In a statement in February, America's Federal Bureau of Investigation "confirmed that it obtained NSO Group's powerful Pegasus spyware" back in 2019, reported the Guardian. At the time the FBI added that "There was no operational use in support of any investigation, the FBI procured a limited licence for product testing and evaluation only."

"But dozens of internal F.B.I. documents and court records tell a different story," the New York Times reported today: The documents, produced in response to a Freedom of Information Act lawsuit brought by The New York Times against the bureau, show that F.B.I. officials made a push in late 2020 and the first half of 2021 to deploy the hacking tools — made by the Israeli spyware firm NSO — in its own criminal investigations. The officials developed advanced plans to brief the bureau's leadership, and drew up guidelines for federal prosecutors about how the F.B.I.'s use of hacking tools would need to be disclosed during criminal proceedings. It is unclear how the bureau was contemplating using Pegasus, and whether it was considering hacking the phones of American citizens, foreigners or both. In January, The Times revealed that F.B.I. officials had also tested the NSO tool Phantom, a version of Pegasus capable of hacking phones with U.S. numbers.

The F.B.I. eventually decided not to deploy Pegasus in criminal investigations in July 2021, amid a flurry of stories about how the hacking tool had been abused by governments across the globe. But the documents offer a glimpse at how the U.S. government — over two presidential administrations — wrestled with the promise and peril of a powerful cyberweapon. And, despite the F.B.I. decision not to use Pegasus, court documents indicate the bureau remains interested in potentially using spyware in future investigations. "Just because the F.B.I. ultimately decided not to deploy the tool in support of criminal investigations does not mean it would not test, evaluate and potentially deploy other similar tools for gaining access to encrypted communications used by criminals," stated a legal brief submitted on behalf of the F.B.I. late last month....

The specifics of why the bureau chose not to use Pegasus remain a mystery, but American officials have said that it was in large part because of mounting negative publicity about how the tool had been used by governments around the world.
The Times also notes two responses to their latest report. U.S. Senator Ron Wyden complained the FBI's earlier testimony about Pegasus was incomplete and misleading, and that the agency "owes Americans a clear explanation as to whether the future operational use of NSO tools is still on the table."

But an F.B.I. spokeswoman said "the director's testimony was accurate when given and remains true today — there has been no operational use of the NSO product to support any FBI investigation."

Thanks to long-time Slashdot reader crazyvas for suggesting the story.

The Intercept reports that protesters in Iran "have often been left wondering how the government was able to track down their locations or gain access to their private communications — tactics that are frighteningly pervasive but whose mechanisms are virtually unknown."

But The Intercept now has evidence of a new possibility: While disconnecting broad swaths of the population from the web remains a favored blunt instrument of Iranian state censorship, the government has far more precise, sophisticated tools available as well. Part of Iran's data clampdown may be explained through the use of a system called "SIAM," a web program for remotely manipulating cellular connections made available to the Iranian Communications Regulatory Authority. The existence of SIAM and details of how the system works, reported here for the first time, are laid out in a series of internal documents from an Iranian cellular carrier that were obtained by The Intercept.

According to these internal documents, SIAM is a computer system that works behind the scenes of Iranian cellular networks, providing its operators a broad menu of remote commands to alter, disrupt, and monitor how customers use their phones. The tools can slow their data connections to a crawl, break the encryption of phone calls, track the movements of individuals or large groups, and produce detailed metadata summaries of who spoke to whom, when, and where. Such a system could help the government invisibly quash the ongoing protests — or those of tomorrow — an expert who reviewed the SIAM documents told The Intercept.

"SIAM can control if, where, when, and how users can communicate," explained Gary Miller, a mobile security researcher and fellow at the University of Toronto's Citizen Lab. "In this respect, this is not a surveillance system but rather a repression and control system to limit the capability of users to dissent or protest."
Thanks to long-time Slashdot reader mspohr for submitting the article.

