An anonymous reader quotes a report from Motherboard: How to fund ethical journalism in the Facebook era is the multi-billion dollar question of the hour, and a technology-focused consumer group by the name of Free Press believes it has a solution. The group has unveiled a new proposal that suggests taxing all online targeted advertising, then using that money to fund the nation's struggling news empires, big and small. The program would apply a 2 percent tax on companies generating more than $200 million in annual targeted-ad revenues, then use that money to create a "Public Interest Media Endowment." The $2 billion collected annually would then be managed by the government itself, or an outside, existing institution such as the Corporation for Public Broadcasting. Such a tax would most obviously apply to both social media giants, but also the giant telecom monopolies increasingly trying to elbow their way into the online ad space. This endowment, in turn, would help fund local journalism, investigative reporting, media literacy, noncommercial social networks, civic-technology projects, and "news and information for underserved communities," suggests the group. "The problem for journalism is that Facebook and Google control nearly 70 percent of this marketplace," Free Press Director Tim Karr told Motherboard via email. "And neither are news organizations. In fact, only one of the top ten digital advertisers in the U.S. (Verizon Media Group/Oath) is in the news business (HuffPost, Techcrunch), and then only partially so."

Tumblr's ban on pornography and adult content has led to an estimated fifth of its users deserting the platform. From a report: Tumblr's ban on pornography and adult content has led to a fifth of its users deserting the platform, figures reveal. The ban, which came into effect on 17 December, provoked a backlash from users who claimed it would penalise sex-positive, LGBT and NSFW art communities. Visits to the Tumblr website fell from 521 million in December to 437 million in January and 370 million in February, according to data from web analytics firm SimilarWeb. Tumblr's decision to update its content policy came after the discovery of child sexual abuse imagery on its blogs.

Verizon said on Tuesday that it will charge an additional $10 a month per smartphone for subscribers who want to add 5G speeds to their devices, the first major U.S. carrier to disclose pricing for the faster cellular service. From a report: Verizon says it'll flip the switch next month on a much-hyped, next-generation "5G" phone network. Service will start in parts of Chicago and Minneapolis. Verizon expects to have 5G in 30 cities this year. For now, few people will sign on. The offer is available only on unlimited plans, which currently start at $75 for one person or $160 for a family of four without 5G. On family plans, each 5G line would cost $10 extra. And network access will initially work with just one phone, Motorola's Moto Z3, with a special 5G attachment. Verizon will offer some promotions at first, including discounts on the phone and attachment and the first three months of 5G service free.

An anonymous reader quotes a report from Ars Technica: A bad security decision by Comcast on the company's mobile phone service made it easier for attackers to port victims' cell phone numbers to different carriers. Comcast in 2017 launched Xfinity Mobile, a cellular service that uses the Verizon Wireless network and Comcast Wi-Fi hotspots. Comcast has signed up 1.2 million mobile subscribers but took a shortcut in the system that lets users switch from Comcast to other carriers. To port a phone line from Comcast to another wireless carrier, a customer needs to know his or her Comcast mobile account number. Carriers generally use PINs to verify that a customer seeking to port a number actually owns the number. But Comcast reportedly set the PIN to 0000 for all its customers, and there was apparently no way for customers to change it. That means that an attacker who acquired a victim's Comcast account number could easily port the victim's phone number to another carrier. Comcast told Ars that "less than 30" customers were affected by the problem, that it has implemented a fix, and that the company will eventually roll out a real PIN-based system to further protect customers. But Comcast declined to describe the recent fix in any way, saying that information could help attackers. Comcast also did not say when its new PIN-based system will be ready. Here's what Comcast had to say about the changes it's made and will make: "We have also implemented a solution that provides additional safeguards around our porting process, and we're working aggressively towards a PIN-based solution. We are reaching out to impacted customers to apologize and work with them to address the issue. We take this very seriously, and our fraud detection and prevention methods, policies and procedures are continually being reviewed, tested and refined."

An anonymous reader quotes a report from TechCrunch: A group of academics have found three new security flaws in 4G and 5G, which they say can be used to intercept phone calls and track the locations of cell phone users. The findings are said to be the first time vulnerabilities have affected both 4G and the incoming 5G standard, which promises faster speeds and better security, particularly against law enforcement use of cell site simulators, known as "stingrays." But the researchers say that their new attacks can defeat newer protections that were believed to make it more difficult to snoop on phone users. [Rafiul Hussain, one of the co-authors of the paper, along with Ninghui Li and Elisa Bertino at Purdue University, and Mitziu Echeverria and Omar Chowdhury at the University of Iowa are set to reveal their findings at the Network and Distributed System Security Symposium in San Diego on Tuesday.

