The Almighty Buck

OnePlus Customers Report Credit Card Fraud After Buying From the Company's Website (androidpolice.com) 63

If you purchased a OnePlus smartphone recently from the official OnePlus website, you might want to check your transactions to make sure there aren't any you don't recognize. "A poll was posted on the OnePlus forum on Thursday asking users if they had noticed fraudulent charges on their credit cards since purchasing items on the OnePlus site," reports Android Police. "More than 70 respondents confirmed that they had been affected, with the majority saying they had bought from the site within the past 2 months." From the report: A number of FAQs and answers follow, in which OnePlus confirms that only customers who made credit card payments are affected, not those who used PayPal. Apparently, card info isn't stored on the site but is instead sent directly to a "PCI-DSS-compliant payment processing partner" over an encrypted connection. [...] OnePlus goes on to say that intercepting information should be extremely difficult as the site is HTTPS encrypted, but that it is nevertheless carrying out a complete audit. In the meantime, affected customers are advised to contact their credit card companies immediately to get the payments canceled/reversed (called a chargeback). OnePlus will continue to investigate alongside its third-party service providers, and promises to update with its findings as soon as possible.

According to infosec firm Fidus, there is actually a brief window in which data could be intercepted. Between entering your card details into the form and hitting 'submit,' the details are apparently hosted on-site, which could give attackers all the time they need to steal those precious digits and head off on a spending spree. Fidus also notes that the company doesn't appear to be PCI-compliant, but that directly contradicts OnePlus' own statement. We'll have to wait until more details emerge before we pass judgment.
Here's OnePlus' official statement on the matter: "At OnePlus, we take information privacy extremely seriously. Over the weekend, members of the OnePlus community reported cases of unknown credit card transactions occurring on their credit cards post purchase from oneplus.net. We immediately began to investigate as a matter of urgency, and will keep you updated. This FAQ document will be updated to address questions raised."
Google

Why Uber Can Find You but 911 Can't (wsj.com) 200

Accurate location data is on smartphones, so why don't more wireless carriers use it to locate emergency callers? From a report, shared by a reader: Software on Apple's iPhones and Google's Android smartphones help mobile apps like Uber and Facebook to pinpoint a user's location, making it possible to order a car, check in at a local restaurant or receive targeted advertising. But 911, with a far more pressing purpose, is stuck in the past. U.S. regulators estimate as many as 10,000 lives could be saved each year if the 911 emergency dispatching system were able to get to callers one minute faster. Better technology would be especially helpful, regulators say, when a caller can't speak or identify his or her location. After years of pressure, wireless carriers and Silicon Valley companies are finally starting to work together to solve the problem. But progress has been slow. Roughly 80% of the 240 million calls to 911 each year are made using cellphones, according to a trade group that represents first responders. For landlines, the system shows a telephone's exact address. But it can register only an estimated location, sometimes hundreds of yards wide, from a cellphone call. That frustration is now a frequent source of tension during 911 calls, said Colleen Eyman, who oversees 911 services in Arvada, Colo., just outside Denver.
Cellphones

Text Message Scammer Gets Five Years in Prison (reuters.com) 69

36-year-old Fraser Thompson is going to prison, according to Reuters, after receiving a five-year sentence for "defrauding" cellphone customers out of millions of dollars. An anonymous reader quotes Reuters: Prosecutors said Thompson engaged in a scheme to sign up hundreds of thousands of cellphone customers for paid text messaging services without their consent. The customers were subsequently forced to pay more than $100 million for unsolicited text messages that included trivia, horoscopes and celebrity gossip, according to the prosecutors. They said the scheme was headed by Darcy Wedd, Mobile Messenger's former chief executive, who was found guilty by a jury in December but has not yet been sentenced. "They ripped off everyday cellphone users, $10 a month, netting over $100 million in illegal profits, of which Thompson personally received over $1.5 million," Manhattan U.S. Attorney Geoffrey S. Berman said in a statement.
Thompson was ordered to forfeit $1.5 million in "fraud proceeds," according to the article, and was convicted of conspiracy, wire fraud, identity theft and money laundering.