An anonymous reader quotes a report from Android Authority: It's been five years since the advent of the eSIM card on smartphones, and yet the computer in our pockets is still tied down to a plastic tab that hasn't changed all that much since its debut in 1991. What gives? [...] An eSIM-enabled phone can store multiple SIM cards on the device. It makes switching networks as simple as switching your Wi-Fi network, and that's anything but convenient for mobile operators. For users in areas with spotty connectivity or rural networks, easier switching to alternative operators means loss of business for major players like Verizon or AT&T. In markets like India, dual-wielding SIM cards for better data, voice, or preferential rates are exceptionally common. Taking away the friction involved in changing physical SIM cards carries the risk of losing a customer, and it's no secret that operators have been dragging their feet to avoid that.

Theoretically, setting up an eSIM on any network should be as straightforward as pointing your camera at a QR code and activating a line. In practice, that's rarely true. Verizon's support page suggests that Android users need to call up a support desk to activate an eSIM. iPhone users have it slightly easier and can directly add the line to the phone through Verizon's website. Meanwhile, Vodafone requires you to install an app. Finally, the likes of Airtel India ask you to play a game of the fastest finger first by requiring an SMS response within 60 seconds to proceed with adding an eSIM to your line. None of these are as simple as just popping out a tray and plopping in your SIM card.

Meanwhile, as internet-based calling, texting, and video messaging become the norm, carriers are left with increasingly few add-ons to increase revenues. Tack on sky-high spectrum prices for resources like 5G and eSIMs become even less enticing to carriers. Tangential features like premium-priced international roaming plans are yet another profit driver that eSIMs circumvent. When done right, getting started with an international eSIM can be a simple two to three-click process to get you onboarded and ongoing. My colleague Rita and I have had a fantastic experience with travel eSIM services like Airalo. When I tried out Airalo earlier this year, the process took just a few taps indicating that there was no real reason for eSIMs to be complicated. However, for most operators, that just isn't the case. While hard to quantify, this needless friction has certainly hampered consumer perception of eSIMs.

Samsung is starting to roll out a "Maintenance Mode" feature for its phones that's designed to keep your messages, photos, info, and accounts safe when you're getting your phone repaired. The Verge reports: According to Samsung's press release, Maintenance Mode basically creates a separate user account that will let someone access "core functions" of the phone without being able to see any of your data. That means a repair tech will still be able to test your phone, but you won't have to worry about them seeing anything they shouldn't. Once you get your phone back, you can unlock it to turn off Maintenance Mode, which will also undo anything that was done while the phone was being repaired (e.g., test photos will be erased, new apps will be uninstalled, and settings changes will be reversed).

Samsung says the feature will be "gradually rolling out over the next few months" to select phones running the Android 13-based One UI 5 -- if you want an idea of when your phone might be getting that update, check out this article. It'll also roll out to "more Galaxy devices" throughout next year. The company does warn, however, that the "timing of availability may vary by market, model and network provider," as updates can take a while to filter through carriers.

Vice reports: Sure, you may be trying to cut down on screen time by tracking your minutes in an app on the very same smartphone you're trying to unplug from, but how about a smartphone that doesn't even have a screen to stare at in the first place? Enter MyManu's Titan screenless smartphone...

Titan is a set of eSim-enabled, voice controlled earbuds with embedded live voice translation.... So, what can you do with a "screenless smartphone, anyway? According to MyManu, you can make calls, send messages, listen to music or other streamed content, and even translate speech into over 30 languages using its built-in MyJune app — so basically, all of the "phone" parts of having a smartphone minus the hours of fucking around on apps, games, and social media.
Its web site promises the phone allows you to:

• Interact without constant screen glare
• Get better sleep, reduce eyestrain and headaches
• Reduce anxiety
• Avoid nasty bacteria or viruses [from constantly touching your screen]

The downside?

There's no screen....

"Everyone visiting Qatar for the World Cup needs to install spyware on their phone," writes security researcher Bruce Schneier. His comments are in response to an article from the Norwegian Broadcasting Corporation (NRK), reporting: Everyone traveling to Qatar during the football World Cup will be asked to download two apps called Ehteraz and Hayya. Briefly, Ehteraz is an covid-19 tracking app, while Hayya is an official World Cup app used to keep track of match tickets and to access the free Metro in Qatar. In particular, the covid-19 app Ehteraz asks for access to several rights on your mobile., like access to read, delete or change all content on the phone, as well as access to connect to WiFi and Bluetooth, override other apps and prevent the phone from switching off to sleep mode.

