Presto Vivace points out this troubling new report from the Electronic Frontier Foundation: Recently, Verizon was caught tampering with its customer's web requests to inject a tracking super-cookie. Another network-tampering threat to user safety has come to light from other providers: email encryption downgrade attacks. In recent months, researchers have reported ISPs in the U.S. and Thailand intercepting their customers' data to strip a security flag — called STARTTLS — from email traffic. The STARTTLS flag is an essential security and privacy protection used by an email server to request encryption when talking to another server or client.

By stripping out this flag, these ISPs prevent the email servers from successfully encrypting their conversation, and by default the servers will proceed to send email unencrypted. Some firewalls, including Cisco's PIX/ASA firewall do this in order to monitor for spam originating from within their network and prevent it from being sent. Unfortunately, this causes collateral damage: the sending server will proceed to transmit plaintext email over the public Internet, where it is subject to eavesdropping and interception.

An anonymous reader writes A few weeks ago I noted how security researchers had discovered that Verizon has been injecting a unique new 'stealth cookie' identifier into all user traffic that tracks user online behavior, even if the consumer opts out. Using a unique Identifier Header, or UIDH, Verizon's ham-fisted system broadcasts your identity all across the web — and remains intact and open to third-party abuse — even if you opt-out of Verizon's behavioral ad programs. Now the Electronic Frontier Foundation has filed a complaint with the FCC and has strongly indicated that they're considering legal action against Verizon for violating consumer privacy laws.

An anonymous reader writes John Oliver calls it "cable company f*ckery" and we've all suspected it happens. Now on Steven Levy's new Backchannel publication on Medium, Susan Crawford delivers decisive proof, expertly dissecting the Comcast-Netflix network congestion controversy. Her source material is a detailed traffic measurement report (.pdf) released this week by Google-backed M-Lab — the first of its kind — showing severe degradation of service at interconnection points between Comcast, Verizon and other monopoly "eyeball networks" and "transit networks" such as Cogent, which was contracted by Netflix to deliver its bits. The report shows that interconnection points give monopoly ISPs all the leverage they need to discriminate against companies like Netflix, which compete with them in video services, simply by refusing to relieve network congestion caused by external traffic requested by their very own ISP customers. And the effects victimize not only companies targeted but ALL incoming traffic from the affected transit network. The report proves the problem is not technical, but rather a result of business decisions. This is not technically a Net neutrality problem, but it creates the very same headaches for consumers, and unfair business advantages for ISPs. In an accompanying article, Crawford makes a compelling case for FCC intervention.

theodp writes: A year-long investigation by NBC Bay Area's Investigative Unit and The Center for Investigative Reporting (CIR) raises questions about the H-1B visa program. In a five-part story that includes a mini-graphic novel called Techsploitation, CIR describes how the system rewards job brokers who steal wages and entrap Indian tech workers in the U.S., including the awarding of half a billion dollars in Federal tech contracts to those with labor violations. "Shackling workers to their jobs," CIR found after interviewing workers and reviewing government agency and court documents, "is such an entrenched business practice that it has even spread to U.S. nationals. This bullying persists at the bottom of a complex system that supplies workers to some of America's richest and most successful companies, such as Cisco Systems Inc., Verizon and Apple Inc."

In a presumably unrelated move, the U.S. changed its H-1B record retention policy last week, declaring that records used for labor certification, whether in paper or electronic, "are temporary records and subject to destruction" after five years under the new policy. "There was no explanation for the change, and it is perplexing to researchers," reports Computerworld. "The records under threat are called Labor Condition Applications (LCA), which identify the H-1B employer, worksite, the prevailing wage, and the wage paid to the worker." Lindsay Lowell, director of policy studies at the Institute for the Study of International Migration at Georgetown University, added: "It undermines our ability to evaluate what the government does and, in today's world, retaining electronic records like the LCA is next to costless [a full year's LCA data is less than 1 GB]." President Obama, by the way, is expected to use his executive authority to expand the H-1B program after the midterm elections.

blottsie writes: The most-valuable, second-richest telecommunications company in the world is bankrolling a technology news site called SugarString.com. The publication, which is now hiring its first full-time editors and reporters, is meant to rival major tech websites like Wired and the Verge while bringing in a potentially giant mainstream audience to beat those competitors at their own game.

There's just one catch: In exchange for the major corporate backing, tech reporters at SugarString are expressly forbidden from writing about American spying or net neutrality around the world, two of the biggest issues in tech and politics today.

mrspoonsi sends news that a group of major tech companies has combined to donate $750 million worth of gadgets and services to students in 114 schools across the U.S. Apple is sending out $100 million worth of iPads, MacBooks, and other products. O'Reilly Media is making $100 million worth of educational content available for free. Microsoft and Autodesk are discounting software, while Sprint and AT&T are offering free wireless service. This is part of the ConnectED Initiative, a project announced by the Obama Administration last year to bring modern technology to K-12 classrooms. The FCC has also earmarked $2 billion to improve internet connectivity in schools and libraries over the next two years. Obama also plans to seek funding for training teachers to utilize this infusion of technology.