The paper, seen by TechCrunch prior to the talk, details the attacks: the first is Torpedo, which exploits a weakness in the paging protocol that carriers use to notify a phone before a call or text message comes through. The researchers found that several phone calls placed and cancelled in a short period can trigger a paging message without alerting the target device to an incoming call, which an attacker can use to track a victim's location. Knowing the victim's paging occasion also lets an attacker hijack the paging channel and inject or deny paging messages, by spoofing messages like Amber alerts or blocking messages altogether, the researchers say. Torpedo opens the door to two other attacks: Piercer, which the researchers say allows an attacker to determine an international mobile subscriber identity (IMSI) on the 4G network; and the aptly named IMSI-Cracking attack, which can brute force an IMSI number in both 4G and 5G networks, where IMSI numbers are encrypted. AT&T, Verizon, Sprint and T-Mobile are all affected by Torpedo, "and the attacks can be carried out with radio equipment costing as little as $200," the report adds. One U.S. network is reportedly vulnerable to the Piercer attack, but the researcher wouldn't name which one.

Verizon is asking the FCC to let it keep new smartphones locked to its network for 60 days, as part of an initiative to prevent identify theft and fraud. "After the 60-day period, the phones would unlock automatically, the telecom says in a note published to its website and authored by Ronan Dunne, Verizon's executive vice president," reports The Verge. "Verizon says it should have the authority to do this under the so-called 'C-block rules' put in place following the FCC's 2008 wireless spectrum auction." From the report: "We believe this temporary lock on new phones will protect our customers by limiting the incentive for identity theft. At the same time, a temporary lock will have virtually no impact on our legitimate customers' ability to use their devices," Dunne writes. "Almost none of our customers switch to another carrier within the first 60 days. Even with this limited fraud safety check, Verizon will still have the most consumer-friendly unlocking policy in the industry. All of our main competitors lock their customers' new devices for a period of time and require that they are fully paid off before unlocking."

Verizon is just putting itself in line with the rest of the industry here. AT&T already requires your phone be activated for 60 days for you to unlock it, and the company even requires you to wait two weeks to unlock your old phone if you're upgrading to a new one. T-Mobile requires you wait 40 days, and also limits users to two unlocks per year per line. Sprint has a 50-day limit, and only unlocks devices from the onset if the phones are prepaid.

Verizon has announced plans to turn on its 5G mobile network in 30 U.S. cities this year. "It revealed the plan during an investor meeting Thursday, though didn't disclose the list of cities," reports Engadget. From the report: Verizon already offers home broadband service via 5G in Los Angeles, Houston, Indianapolis and Sacramento. This month, it hinted at upcoming rollouts in New York City and Atlanta, as well as Medford, Massachusetts, suggesting Verizon will bring 5G to nearby Boston too. The provider plans to flip the switch on its mobile 5G network in the first half of this year, and it will expand its home 5G service to more markets later in 2019. One of the first phones to support Verizon's nascent 5G network will be the Samsung Galaxy S10 5G, which was unveiled yesterday at Samsung's Unpacked event. The device has a larger screen and battery than the S10 Plus, and will temporarily be a Verizon exclusive before expanding to other carriers in the weeks after launch. It's slated to go on sale sometime "in the first half of 2019."

Next-generation 5G networks are very much in their infancy right now, but that's not stopping smartphone manufacturers from teasing new 5G phones. At Samsung's Galaxy S10 launch event today, Samsung teased the Galaxy S10 5G, a top-tier model of the Galaxy S10 that offers 5G mobile data connectivity. "The device, which has a larger screen and battery than the S10 Plus, will temporarily be a Verizon Wireless exclusive before expanding to other carriers in the weeks after launch," reports The Verge. "It will go on sale sometime 'in the first half of 2019."

Late last year, LG confirmed that its first U.S. 5G phone would debut on Sprint "in the first half of 2019," just as Sprint launches its 5G network. At around the same time, Lenovo unveiled the Moto Z3, a phone that only connects to 5G with a MotoMod modular accessory. It too is expected to arrive early this year -- but there's no mention of how much it'll cost. OnePlus, Nokia, and Huawei are also working on 5G phones expected to arrive sometime this year. The question is: are we ready for 5G phones? Three of the four largest carriers in the U.S. have only just started offering 5G service in select cities. Sprint, the fourth largest U.S. telecommunications company, hasn't even reached this step. Just like the first 4G phones to hit the market, these first-of-their-kind 5G devices look to merely symbolize what the next decade of mobile computing has in store.