The Ehteraz app, which everyone over 18 coming to Qatar must download, also gets a number of other accesses such as an overview of your exact location, the ability to make direct calls via your phone and the ability to disable your screen lock. The Hayya app does not ask for as much, but also has a number of critical aspects. Among other things, the app asks for access to share your personal information with almost no restrictions. In addition, the Hayya app provides access to determine the phone's exact location, prevent the device from going into sleep mode, and view the phone's network connections. It remains to be seen whether Qatar will strictly enforce the installation of these apps. "I know people who visited Saudi Arabia when that country had a similarly sketchy app requirement," says Schneier. "Some of them just didn't bother downloading the apps, and were never asked about it at the border."

An anonymous reader quotes a report from Phys.Org: More than five billion of the estimated 16 billion mobile phones possessed worldwide will likely be discarded or stashed away in 2022, experts said Thursday, calling for more recycling of the often hazardous materials they contain. Stacked flat on top of each other, that many disused phones would rise 50,000 kilometers (30,000 miles), more than a hundred times higher than the International Space Station, the WEEE research consortium found. Despite containing valuable gold, copper, silver, palladium and other recyclable components, almost all these unwanted devices will be hoarded, dumped or incinerated, causing significant health and environmental harm.

"Smartphones are one of the electronic products of highest concern for us," said Pascal Leroy, Director General of the WEEE Forum, a not-for-profit association representing forty-six producer responsibility organizations. "If we don't recycle the rare materials they contain, we'll have to mine them in countries like China or Congo," Leroy told AFP. Many of the five billion phones withdrawn from circulation will be hoarded rather than dumped in the trash, according to a survey in six European countries from June to September 2022. This happens when households and businesses forget cell phones in drawers, closets, cupboards or garages rather than bringing them in for repair or recycling. Up to five kilos (8 pounds) of e-devices per person are currently hoarded in the average European family, the report found.

According to the new findings, 46 percent of the 8,775 households surveyed considered potential future use as the main reason for hoarding small electrical and electronic equipment. Another 15 percent stockpile their gadgets with the intention to sell them or giving them away, while 13 percent keep them due to "sentimental value." "People tend not to realize that all these seemingly insignificant items have a lot of value, and together at a global level represent massive volumes," said Pascal Leroy. "But e-waste will never be collected voluntarily because of the high cost. That is why legislation is essential."

An anonymous reader quotes a report from The Register: On June 8, 2020, an individual claiming to be billionaire film producer and philanthropist Sidney Kimmel contacted brokerage Charles Schwab by phone and stated that he had uploaded a wire disbursement form using the service's secure email service. The only problem was the call apparently came from prison. Still, the caller made reference to a transfer verification inquiry earlier that day by his wife -- a role said to have been played by a female co-conspirator. The individual allegedly posing as Kimmel had contacted a Schwab customer service representative three days earlier -- on June 5, 2020 -- about opening a checking account, and was told that a form of identification and a utility bill would be required. On June 6, a co-conspirator is alleged to have provided a picture of Kimmel's driver's license and a Los Angeles Water and Power utility bill. According to court documents [PDF] filed by the US Attorney's Office in the Northern District of Georgia, the uploaded documents consisted of a request for funds to be wired to an external bank and a forged letter of authorization -- both of which appeared to be signed by Kimmel.