Seven other people also pleaded guilty to participating in the scam -- and one has already been sentenced to 33 months in prison.
Cellphones

Fake 'Inbound Missile' Alert Sent To Every Cellphone in Hawaii (chicagotribune.com) 227

"Somebody sent out a false emergency alert to all cell phones in Hawaii saying, 'BALLISTIC MISSILE THREAT INBOUND TO HAWAII. SEEK IMMEDIATE SHELTER. THIS IS NOT A DRILL'," writes Slashdot reader flopwich, adding "Somebody's had better days at work." The Associated Press reports: In a conciliatory news conference later in the day, Hawaii officials apologized for the mistake and vowed to ensure it will never happen again. Hawaii Emergency Management Agency Administrator Vern Miyagi said the error happened when someone hit the wrong button. "We made a mistake," said Miyagi. For nearly 40 minutes, it seemed like the world was about to end in Hawaii, an island paradise already jittery over the threat of nuclear-tipped missiles from North Korea...

On the H-3, a major highway north of Honolulu, vehicles sat empty after drivers left them to run to a nearby tunnel after the alert showed up, the Honolulu Star-Advertiser reported. Workers at a golf club huddled in a kitchen fearing the worst... The Hawaii Emergency Management Agency tweeted there was no threat about 10 minutes after the initial alert, but that didn't reach people who aren't on the social media platform. A revised alert informing of the "false alarm" didn't reach cellphones until 38 minutes later, according to the time stamp on images people shared on social media.

Cellphones

Samsung Will Unveil the Galaxy S9 Next Month At Mobile World Congress (theverge.com) 55

Samsung will unveil its next flagship handset, the Galaxy S9, next month at Mobile World Congress (MWC). DJ Koh, the company's smartphone chief, confirmed the launch to ZDNet at CES yesterday without offering a specific date. The Verge reports: The S9 (and, presumably, an S9 Plus) will be the successors to the S8 and S8 Plus, which launched at a Samsung event in New York last March before going on sale in April. The S8 and its bigger brother were a hit with critics, who praised the phones' gorgeous design and brilliant cameras. The phones were even good enough to make consumers forget about the disaster of the Galaxy Note 7 and its exploding batteries. Not much is known about the Galaxy S9 at this point, though we're not expecting any radical departures from the S8. A handful of leaked renders suggest it will look near-identical to its predecessor, with a slight tweak moving the rear fingerprint sensor to below the camera (rather than its current, awkward position of off to one side).
AT&T

AT&T Pulls Out of Deal To Sell China's Huawei Phones In the US (phonedog.com) 63

According to the Wall Street Journal, AT&T has walked away from a deal to sell China's Huawei smartphones in the U.S. Neither AT&T nor Huawei have commented on the matter, but the news is certainly going to disappoint those of you who were looking forward to picking up Huawei's flagship Mate 10. Prior to this report, Huawei was expected to announce that its flagship Mate 10 will launch on AT&T in 2018. PhoneDog reports: Huawei has a major presence internationally, with recent reports saying that it's the No. 3 smartphone brand in the world behind Apple and Samsung. The company hasn't made much of a dent in the U.S., though, despite the fact that it's been selling its phones unlocked in the U.S. for awhile now. This AT&T deal would've been big for Huawei, helping it to get its phones inside carrier stores and in front of U.S. consumers, the majority of which still buy their phones from their carriers. Now we'll have to wait and see if Huawei can strike a deal with another carrier or if it'll have to continue on in the unlocked market. A Huawei spokesperson only said "Huawei has proven itself by delivering premium devices with integrity globally and in the U.S. market."
Cellphones

Would You Use a Smartphone-Style Laptop With a Three-Day Battery Life? (king5.com) 194

An anonymous reader quotes USA Today: "Always connected personal computers" -- or ACPCs -- refer to a new breed of Windows laptops with three key features: a battery that can last multiple days; instant-on access when you open the lid or touch a key; and an optional high-speed cellular connection, to avoid hunting for a Wi-Fi hotspot to get online. In other words, your laptop is going to behave a lot more like your smartphone...