An anonymous reader quotes a report from Bloomberg: Disney is said to have pulled its advertising spending from YouTube, joining other companies including Nestle, after a blogger detailed how comments on Google's video site were being used to facilitate a "soft-core pedophilia ring." Some of the videos involved ran next to ads placed by Disney and Nestle. All Nestle companies in the U.S. have paused advertising on YouTube, a spokeswoman for the company said Wednesday in an email. Video game maker Epic Games and German packaged food giant Dr. August Oetker KG also said they had postponed YouTube spending after their ads were shown to play before the videos. Disney has also withheld its spending.

On Sunday, Matt Watson, a video blogger, posted a 20-minute clip detailing how comments on YouTube were used to identify certain videos in which young girls were in activities that could be construed as sexually suggestive, such as posing in front of a mirror and doing gymnastics. Watson's video demonstrated how, if users clicked on one of the videos, YouTube's algorithms recommended similar ones. By Wednesday, Watson's video had been viewed more than 1.7 million times. Total ad spending on the videos mentioned was less than $8,000 within the last 60 days, and YouTube plans refunds, the spokeswoman said. Two years ago, Verizon, AT&T, Johnson & Johnson and other major companies pulled their ads from YouTube after learning that some of their ads surfaced next to extremist and violent content. Yesterday, YouTube released an updated policy about how it will handle content that "crosses the line" of appropriateness.

"Any content -- including comments -- that endangers minors is abhorrent and we have clear policies prohibiting this on YouTube. We took immediate action by deleting accounts and channels, reporting illegal activity to authorities and disabling violative comments," a spokeswoman for YouTube said in an email.

The Federal Communications Commission will consider "regulatory intervention" if the major telecommunications carriers don't set up a system this year to stop spoofed robocalls, FCC chairman Ajit Pai said Wednesday. "It's time for carriers to implement robust caller ID authentication," Pai said in a statement, noting that some companies have already committed to carrying out protocols, known as the SHAKEN/STIR framework, in 2019. A report adds: Pai sent letters to major wireless carriers in November demanding that they adopt industry-wide frameworks to crackdown on the practice of "spoofing," where robocallers mask a call's origin with a fraudulent number on their caller ID. On Wednesday, the FCC chair followed up with another demand that they implement caller authentication systems this year and a threat over the repercussions if they don't comply. You can read responses from carriers FCC's website.

Bobby Guerra, a Democratic member of the Republican-controlled Texas House of Representatives, filed a bill last week that would prohibit wireless carriers from throttling mobile internet service in disaster areas. "A mobile Internet service provider may not impair or degrade lawful mobile Internet service access in an area subject to a declared state of disaster," the bill says. If passed, it would take effect on September 1, 2019. Ars Technica reports: The bill, reported by NPR affiliate KUT, appears to be a response to Verizon's throttling of an "unlimited" data plan used by Santa Clara County firefighters during a wildfire response in California last year. But Guerra's bill would prohibit throttling in disaster areas of any customer, not just public safety officials. Wireless carriers often sell plans with a set amount of high-speed data and then throttle speeds after a customer has passed the high-speed data limit. Even with so-called "unlimited" plans, carriers reserve the right to throttle speeds once customers use a certain amount of data each month.

Despite the Verizon/Santa Clara incident, Federal Communications Commission Chairman Ajit Pai has taken no action to prevent further incidents of throttling during emergencies. Pai's repeal of Obama-era net neutrality rules allows throttling as long as the carrier discloses it, and the commission is trying to prevent states from imposing their own net neutrality rules.

Motherboard's Joseph Cox and Jason Koebler report of the underground industry where thieves, coders, and hackers work to remove a user's iCloud account from a phone so that they can then be resold. They reportedly are able to do this by phishing the phone's original owners, or scam employees at Apple Stores, which have the ability to override iCloud locks. The other method (that is very labor intensive and rare) involves removing the iPhone's CPU from the Logic Board and reprogramming it to create what is essentially a "new" device. It is generally done in Chinese refurbishing labs and involves stealing a "clean" phone identification number called an IMEI. Here's an excerpt from their report: Making matters more complicated is the fact that not all iCloud-locked phones are stolen devices -- some of them are phones that are returned to telecom companies as part of phone upgrade and insurance programs. The large number of legitimately obtained, iCloud-locked iPhones helps supply the independent phone repair industry with replacement parts that cannot be obtained directly from Apple. But naturally, repair companies know that a phone is worth more unlocked than it is locked, and so some of them have waded into the hacking underground to become customers of illegal iCloud unlocking companies.