On June 9, satisfied that Kimmel had been adequately authenticated, the brokerage sent $11 million from Kimmel's Schwab account to a Zions Bank account for Money Metal Exchange, LLC, an Eagle, Idaho-based seller of gold coins and other precious metals. The real Kimmel had no knowledge of the transaction, which resulted in the purchase of 6,106 American Eagle gold coins. The individual who orchestrated the fraudulent purchase of the coins is alleged to have hired a private security firm on June 13, 2020 to transport the coins from Boise, Idaho to Atlanta, Georgia on a chartered plane. An associate of the fraudster allegedly took possession of the coins three days later. All the while the alleged mastermind, Arthur Lee Cofield Jr, was incarcerated in a maximum security prison in Butts County, Georgia, according to the government. Cofield is serving a 14-year sentence for armed robbery and is also under indictment in Fulton County, Georgia for attempted murder.

The day after the coins were purchased, prison staff are said to have searched Cofield's cell and recovered a blue Samsung cellphone hidden under his arm. The prison forensic unit apparently determined that Cofield had been using an account on free voice and messaging service TextNow and matched the phone number with calls made to Money Metals Exchange. On December 8, 2020, a federal grand jury indicted Cofield and two co-conspirators for conspiracy to commit bank fraud and money laundering. Cofield's attorney, Steven Sadow, subsequently sought to suppress the cellphone evidence on Fourth Amendment grounds, arguing that the warrantless search of the device by prison officials was unrelated to the legitimate function of prison security and maintenance. The government said otherwise, insisting that Cofield does not have standing to contest the search, having no "legitimate expectation of privacy in the contents of a contraband cell phone." The judge overseeing the case sided with the government [PDF] and certified the case to proceed to trial.

The Federal Communications Commission is threatening to block calls from voice service providers that have yet to take meaningful action against illegal robocalls. The Verge reports: On Monday, the FCC announced that it was beginning the process to remove providers from the agency's Robocall Mitigation Database for failing to fully implement STIR/SHAKEN anti-robocall protocols into their networks. If the companies fail to meet these requirements over the next two weeks, compliant providers will be forced to block their calls. "This is a new era. If a provider doesn't meet its obligations under the law, it now faces expulsion from America's phone networks. Fines alone aren't enough," FCC Chairwoman Jessica Rosenworcel said in a statement on Monday. "Providers that don't follow our rules and make it easy to scam consumers will now face swift consequences."

The FCC's orders target seven carriers, including Akabis, Cloud4, Global UC, Horizon Technology Group, Morse Communications, Sharon Telephone Company, and SW Arkansas Telecommunications and Technology. "These providers have fallen woefully short and have now put at risk their continued participation in the U.S. communications system," Loyaan A. Egal, FCC acting chief of the enforcement standards, said in a Monday statement. "While we'll review their responses, we will not accept superficial gestures given the gravity of what is at stake."

Pharma giant Pfizer has shelled out nearly $120 million to acquire a small Australian company claiming to have developed a smartphone app that can accurately diagnose COVID-19 by analyzing the sound of a cough. New Atlas reports: For around a decade small Australian digital healthcare company ResApp has been working on developing an algorithm that can diagnose respiratory illnesses by simply studying the sound of a patient's cough. Initially the system was trained to diagnose pneumonia, but by 2019 the researchers had shown the technology could effectively distinguish asthma, croup and bronchiolitis. When the pandemic struck in 2020 the team unsurprisingly quickly pivoted to incorporate COVID-19 diagnoses into its cough-recognition technology. By early 2022 the first data from a pilot trial testing the COVID algorithm revealed impressively good results.

The trial found the system could accurately detect 92% of positive COVID cases solely from the sound of a cough. The system also recorded 80% specificity, meaning only two out of every 10 people screened received false positive results. Soon after ResApp revealed these results pharma giant Pfizer began circling, initially offering around $65 million for the technology. Now, in a formal acquisition announcement, a deal has been finalized for Pfizer to buy ResApp for a massive $116 million.

"Transportation is going to electrify much faster than people realize," says Rick Luebbe, chief executive officer of Group14 Technologies.

So this weekend the Seattle Times paid a visit to their small manufacturing plant in rural Western Washington working on becoming one of the companies supplying a crucial component: Inside this building, carbon is infused with a silicon gas to produce a black powdery substance that high-profile investors hope will be a key component of the next generation of electric car batteries enabling them to travel farther between plug-ins, recharge faster and cost less. "It's transformational," said Rick Luebbe, chief executive officer of Group14 Technologies, which opened the Maltby plant in 2021 and has raised $441 million in funding. The company employs nearly 100 people, and the industrial workplace north of Woodinville has the excitement of a startup company. A research laboratory is under construction in one corner of the building as production is underway elsewhere.