In fact, with the Qualcomm Snapdragon 835 processor, ASUS is claiming battery life of up to 22 hours of continuous video playback, and up to 30 days on standby. At $799, the ASUS NovaGo (model # TP370) will also be the first always-connected PC with a 360-degree flip hinge -- making it a "2-in-1" that can convert from laptop mode to a tablet by bending back the 13.3-inch screen -- and the first with Gigabit LTE speeds, for an always on, always connected experience.

ASUS's media relations director touts the high-speed cellular connections -- which consumers pay for separately -- as 3 to 7 times faster than broadband. "It allows you to download a 2-hour movie in about 10 seconds."

And Qualcomm's senior director of product management says there's more ways that it's like a smartphone. "Even when the screen is off, it's still connected, so when I open the lid, it does facial recognition, and I'm in."
Cellphones

White House Bans Use of Personal Devices From West Wing (cbsnews.com) 205

In the wake of damaging reports of a chaotic Trump administration detailed in a new book from Michael Wolff, the White House is instituting new policies on the use of personal cellphones in the West Wing. CBS News reports: White House Press Secretary Sarah Huckabee Sanders released the following statement on the policy change: "The security and integrity of the technology systems at the White House is a top priority for the Trump administration and therefore starting next week the use of all personal devices for both guests and staff will no longer be allowed in the West Wing. Staff will be able to conduct business on their government-issued devices and continue working hard on behalf of the American people."

Wolff reportedly gained access to the White House where he conducted numerous interviews with staffers on the inner-workings of the Trump campaign and West Wing operations. Sanders told reporters Wednesday that there were about "a dozen" interactions between Wolff and White House officials, which she said took place at Bannon's request. The White House swiftly slammed the book and those who cooperated with Wolff.

Google

Is Google Home Fit For Elderly and Disabled Users? (vortex.com) 93

Chances are either you or someone you know received a Google Home over the holidays. Not only are they being marketed heavily by Google but they seem to have appeared in almost every "Holiday Gift Guide" on the internet. Slashdot reader Lauren Weinstein brings up an interesting dilemma: is Google Home fit for the elderly? Weinstein writes: You cannot install or routinely maintain Google Home units without a smartphone and the Google Home smartphone app. There are no practical desktop based and/or remotely accessible means for someone to even do this for you. A smartphone on the same local Wi-Fi network as the device is always required for these purposes. This means that many elderly persons and individuals with physical or visual disabilities -- exactly the people whose lives could be greatly enhanced by Home's advanced voice query, response, and control capabilities -- are up the creek unless they have someone available in their physical presence to set up the device and make any ongoing configuration changes. Additionally, all of the "get more info" links related to Google Home responses are also restricted to the smartphone Home app.
Open Source

Fleeing Google's Apps and iOS, Mandrake Linux Creator Launches 'eelo' Project (hackernoon.com) 122

Open-source veteran Gaël Duval created Mandrake Linux in 1998. But in a new essay, he writes that "I realized that I had become lazy. Not only wasn't I using Linux anymore as my main operating system, but I was using a proprietary OS on my smartphone. And I was using Google more and more."

Long-time Slashdot reader nuand999 writes: He's creating a non-profit project called eelo.io that's going to release a "privacy-friendly" smartphone OS and associated web-services... eelo is going to be forked fromLineageOS, and will ship with the existing open source bricks put together into a consistent and privacy-enhanced, yet desirable, smartphone OS + web-services. A crowdfunding campaign has just started on Kickstarter to fuel early developments.
"iOS is proprietary and I prefer Open Source Software," Gaël writes on Hacker Noon, while also adding that "like millions of others, I'VE BECOME A PRODUCT OF GOOGLE... I'm not happy because Google has become too big and is tracking us by catching a lot of information about what we do. They want to know us as much as possible to sell advertising..."