In practice, "iCloud unlock" as it's often called, is a scheme that involves a complex supply chain of different scams and cybercriminals. These include using fake receipts and invoices to trick Apple into believing they're the legitimate owner of the phone, using databases that look up information on iPhones, and social engineering at Apple Stores. There are even custom phishing kits for sale online designed to steal iCloud passwords from a phone's original owner. [...] There are many listings on eBay, Craigslist, and wholesale sites for phones billed as "iCloud-locked," or "for parts" or something similar. While some of these phones are almost certainly stolen, many of them are not. According to three professionals in the independent repair and iPhone refurbishing businesses, used iPhones -- including some iCloud-locked devices -- are sold in bulk at private "carrier auctions" where companies like T-Mobile, Verizon, Sprint, AT&T, and cell phone insurance providers sell their excess inventory (often through third-party processing companies.)

Photo-sharing website Flickr is starting to delete users' photos after changing its terms and conditions. The firm announced in November that it would no longer be allowing its members one terabyte of free storage. From a report: Under the new rules, there is a limit of 1,000 photographs for those who do not subscribe to the service at a cost of $49.99 per year. One terabyte would store around 200,000 photos with an average size of 5MB. Flickr was acquired by another photo platform called SmugMug in April 2018. The price it paid to former owner Verizon was not disclosed. In a blog in November announcing the changes, Flickr said that "storing tens of billions of Flickr members' photos is staggeringly expensive". It also said by introducing the free storage in 2013, Flickr's original owner Yahoo had "lost sight of what made Flickr truly special" as new users were attracted by the storage rather than the photography.

Senator Ed Markey (D-MA) said today he would "soon" introduce a bill to permanently reinstate the net neutrality rules that were repealed by the Federal Communications Commission, led by chairman Ajit Pai, in 2017. From a report: Markey's announcement comes as a federal court is set to hear oral arguments over the FCC's repeal of net neutrality regulations in 2017. Markey, who is a member of the Senate Commerce Committee, has previously introduced a bill that would permanently reinstate net neutrality as a member of the House of Representatives, although the measure ultimately failed.

It's unclear when the bill would be formally introduced, but Markey said it was imminent. "We will soon lay down a legislative marker in the Senate in support of net neutrality to show the American people that we are on their side in overwhelming supporting a free and open internet." Further reading: Net Neutrality Repeal at Stake as Key Court Case Starts: Oral arguments are set to begin Friday in the most prominent lawsuit challenging the federal government's repeal of broadband access rules known as net neutrality. The Federal Communications Commission approved the rules in 2015 to ensure internet users equal and open access to all websites and services. The commission, under new leadership, rolled the rules back in 2017. The plaintiffs in the suit to be argued Friday, led by the internet company Mozilla and supported by 22 state attorneys general, say the commission lacked a sound legal reason for scrapping the regulations. The government is expected to argue that the rules were repealed because of the burden they imposed on broadband providers like Verizon and Comcast.

A U.S. judge rejected Yahoo's proposed settlement with millions of people whose email addresses and other personal information were stolen in the largest data breach in history, faulting the Internet services provider for a lack of transparency. From a report: In a Monday night decision, U.S. District Judge Lucy Koh in San Jose, California, said she could not declare the settlement "fundamentally fair, adequate and reasonable" because it did not say how much victims could expect to recover. Yahoo, now part of New York-based Verizon Communications, was accused of being too slow to disclose three breaches from 2013 to 2016 that affected an estimated 3 billion accounts. The settlement called for a $50 million payout, plus two years of free credit monitoring for about 200 million people in the United States and Israel with nearly 1 billion accounts.

According to a report from Reason magazine, Twitter users who comment the "learn to code" advice at journalists who just lost their jobs might be treated as "abusive behavior," which is a violation of the social media site's terms of service. The rumor comes from Jon Levine, Media Editor at The Wrap. From the report: The Wrap's Jon Levine said representatives for the social media company had backed away from the position they related to him earlier, which was that the phrase "learn to code" itself constituted abusive behavior. The new position seems to be that "learn to code" is not de facto harassment, but could be considered harassment if tweeted aggressively as part of campaign to intimidate a specific user, in accordance with Twitter's somewhat vague abusive behavior policy. In an email to Reason, a Twitter spokesperson said: "Twitter is responding to a targeted harassment campaign against specific individuals -- a policy that's long been against the Twitter Rules."