Group14 is one of more than 20 companies launched in a global quest to improve the lithium-ion battery — mainstay of the fledgling electric car industry — by including more silicon.... Within the next decade, two companies plan to make Washington a hub of this emerging technology. Group14, which has drawn Porsche AG as a lead investor, and Sila, an Alameda, California, company that is partnering with Mercedes-Benz, both have announced plans to open large-scale plants east of the Cascades in Moses Lake....

The silicon technology also has applications for many other battery-powered products ranging from cellphones that can last longer between charges to drones and aircraft that could stay aloft for more hours of flight... Company officials at Group14 and Sila say they have developed silicon products that can be blended with graphite — or replace it entirely — without unduly compromising battery life.... "Generally, every customer we're working with is getting the cycling they need for commercial deployment," Luebbe said. Gene Berdichevsky, Sila's chief executive, said Sila's technology, also proprietary, "achieves and exceeds" automotive industry specification even when silicon entirely replaces graphite.

Some automotive companies are betting that silicon does have an important role to play in the next generation of batteries... Mercedes-Benz AG, which this year announced it's opening a new battery plant in Alabama, invested in Sila in 2019. Then, last May, the company announced it would use the Sila silicon technology for electric G-Class vehicles that will start production in the middle of this decade. Uwe Keller, directory of battery development at Mercedes-Benz AG, said his company is involved in extensive research with Sila's silicon product to determine how it best can be incorporated into a next generation of batteries.

But he expects Sila's technology will boost electric car battery range by 15 to 20%....

Berdichevsky, Sila's chief executive, who worked at Tesla in its early years and co-founded Sila in 2011, said his company plans to start producing silicon product from Moses Lake to send to Mercedes-Benz in the second half of 2024.

Long-time Slashdot reader n3hat writes: The BBC reports that a thief has been emptying gym patrons' accounts by stealing their bank card and mobile phone, registering the account to the thief's own mobile, and emptying the victims' bank accounts. The thief works around 2-factor authentication by taking advantage of the victim's phone having been configured to show notifications on the lock screen, so the thief can view the 2FA credential even though they don't have the unlock code.

The article gives instructions on how to disable notifications on the lock screen, for both iPhone and Android.

The FCC has approved Lynk's satellite-to-phone connectivity service that will allow people to send and receive texts via satellites in space. According to TechCrunch, all that's left is "selecting a mobile network partner to bring it to market here in the States." From the report: Lynk demonstrated a direct satellite-to-phone (and back) emergency connectivity service late last year with its test orbital cell tower. Far from an orbital broadband connection or a legacy satellite band that has you pointing your phone at an invisible dot in the sky, Lynk would provide intermittent (think every half hour or so) 2-way SMS service via ordinary cellular bands that just happen to reach orbit. It's intended for emergencies, check-ins from the back country, and spreading information in places where networks are down, such as disaster zones.

It's not easy to send a text to or from an antenna moving several thousand miles per hour, and CEO Charles Miller confirmed that it took a few years for them to make it happen. So when major companies say they're working on it, he doesn't feel too much heat. "That's the benefit of having invented the tech five years ago: There's a bunch of hard things that no one else has done yet. I'm not saying they can't, just that they haven't yet," he told me. "We validated this and patented it in 2017. We did it from space yesterday and the day before -- we have the world's only active cell tower in space."

Of course, you could have a thousand of them and it wouldn't matter unless you have regulatory approval and partners in the mobile space. That's the next step for Lynk, and although they have 15 contracts spanning 36 countries around the world and are preparing for commercial launch, the United States FCC is the "gold standard" for this kind of testing and validation. That's not just because they have the best facilities -- the FCC approval process is also the de facto battleground where companies attempt to run interference on one another. [...] Today's order approves Lynk's satellite services to operate in general, having showed that they will not interfere with other services, radio bands, and so on. A separate approval will be needed when Lynk finds a partner to go to market with -- but the more difficult and drawn out question of safety and interference is already answered.