"People are free to do what they want. They can choose to be volunteery slaves. But I do not want this situation for me anymore. I want to reconquer my privacy. My data is MY data. And I want to use Open Source software as much as possible."
Cellphones

Your Phone May Send You 'Blue Alerts' To Warn You When Local Police Are In Danger (androidpolice.com) 318

The FCC recently announced a new alert program called "Blue Alert" that will notify the public of threats to law enforcement in real time. "With the creation of a dedicated Blue Alert event code in the Emergency Alert System, state and local law enforcement will have the capability to push immediate warnings out to the public via broadcast, cable, and satellite providers, as well as to consumer smartphones through the Wireless Emergency Alert system," reports Android Police. From the report: Much like both the SILVER and AMBER alert programs, and utilizing the same notification system, Blue Alerts aim to warn the general public of threats to public safety and/or imminent danger. However, the police force focused alert system provides timely information to the public when police officers may be in danger. Chairman of the FCC and recent deregulator of the internet, Ajit Pai detailed the new FCC order saying, "Similar to the Amber Alerts that many are familiar with, Blue Alerts will enable authorities to warn the public when there is actionable information related to a law enforcement officer who is missing, seriously injured or killed in the line of duty, or when there is an imminent credible threat to an officer."

The December 14 order from the FCC activates the Blue Alerts service for one calendar year to deliver the notifications over the Emergency Alert System, and for 18 months over the Wireless Emergency Alert system.

United States

Power Outage Strands Thousands at US Airport. 600 Flights Cancelled (cnn.com) 189

An anonymous reader quotes CNN: A power outage at the world's busiest airport left thousands of passengers stranded in dark terminals and in planes sitting on the tarmac, amid a nationwide ground stop. Incoming and outgoing flights at Atlanta's Hartsfield-Jackson International Airport were halted indefinitely as crews worked to restore power, leading to hundreds of flight delays and cancellations. Atlanta is the heart of the US air transport system, and what happens there has the potential to ripple through the country.

More than 600 flights to and from Atlanta have been canceled, including 350 departures, according to Flightradar24... Flights headed to Atlanta are being held on the ground at their departure airport. Inbound flights to Atlanta are being diverted, US Customs and Border Protection said. Departures from the airport are delayed because electronic equipment is not working in the terminals, the FAA said. The cause of the incident is under investigation.

Some people stranded in the dark terminals used their cellphones as flashlights, one passenger told CNN. "There were a few emergency lights on, but it was really dark -- felt totally apocalyptic."
Cellphones

Don't Keep Cellphones Next To Your Body, California Health Department Warns (techcrunch.com) 344

The California Department of Public Health (CDPH) issued a warning against the hazards of cellphone radiation this week. They are asking people to decrease their use of these devices and suggest keeping your distance when possible. TechCrunch reports: The warning comes after findings were offered up this week from a 2009 department document, which was published after an order from the Sacramento Superior Court. A year ago, UC Berkeley professor Joel Moskowitz initiated a lawsuit to get the department to release the findings after he started looking into whether mobile phone use increased the risk of tumors. A draft of the document was released in March, but the final release is more extensive.

According to the Federal Communication Commission's website, there is no national standard developed for safety limits. However, the agency requires cell phone manufacturers to ensure all phones comply with "objective limits for safe exposure." The CDPH recommends not keeping your phone in your pocket, not putting it up to your ear for a prolonged amount of time, keeping use low if there are two bars or less, not sleeping near it at night and to be aware that if you are in a fast-moving car, bus or train, your phone will emit more RF energy to maintain the connection.

