a 'nothingburger,' but I'd be very surprised if it showed up at any scale."
Thanks to Slashdot reader segaboy81 for submitting the story.

The New York Post reports: Facebook can secretly drain its users' cellphone batteries, a former employee contends in a lawsuit.

The practice, known as "negative testing," allows tech companies to "surreptitiously" run down someone's mobile juice in the name of testing features or issues such as how fast their app runs or how an image might load, according to data scientist George Hayward. "I said to the manager, 'This can harm somebody,' and she said by harming a few we can help the greater masses," said Hayward, 33, who claims in a Manhattan Federal Court lawsuit that he was fired in November for refusing to participate in negative testing....

Killing someone's cellphone battery puts people at risk, especially "in circumstances where they need to communicate with others, including but not limited to police or other rescue workers," according to the litigation filed against Facebook's parent company, Meta Platforms. "I refused to do this test," he said, adding, "It turns out if you tell your boss, 'No, that's illegal,' it doesn't go over very well." Hayward was hired in October 2019 for a six-figure gig.

He said he doesn't know how many people have been impacted by Facebook's negative testing but believes the company has engaged in the practice because he was given an internal training document titled, "How to run thoughtful negative tests," which included examples of such experiments being carried out. "I have never seen a more horrible document in my career," he said....

The lawsuit, which sought unspecified damages, has since been withdrawn because Hayward is required to go to arbitration, said the lawyer, who said Hayward stands by the allegations.
Thanks to long-time Slashdot reader WankerWeasel for sharing the article.

Dispatchers for 911 emergency calls "are being inundated with false, automated distress calls from Apple devices owned by skiers who are very much alive," reports the New York Times: "Do you have an emergency?" [911 emergency dispatcher] Betts asked. No, the man said, he was skiing — safely, happily, unharmed. Slightly annoyed, he added, "For the last three days, my watch has been dialing 911."

Winter has brought a decent amount of snowfall to [Colorado]'s ski resorts, and with it an avalanche of false emergency calls. Virtually all of them have been placed by Apple Watches or iPhone 14s under the mistaken impression that their owners have been debilitated in collisions. As of September, these devices have come equipped with technology meant to detect car crashes and alert 911 dispatchers. It is a more sensitive upgrade to software on Apple devices, now several years old, that can detect when a user falls and then dial for help. But the latest innovation appears to send the device into overdrive: It keeps mistaking skiers, and some other fitness enthusiasts, for car-wreck victims.

Lately, emergency call centers in some ski regions have been inundated with inadvertent, automated calls, dozens or more a week. Phone operators often must put other calls, including real emergencies, on hold to clarify whether the latest siren has been prompted by a human at risk or an overzealous device. "My whole day is managing crash notifications," said Trina Dummer, interim director of Summit County's emergency services, which received 185 such calls in the week from Jan. 13 to Jan. 22. (In winters past, the typical call volume on a busy day was roughly half that.) Ms. Dummer said that the onslaught was threatening to desensitize dispatchers and divert limited resources from true emergencies.

"Apple needs to put in their own call center if this is a feature they want," she said.
Apple acknowledged this was occuring in "some specific scenarios," the Times reports — but a spokesperson also "noted that when a crash is detected, the watch buzzes and sends a loud warning alerting the user that a call is being placed to 911, and it provides 10 seconds in which to cancel the call."

But the Times points out that "skiers, in helmets and layers of clothing, often do not to detect the warning, so they may not cancel the call or respond to the 911 dispatcher."

At Samsung's first Galaxy Unpacked event of the year, the company unveiled its new Galaxy S23 devices: the Galaxy S23, S23 Plus, and Galaxy S23 Ultra. Here's what The Verge's Allison Johnson says about the most premium phone of the bunch, the Galaxy S23 Ultra: Compared to the outgoing model, it comes with an updated processor, a new 200-megapixel main camera sensor, and a tweak to the form factor. The built-in S Pen is still here, naturally. And thankfully the price hasn't inflated. In fact, the starting MSRP of $1,199.99 now comes with 256GB of storage -- double last year's base model. It's a little extra shine on what was already Samsung's star smartphone. [...]

The S23 Ultra also features a very slight exterior redesign. The long edges of the phone are slightly less curved, so there's more of a flat surface to grip when you're holding the device. The back panel and the screen also curve around the sides a bit less, so you might be less likely to run your S Pen off the edge of the device, which tended to happen with the more rounded design. [...] That's the short list of what's new. What's not new is basically everything else: a 5,000mAh battery, IP68 dust and water resistance, and either 8GB or 12GB of RAM depending on the configuration. Your color options this year are phantom black, lavender, green, and cream [...]. [T]he S23 Ultra is up for preorder today and starts shipping on February 17th. "Samsung's trio of flagships for 2023 offer some refined designs -- which look a little iPhone-like, if I'm being candid -- with some camera, battery, and processor improvements over last year's S22 generation," adds The Verge's Antonio G. Di Benedetto. You can view a full list of specs here.