SpzToid writes: U.S. government officials are adding data from as many as 10,000 electronic devices each year to a massive database they've compiled from cellphones, iPads and computers seized from travelers at the country's airports, seaports and border crossings, leaders of Customs and Border Protection told congressional staff in a briefing this summer. The rapid expansion of the database and the ability of 2,700 CBP officers to access it without a warrant -- two details not previously known about the database -- have raised alarms in Congress about what use the government has made of the information, much of which is captured from people not suspected of any crime. CBP officials told congressional staff the data is maintained for 15 years.

Details of the database were revealed Thursday in a letter to CBP Commissioner Chris Magnus from Sen. Ron Wyden (D-Ore.), who criticized the agency for "allowing indiscriminate rifling through Americans' private records" and called for stronger privacy protections. The revelations add new detail to what's known about the expanding ways that federal investigators use technology that many Americans may not understand or consent to. Agents from the FBI and Immigration and Customs Enforcement, another Department of Homeland Security agency, have run facial recognition searches on millions of Americans' driver's license photos. They have tapped private databases of people's financial and utility records to learn where they live. And they have gleaned location data from license-plate reader databases that can be used to track where people drive.

A timely mobile alert may have prevented hundreds of thousands of Californians from being plunged into darkness in the middle of a heat wave Tuesday night. Bloomberg reports: Just before 5:30 p.m. local time, California's grid operator ordered its highest level of emergency, warning that blackouts were imminent. Then, at 5:48 p.m., the state's Office of Emergency Services sent out a text alert to people in targeted counties, asking them to conserve power if they could. Within five minutes the grid emergency was all but over. Power demand plunged by 1.2 gigawatts between 5:50 and 5:55 p.m., and would continue to drop in the hours after that, according to data from the California Independent System Operator. A gigawatt is enough to power about 750,000 Californian homes.

But while the state's grid operator said California had avoided rolling blackouts Tuesday, some cities apparently didn't get the message. Officials in three San Francisco Bay area cities -- Alameda, Healdsburg and Palo Alto -- reported on social media that power shutdowns were underway that evening, which also could have contributed to the sharp decline in demand. By 8 p.m., the grid operator canceled the highest level of emergency without calling for power cuts. More than 500,000 homes and businesses had been warned earlier in the day that they might lose service.

Slashdot reader artmancc writes: Like aircraft, many of the world's ocean-going vessels are required to have transponders that broadcast their location. The information is public and can be seen on websites such as AIS Marine Traffic. But according to an analysis reported in The New York Times , a maritime data company called Windward "has uncovered more than 500 cases of ships manipulating their satellite navigation systems to hide their locations."

The article, by Anatoly Kurmanaev, highlights the Cyprus-registered tanker Reliant, which was observed taking on oil at a Venezuelan refinery last December. At the same time, however, the ship was reporting its position as some 300 nautical miles (about 500 kilometers) away, "drifting innocuously off the coast of St. Lucia."
It's illegal (under international law), but the rapidly-growing practice lets ships circumvent international laws and sanctions, the Times reports, and "could transform how goods are moved around the world, with profound implications for the enforcement of international law, organized crime and global trade." Its use has included Chinese fishing fleets hiding operations in protected waters off South America, tankers concealing stops in Iranian oil ports, and container ships obfuscating journeys in the Middle East. A U.S. intelligence official, who discussed confidential government assessments on the condition of anonymity, said the deception tactic had already been used for weapons and drug smuggling. After originally discovering the deception near countries under sanction, Windward has since seen it spread as far as Australia and Antarctica.

"It's a new way for ships to transmit a completely different identity," said Matan Peled, a founder of Windward. "Things have unfolded at just an amazing and frightening speed...." The spread of AIS manipulation shows how easy it has become to subvert its underlying technology — the Global Positioning System, or GPS — which is used in everything from cellphones to power grids, said Dana Goward, a former senior U.S. Coast Guard official and the president of Resilient Navigation and Timing Foundation, a Virginia-based GPS policy group. "This shows just how vulnerable the system is," he said.