Canada

Canadian Cellphone Bills Are Some of the Highest In the World, Says Report (straight.com) 184

Freshly Exhumed shares a report from Straight: A report released this week by the Ministry of Innovation, Science, and Economic Development (ISED) confirms that Canada ranks among the top three most costly countries for mobile wireless plans. Comparing the U.K, Italy, France, Australia, Japan, and the U.S. on six tiers of pricing -- which looked at talk-time, texts, and data -- the document shows that Canada has the most expensive mid-range and higher-tier plans in the world. "It is unacceptable that Canadians continue to pay ever-rising prices year after year for something as critical as mobile communications services," said Katy Anderson, Digital Rights Advocate at OpenMedia.
Earth

Almost 45 Million Tons of E-waste Discarded Last Year (apnews.com) 177

A new study claims 44.7 million metric tons (49.3 million tons) of TV sets, refrigerators, cellphones and other electrical good were discarded last year, with only a fifth recycled to recover the valuable raw materials inside. From a report: The U.N.-backed study published Wednesday calculates that the amount of e-waste thrown away in 2016 included a million tons of chargers alone. The U.S. accounted for 6.3 million metric tons, partly due to the fact that the American market for heavy goods is saturated. The original study can be found here (PDF; Google Drive link).
Education

France To Ban Mobile Phones In Schools (theguardian.com) 191

The French government is planning to ban students from using mobile phones in the country's primary, junior and middle schools. While children will be permitted to bring their phones to school, they will not be allowed to get them out at any time until they leave, even during breaks. The Guardian reports: Jean-Michel Blanquer, the French education minister, said the measure would come into effect from the start of the next school year in September 2018. It will apply to all pupils from the time they start school at age of six -- up to about 15 when they start secondary school. Blanquer said some education establishments already prohibited pupils from using their mobiles. "Sometimes you need a mobile for teaching reasons [...] for urgent situations, but their use has to be somehow controlled," he told RTL radio. The minister said the ban was also a "public health message to families," adding: "It's good that children are not too often, or even at all, in front of a screen before the age of seven." The French headteachers' union was skeptical that the ban could be enforced.
Iphone

Should Apple Share iPhone X Face Data With App Developers? (washingtonpost.com) 66

The Washington Post ran a technology column asking what happens "when the face-mapping tech that powers the iPhone X's cutesy 'Animoji' starts being used for creepier purposes." It's not just that the iPhone X scans 30,000 points on your face to make a 3D model. Though Apple stores that data securely on the phone, instead of sending it to its servers over the Internet, "Apple just started sharing your face with lots of apps." Although their columnist praises Apple's own commitment to privacy, "I also think Apple rushed into sharing face maps with app makers that may not share its commitment, and it isn't being paranoid enough about the minefield it just entered." "I think we should be quite worried," said Jay Stanley, a senior policy analyst at the American Civil Liberties Union. "The chances we are going to see mischief around facial data is pretty high -- if not today, then soon -- if not on Apple then on Android." Apple's face tech sets some good precedents -- and some bad ones... Less noticed was how the iPhone lets other apps now tap into two eerie views from the so-called TrueDepth camera. There's a wireframe representation of your face and a live read-out of 52 unique micro-movements in your eyelids, mouth and other features. Apps can store that data on their own computers.

To see for yourself, use an iPhone X to download an app called MeasureKit. It exposes the face data Apple makes available. The app's maker, Rinat Khanov, tells me he's already planning to add a feature that lets you export a model of your face so you can 3D print a mini-me. "Holy cow, why is this data available to any developer that just agrees to a bunch of contracts?" said Fatemeh Khatibloo, an analyst at Forrester Research.

"From years of covering tech, I've learned this much," the article concludes. "Given the opportunity to be creepy, someone will take it."
Cellphones

'App Truthers' Question the Accuracy of the Domino's Pizza Tracker (foxnews.com) 205

Despite the fact that 60% of its pizza orders arrive digitally, "A growing number of Domino's delivery customers are casting a critical eye at the company's online pizza-tracking app," reports the lifestyle editor at Fox News. "More specifically, they think it's a bunch of crap." Fault-finding app users -- or "app truthers," as The Wall Street Journal calls them -- are subscribing to the notion that the Domino's pizza tracker is nothing but a bunch of smoke and mirrors. One user who spoke with the Journal claims his app told him that "Melinda" would be arriving shortly with his order, but when he opened the door, a delivery man he already knew handed him the pizza. "Ever since then, I knew everything they said, I felt, was made up," he said.