New submitter hejman08 writes with a question probably faced by many whose parents, grandparents, and other relatives rely on them for tech support and advice, specifically one about finding an appropriate data plan for his grandmother, of whom he writes: She is on her own plan through Verizon with 1GB of data, and she literally blows through it in three days or less every month, then complains about having nothing to do. They have Wi-Fi at her senior center, but only in specific rooms, and she has bad ankles and knees so she wants to stay home. Internet service would cost 80 a month to add where she lives. What I am wondering, is if any of the genius slashdotters out there know of a plan that- regardless of cost of phone, which we could manage as a gift to her, once- would allow her to have at least 300 minutes, 250 texts, and truly unlimited data (as in none of that Unlimited* stuff that is out there where they drop you to caveman speeds within a gig of usage), all for the price of less than say, 65 a month? The big 4 carriers don't seem to have anything that would work for her. What would you recommend? (I might start with a signal repeater in a utility closet, myself, or some clandestine CAT5 from a friendly neighbor's place.)

As reported by MacRumors, the unlocked, carrier-switchable SIM cards built into the newest iPads aren't necessarily so -- at least if you buy them from an AT&T store. Though the card comes from Apple with the ability to support (and be switched among with software, if a change is necessary) all major carriers, "AT&T is not supporting this interchangeability and is locking the SIM included with cellular models of the iPad Air 2 and Retina iPad mini 3 after it is used with an AT&T plan. ... AT&T appears to be the only participating carrier that is locking the Apple SIM to its network. T-Mobile's John Legere has indicated that T-Mobile's process does not lock a customer in to T-Mobile, which appears to be confirmed by Apple's support document, and Sprint's process also seems to leave the Apple SIM unlocked and able to be used with other carrier plans. Verizon, the fourth major carrier in the United States, did not opt to allow the Apple SIM to work with its network." The iPad itself can still be activated and used on other networks, but only after the installation of a new SIM.

An anonymous reader writes: Verizon Wireless, the nation's largest wireless carrier, is now also a real-time data broker. According to a security researcher at Stanford, Big Red has been adding a unique identifier to web traffic. The purpose of the identifier is advertisement targeting, which is bad enough. But the design of the system also functions as a 'supercookie' for any website that a subscriber visits. "Any website can easily track a user, regardless of cookie blocking and other privacy protections. No relationship with Verizon is required. ...while Verizon offers privacy settings, they don’t prevent sending the X-UIDH header. All they do, seemingly, is prevent Verizon from selling information about a user." Just like they said they would.

An anonymous reader writes A Notice of Inquiry was issued by the Federal Communications Commission (FCC) on Friday that focuses research on higher frequencies for sending gigabit streams of mobile data. The inquiry specifically states that its purpose is to determine "what frequency bands above 24 GHz would be most suitable for mobile services, and to begin developing a record on mobile service rules and a licensing framework for mobile services in those bands". Cellular networks currently use frequencies between 600 MHz to 3 GHz with the most desirable frequencies under 1 GHz being owned by AT&T and Verizon Wireless. The FCC feels, however, that new technology indicates the potential for utilizing higher frequency ranges not necessarily as a replacement but as the implementation necessary to finally usher in 5G wireless technology. The FCC anticipates the advent of 5G commercial offerings within six years.

An anonymous reader writes: Verizon now joins AT&T and Time Warner Cable in the list of ISPs on which Netflix streaming has significantly improved after Netflix paid for access to their networks. Ars Technica notes that "[t]he interconnection deals give Netflix a direct connection to the edge of the Internet providers' networks, bypassing congested links, but without receiving priority treatment after entering the networks." The success of these deals, however, gives the ISPs no incentive whatsoever to fix their congested links. Toll roads have, in essence, been created for the internet.

While urging policy reform as more important than per-person safeguards, Edward Snowden had a few pieces of advice on maintaining online privacy for attendees at Saturday's New Yorker Festival. As reported by TechCrunch, Snowden's ideas for avoiding online intrusions (delivered via video link) sound simple enough, but may not be easy for anyone who relies on Google, Facebook, or Dropbox, since those are three companies he names as ones to drop. A small slice: He also suggested that while Facebook and Google have improved their security, they remain “dangerous services” that people should avoid. (Somewhat amusingly, anyone watching the interview via Google Hangout or YouTube saw a Google logo above Snowden’s face as he said this.) His final piece of advice on this front: Don’t send unencrypted text messages, but instead use services like RedPhone and Silent Circle. Earlier in the interview, Snowden dismissed claims that increased encryption on iOS will hurt crime-fighting efforts. Even with that encryption, he said law enforcement officials can still ask for warrants that will give them complete access to a suspect’s phone, which will include the key to the encrypted data. Plus, companies like Apple, AT&T, and Verizon can be subpoenaed for their data.