The European Commission is advocating new rules for mobile phone and tablet repairability. PC Magazine reports: Draft proposals published this week would require manufacturers to make at least 15 components available to professional repairers for up to five years after releasing a new phone in the European Union (EU). That means customers would get guaranteed access to replacement batteries, back covers, front- and rear-facing cameras, audio connectors, charging ports, microphones and speakers, SIM and memory card trays, and more.

"The steep increase in the demand for smartphones and tablets, combined [with] their increased functionality, has resulted in increased demand for energy and materials needed to manufacture these devices on the EU market, accompanied by an increase in their associated environmental impacts," Commission President Ursula Von Der Leyen wrote in the proposal. "In addition, devices are often replaced prematurely by users and are, at the end of their useful life, not sufficiently reused or recycled, leading to a waste of resources."

If adopted, the initiative would also usher in a new energy label for phones and tablets -- similar to the ones already in place across Europe for TVs and large household items. The labels would indicate an expected battery life, and include details on water and dust protection, and rate the device's resistance to drops and scratches. Those manufacturers, meanwhile, that can't (or won't) supply batteries for five years must instead meet a set of battery endurance tests that certify devices achieve 80% of a rated capacity after 1,000 full-charge cycles. They'll also need to ensure software updates never negatively impact battery life.

MIT Technology Review obtained Prince's investor presentation for the "RedPill Phone," which promises more than it could possibly deliver. From the report: Erik Prince's pitch to investors was simple -- but certainly ambitious: pay just 5 million euros and cure the biggest cybersecurity and privacy plagues of our day. The American billionaire -- best known for founding the notorious private military firm Blackwater, which became globally infamous for killing Iraqi civilians and threatening US government investigators -- was pushing Unplugged, a smartphone startup promising "free speech, privacy, and security" untethered from dominant tech giants like Apple and Google. In June, Prince publicly revealed the new phone, priced at $850. But before that, beginning in 2021, he was privately hawking the device to investors -- using a previously unreported pitch deck that has been obtained by MIT Technology Review. It boldly claims that the phone and its operating system are "impenetrable" to surveillance, interception, and tampering, and its messenger service is marketed as "impossible to intercept or decrypt."

Boasting falsely that Unplugged has built "the first operating system free of big tech monetization and analytics," Prince bragged that the device is protected by "government-grade encryption." Better yet, the pitch added, Unplugged is to be hosted on a global array of server farms so that it "can never be taken offline." One option is said to be a server farm "on a vessel" located in an "undisclosed location on international waters, connected via satellite to Elon Musk's StarLink." An Unplugged spokesperson explained that "they benefit in having servers not be subject to any governmental law." The Unplugged investor pitch deck is a messy mix of these impossible claims, meaningless buzzwords, and outright fiction. While none of the experts I spoke with had yet been able to test the phone or read its code, because the company hasn't provided access, the evidence available suggests Unplugged will fall wildly short of what's promised.

[...] The UP Phone's operating system, called LibertOS, is a proprietary version of Google's Android, according to an Unplugged spokesperson. It's running on an unclear mix of hardware that a company spokesperson says they've designed on their own. Even just maintaining a unique Android "fork" -- a version of the operating system that departs from the original, like a fork in the road -- is a difficult endeavor that can cost massive money and resources, experts warn. For a small startup, that can be an insurmountable challenge. [...] Another key issue is life span. Apple's iPhones are considered the most secure consumer device on the market due in part to the fact that the company offers security updates to some of its older phones for six years, longer than virtually all competitors. When support for a phone ends, security vulnerabilities go unaddressed, and the phone is no longer secure. There is no information available on how long UP Phones will receive security support. "There are two things happening here," says Allan Liska, a cyberintelligence analyst at the cybersecurity firm Recorded Future. "There are the actual attempts to make real secure phones, and then there is the marketing BS. Distinguishing between those two can be really hard."