Another man claims the tracker told him his pizza was en route, even though he could see the Domino's restaurant from his house, and there was no sign of the pizza being out for delivery. Others claim the pizza app told them their food had been delivered when it hadn't, or that there were huge discrepancies between when their pies were supposed to be delivered and when they actually arrived. A whole thread on Reddit suggests that the app is just an automated timer disguised to look like a real-time tracker.

In a statement Domino's blamed the problem on employees not entering correct data, while also insisting that "the vast majority of the time Pizza Tracker works as designed."

According to the article, "A person who claimed to be a Domino's employee also said nearly as much in a 2015 Reddit thread. He/she added that the name of the person preparing the pizza -- as far as the app is concerned -- is usually the manager.
Cellphones

Controversial Study Claims 'Smartphone Addiction' Alters the Brain (inverse.com) 64

An anonymous reader quotes a report from Inverse: In the new paper, presented Thursday at the annual meeting of the Radiological Society of North America, a team of radiologists at Korea University report that smartphone addiction changes teenagers' brains. Using brain imaging, they argue that smartphone- and internet-addicted teenagers have imbalanced brain chemistry when compared to their peers who aren't addicted to smartphones or the internet. But scientists not involved with the study have some serious issues with their research. Perhaps the most important of these issues is the fact that "smartphone addiction" is not a scientifically established thing -- at least not yet.

In the study, the team led by Dr. Hyung Suk Seo used "standardized internet and smartphone addiction tests to measure the severity of internet addiction" in nine boys and 10 girls, according to a statement. Then, they used MRS, a brain imaging technique that can identify particular brain chemicals, to examine the participants' brains before and after taking nine weeks of cognitive behavioral therapy to help their "addiction." Compared to a control group, the "smartphone addicts" had skewed levels of neurotransmitters in their brains. In particular, they had a higher ratio of GABA to Glx (glutamateglutamine), which are respectively responsible for slowing down brain signals and exciting neurons. An elevated ratio of GABA to Glx, the researchers concluded, can be associated with the self-reported symptoms of the "smartphone addict" teens, including depression, anxiety, insomnia severity and impulsivity. After 12 of the teens participated in cognitive behavior therapy, the scientists report, their chemical imbalances appeared to even out to look more like the control group's.

Communications

Volunteers Around the World Build Surveillance-Free Cellular Network Called 'Sopranica' (vice.com) 77

dmoberhaus writes: Motherboard's Daniel Oberhaus spoke to Denver Gingerich, the programmer behind Sopranica, a DIY, community-oriented cell phone network. "Sopranica is a project intended to replace all aspects of the existing cell phone network with their freedom-respecting equivalents," says Gingerich. "Taking out all the basement firmware on the cellphone, the towers that track your location, the payment methods that track who you are and who owns the number, and replacing it so we can have the same functionality without having to give up all the privacy that we have to give up right now. At a high level, it's about running community networks instead of having companies control the cell towers that we connect to." Motherboard interviews Gingerich and shows you how to use the network to avoid cell surveillance. According to Motherboard, all you need to do to join Sopranica is "create a free and anonymous Jabber ID, which is like an email address." Jabber is slang for a secure instant messaging protocol called XMPP that let's you communicate over voice and text from an anonymous phone number. "Next, you need to install a Jabber app on your phone," reports Motherboard. "You'll also need to install a Session Initiation Protocol (SIP) app, which allows your phone to make calls and send texts over the internet instead of the regular cellular network." Lastly, you need to get your phone number, which you can do by navigating to Sopranica's JMP website. (JMP is the code, which was published by Gingerich in January, and "first part of Sopranica.") "These phone numbers are generated by Sopranica's Voice Over IP (VOIP) provider which provides talk and text services over the internet. Click whichever number you want to be your new number on the Sopranica network and enter your Jabber ID. A confirmation code should be sent to your phone and will appear in your Jabber app." As for how JMP protects against surveillance, Gingerich says, "If you're communicating with someone using your JMP number, your cell carrier doesn't actually know what your JMP number is because that's going over data and it's encrypted. So they don't know that that communication is happening."

Slashdot Top Deals