An anonymous reader writes: Redbox, the company behind the giant red boxes at malls and grocery stores that dispense DVD and game rentals, partnered with Verizon in 2013 to launch a video streaming service to compete with Netflix. This naturally led to accusations that Verizon was throttling Netflix to tilt the scales in favor of Redbox. Well, as of Tuesday, they're packing it in. Redbox's streaming service will shut down at the end of the day on October 7th. They'll be refunding all current customers, though that number took a hit over the past several months as a credit card fraud problem caused Redbox to shut down their billing servers. This meant no new customers could sign up, and existing customers couldn't renew their subscriptions.

An anonymous reader writes I understand a lot of people dislike Verizon in general, but assuming for a moment that they were your only option for a cellular service provider, is staying on their grandfathered unlimited data plan still worth it? Their recent announcement to not throttle traffic is inpiring, but I just don't know the long-term benefits of staying on this plan. I fear there is a tipping point where enough people will swap over to a metered plan and Verizon will ultimately abandon the unlimited altogether and assume the risk of losing a percentage of those remaining folks, at which point all of us who bought unsubsidized phones will have wasted the money doing so. Does anyone have any insight on this? Useful answers to this should take into account the problem with the question of "How long is a piece of string?" Give some context about how much you pay, and how much you use -- and how much that would change if the price were different.

MetalliQaZ writes Verizon Wireless was scheduled to begin throttling certain LTE users today as part of an expanded "network optimization" program, but has decided not to follow through with the controversial plan after criticism from Federal Communications Commission Chairman Tom Wheeler. All major carriers throttle certain users when cell sites get too congested, but Wheeler and consumer advocates objected to how carriers choose which customers to throttle. The fact that Verizon was throttling only unlimited data users showed that it was trying to boost its profits rather than implementing a reasonable network management strategy, Wheeler said.

An anonymous reader writes On Wednesday at a hearing in front of the US House Committee on Small Business, FCC Chairman Tom Wheeler stated that for ISPs to be eligible for government broadband subsidies, they would have to deliver speeds of at least 10 Mbps. Said Wheeler: "What we are saying is we can't make the mistake of spending the people's money, which is what Universal Service is, to continue to subsidize something that's subpar." He further indicated that he would remedy the situation by the end of 2014. The broadband subsidies are collected through bill surcharges paid for by phone customers.

An anonymous reader writes: One of the reasons people have been fleeing cable TV in droves is the idea that they're paying for hundreds of channels but only using a handful. Even though that's not really true, Verizon is now working on an internet TV service that lets people pick and pay for only the channels they want. Verizon CEO Lowell McAdam said, "I think everyone understands it will go to a la carte. The question is what is that transition look like ... I don't think there is anyone that would stand up here and say the only way it's going to be offered five years from now is linear and it's going to be tied to your TV set because frankly they will miss the market and they will be the ones left behind."

Even after the months of hype and speculation, the behind-the-scenes development and manufacture, and then the announcement Tuesday, it seems Apple's servers weren't quite ready for the workout they got from would-be early adopters of its newest iPhone. Preorders through Verizon Wireless and AT&T largely started without a hitch at midnight, though some customers on Twitter have since complained about issues. Those problems were nothing compared to the issues experienced by Sprint and T-Mobile customers. The Sprint and T-Mobile sites were still down for many users nearly two hours after presales were slated to start. Access to Sprint's site faded in and out, while the T-Mobile site continued to display a form to register for a reminder for when the preorders began. Some people joked on Twitter that they "might as well wait for the iPhone 6S now." Apple's store itself was down for a few hours, too.

An anonymous reader writes AT&T and Verizon have asked the FCC not to change the definition of broadband from 4Mbps to 10Mbps, contending that "10Mbps service exceeds what many Americans need today to enable basic, high-quality transmissions." From the article: "Individual cable companies did not submit comments to the FCC, but their representative, the National Cable & Telecommunications Association (NCTA), agrees with AT&T and Verizon. 'The Commission should not change the baseline broadband speed threshold from 4Mbps downstream and 1Mbps upstream because a 4/1 Mbps connection is still sufficient to perform the primary functions identified in section 706 [of the Telecommunications Act]—high-quality voice, video, and data,' the NCTA wrote."

An anonymous reader writes Verizon has agreed to pay $7.4 million because it did not notify customers before using their personal information in marketing campaigns. The FCC discovered that Verizon failed to alert around two million customers of rights that include telling customers how to opt out from having their personal information used. "In today's increasingly connected world, it is critical that every phone company honor its duty to inform customers of their privacy choices and then to respect those choices," Travis LeBlanc, Acting Chief of the FCC's Enforcement Bureau said.