"When I worked in US intelligence, we [penetrated] a number of phone companies overseas," says Liska. "We were inside those phone companies. We could easily track people based on where they connected to the towers. So when you talk about being impenetrable, that's wrong. This is a phone, and the way that phones work is they triangulate to cell towers, and there is always latitude and longitude for exactly where you're sitting," he adds. "Nothing you do to the phone is going to change that."

The UP Phone is due out in November 2022.

Earlier this week, Samsung unveiled their new Z Fold 4 and Z Flip 4 -- two of the most refined and polished foldable smartphones on the market. However, what Samsung hasn't done (or any other phone manufacturer for that matter) "is make the case for why you'd actually want a foldable phone," writes David Pierce via The Verge. "And until it can explain why it's worth all the extra cost and tradeoffs, I'm having a hard time figuring out why you'd be willing to give up the phone you know and love to get one." From the report: What Samsung needs to do with the Galaxy Fold (and the rest of the industry will eventually need to do with their own foldables) is convince people that it's worth buying a phone that's more expensive, more fragile, and takes up more room in your pocket. Right now, the worst thing about foldables is that they force you to make significant sacrifices on the most important device you own: your smartphone. The new Fold 4 is a little shorter, about an ounce heavier, and about twice as thick as the Galaxy S22 Ultra. It's also $600 more expensive. The Ultra has a bigger battery, better camera specs, and a 6.8-inch screen that supports an S Pen. The Fold 4, when opened, is noticeably larger, but the candy bar phones still get plenty big. And Fold makes a lot of sacrifices for some more real estate.

It's not even clear to me that Samsung knows why you should make all of those sacrifices. On its website, one of the first selling points the company offers is that you can prop up the screen on a table by opening it halfway for watching or taking videos hands-free. Here in reality, we call that a kickstand, and this is an awfully expensive one. In this mode, you're also only using half the screen, which sort of defeats the whole purpose. So far, multitasking seems to be the foldable's one actual advantage. Open up your Galaxy Fold, and you can run two apps side by side or even three or four on the screen at once! This, I agree, is a delightful thing. Being able to use my browser and my notes app side by side or see my calendar and my email together is much better than constantly swiping between two full-screen apps. And seeing two pages at a time in the Kindle app is the best. And you know what? Big screens are just good -- good for games, good for reading, good for watching Netflix.

But these aren't just arguments for foldables; they're arguments for tablets. And so far, the arguments for Android tablets don't seem to be convincing many users. While Android has gotten better as a large-screen operating system, and the Fold 4's software being based on Android 12L is a good sign, too many apps that are "optimized" for foldables are actually just sticking a giant sidebar onto one side, which doesn't accomplish much. Others just streeeetch everything to fit the larger screen. Don't even get me started on how the vast majority of apps deal with Microsoft's approach of two separate screens attached with a hinge. Samsung has done an admirable job of wrangling all of Android's weirdness onto the Fold's screen, and in general, it's not that the Fold doesn't work; it's that there's nothing about the Fold that is dramatically better than the phone or tablet you might already be carrying around. And shoving them into a single device actually makes them both a little worse.

An anonymous reader quotes a report from Ars Technica: Samsung is introducing an interesting new feature for people sending in their Galaxy phones for repair: "repair mode." When shipping off your phone, you might want to do something to protect your data, and the new feature sounds like a great solution. It locks down your data, but not your phone. [...] While in repair mode, technicians can still poke around in your device and test everything, but they'll only see the default apps with blank data. When you get your device back, you can re-authenticate and disable repair mode and you'll get all your data back. The feature was first spotted by SamMobile, and Samsung has so far only announced the feature in a Korean press release; it is first launching in Korea for the Galaxy S21 (the S22 is Samsung's latest flagship phone). Repair mode can be turned on from the settings menu, and Samsung says (through Google translate), "You won't be able to access your personal data, such as photos, messages, and accounts," and anyone with the phone will "only use the default installed apps." Repair mode can be exited the same way, though you'll need to authenticate with a pattern, pin, or fingerprint.