Last week, journalists from BuzzFeed, HuffPost, Yahoo, AOL, and others, were let go. BuzzFeed founder and CEO, Jonah Peretti, said the company "would reduce headcount by 15%, or about 250 jobs, to around 1,100 employees globally," reports The Guardian. "At the same time, Verizon said it would trim 7% of headcount, about 800 people, from its media unit, which includes HuffPost, Yahoo and AOL. The job losses followed sales or cuts at Mic, Refinery29 and elsewhere."

Verizon says it will give all its subscribers free access to its spam alert and call blocking tools, so long as their phones can support the features. From a report: The carrier originally rolled out those tools over a year ago as part of its $3-per-month Call Filter add-on. But starting in March, subscribers with compatible smartphones (including iPhone and Android devices) will be able fend off unwanted robocalls without having to pay extra. Verizon says it will release more info on how to sign up for the free tools near their launch date.

A new report from The Wall Street Journal says the Motorola RAZR might be making a comeback as a $1,500 foldable screen smartphone, and it could launch as early as February. The Verge reports: The original RAZR was one of the most iconic cellphones ever made, and it seems that Motorola's parent company Lenovo is looking to cash in on that branding with an updated foldable phone (similar to the one that Samsung has teased for later this year). Per the WSJ, the new RAZR will be exclusive to Verizon in the U.S. with a planned February launch, although the device is still in testing and details have yet to be finalized.

Also unknown is nearly any concrete information about the phone. There's no word yet on things like screen size, specifications, or even form factor. Will the revived RAZR just borrow the name but use a more traditional landscape folding display? Will Lenovo follow the original RAZR design and have some sort of super long vertically folding screen? According to the WSJ report, Lenovo is hoping to manufacture over 200,000 of the new RAZRs, which may seem optimistic for a $1,500 luxury smartphone. But considering that the (admittedly much cheaper) RAZR V3 model sold 130 million units over its lifespan, if lightning does manage to strike twice, that goal might not be so hard to hit.

Last week, Ars Technica reported that Verizon's new "spam" fee for texts sent from teachers to students might stop working on the network because of a dispute over texting fees that Verizon demanded from Remind, the company that operates the service. Now, it appears that Verizon "has backed down from its original position slightly, and ongoing negotiations could allow the free texting service to continue," reports Ars. From the report: As we reported Monday, the dispute involves Verizon and Remind, which makes a communication service used by teachers and youth sports coaches. Verizon is charging an additional fee, saying the money will be used to fund spam-blocking services. The fee would increase Remind's costs for sending texts to Verizon users from a few hundred thousand dollars to several million dollars per year, Remind said. Remind said it would absorb the cost in order to continue providing the paid version of its service. But most of Remind's 30 million users rely on the free version of the service, and Remind said it could no longer provide free text message notifications over Verizon's network unless the fee is reversed.

Verizon issued an announcement today, titled "App provider Remind threatens to eliminate a free texting service for K-12 education organizations (which will cost it nothing)." The title reflects a new offer Verizon said it made on Tuesday, which would reverse the fee for K-12 users of the free Remind service. "Verizon will not charge Remind fees as long as they don't begin charging K-12 schools, educators, parents and students using its free text message service," Verizon said. "Despite this offer, made Tuesday, Remind has not changed its position that it will stop sending free texts to Verizon customers who use the service regarding school closures, classroom activities and other critical information." The report goes on to note that simply limiting the offer to K-12 users means the fee "would still be charged for preschools, day-care centers, and youth sports coaches who use the free Remind service."

An anonymous reader quotes a report from Ars Technica: A free texting service used by teachers, students, and parents may stop working on the Verizon Wireless network because of a dispute over texting fees that Verizon demanded from the company that operates the service. As a result, teachers that use the service have been expressing their displeasure with Verizon. Remind -- the company that offers the classroom communication service -- criticized Verizon for charging the new fee. Remind said its service's text message notifications will stop working on the Verizon network on January 28 unless Verizon changes course. (Notifications sent via email or via Remind's mobile apps will continue to work.) The controversy cropped up shortly after a Federal Communications Commission decision that allowed U.S. carriers' text-messaging services to remain largely unregulated. Verizon says the fee must be charged to fund spam-blocking services. Remind said in a statement: "To offer our text-messaging service free of charge, Remind has always paid for each text that users receive or send. Now, Verizon is charging Remind an additional fee intended for companies that send spam over its network. Your Remind messages aren't spam, but that hasn't helped resolve the issue with Verizon. The fee will increase our cost of supporting text messaging to at least 11 times our current cost -- forcing us to end free Remind text messaging for the more than 7 million students, parents, and educators who have Verizon Wireless as their carrier."