Here's a warning from the threat intelligence unit of AT&T Cybersecurity, AT&T Alien Labs: With a rise of nearly 650% in malware and ransomware for Linux this year, reaching an all-time high in the first half year of 2022, threat actors find servers, endpoints and IoT devices based on Linux operating systems more and more valuable and find new ways to deliver their malicious payloads. New malwares like BotenaGo and EnemyBot are examples of how malware writers rapidly incorporate recently discovered vulnerabilities to find new victims and increase their reach.
But they've discovered a new malware targetting Linux endpoints and IoT devices, stealthily "delivered in a multistage infection chain where each module responds to a part of the payload and downloads and executes the next one. An attacker can gain full control of the system, in addition to the cryptocurrency miner that will be executed and set to persist."

The Register summarizes their report: The malware was dubbed "Shikitega" for its extensive use of the popular Shikata Ga Nai polymorphic encoder, which allows the malware to "mutate" its code to avoid detection. Shikitega alters its code each time it runs through one of several decoding loops that AT&T said each deliver multiple attacks, beginning with an ELF file that's just 370 bytes... AT&T didn't say how the initial infection occurs, but it did say Shikitega exploits two Linux vulnerabilities disclosed in 2021 to achieve its ultimate objective, which AT&T said appears to be the installation and execution of the XMRig cryptocurrency miner.

The final stage also establishes persistence, which Shikitega does by downloading and executing five shell scripts that configure a pair of cron jobs for the current user and a pair for the root user using crontab, which it can also install if not available. Shikitega also uses cloud hosting solutions to store parts of its payload, which it further uses to obfuscate itself by contacting via IP address instead of domain name....>
>
Bottom line: Shikitega is a nasty piece of code. AT&T recommends Linux endpoint and IoT device managers keep security patches installed, keep EDR software up to date and make regular backups of essential systems.
Ars Technica reports: The ultimate objective of the malware isn't clear. It drops the XMRig software for mining the Monero cryptocurrency, so stealthy cryptojacking is one possibility. But Shikitega also downloads and executes a powerful Metasploit package known as Mettle, which bundles capabilities including webcam control, credential stealing, and multiple reverse shells into a package that runs on everything from "the smallest embedded Linux targets to big iron." Mettle's inclusion leaves open the potential that surreptitious Monero mining isn't the sole function....

Given the work the unknown threat actors responsible devoted to the malware's stealth, it wouldn't be surprising if the malware is lurking undetected on some systems.

An anonymous reader quotes a report from TorrentFreak: A group of independent movie companies has filed a copyright infringement lawsuit against AT&T. The Internet provider, which has over 80 million subscribers in the US, faces far-reaching demands. In addition to millions in damages, the filmmakers want the ISP to terminate the accounts of repeat infringers and block access to sites such as The Pirate Bay and YTS. [...] In a complaint (PDF) filed at a federal court in Texas, Voltage Pictures and its affiliates, known for films such as "After We Collided," "Dallas Buyers Club," "Room 203," and "The Bird Catcher", accuse the ISP of contributory and vicarious copyright infringement.

"For years, AT&T has knowingly allowed AT&T users to engage in online piracy, the illegal distribution and downloading of copyrighted materials, including films. AT&T provides the IP addresses used for piracy, makes the connections needed to share and download pirated films, and transmits the pirated films," they write. The ISP allegedly turned a blind eye to pirating subscribers, facilitating mass online piracy. The filmmakers say they sent tens of thousands of notices to the company, reporting alleged copyright infringements. In some cases, hundreds of notices were sent for a single IP address without any visible response from the Internet provider.

In the United States, the law requires Internet providers to adopt a policy that provides for the termination of accounts of repeat infringers, under appropriate circumstances. AT&T references this in its terms but according to the filmmakers' complaint, this policy is not sufficient. The lawsuit specifically claims that AT&T willingly keeps repeat infringers on board because that adds tens of millions of dollars to AT&T's bottom line. [...] To compensate for all piracy-related losses, the plaintiffs request actual or statutory damages, which can run into millions of dollars. In addition, they also want AT&T to terminate repeat infringers under appropriate circumstances. Finally, and of particular interest, the movie companies also want the Internet provider to block foreign pirate sites. They include YTS, The Pirate Bay, RARBG, 1337x, and others that have been called out in the US Trade Representative's annual overview of notorious markets.

AT&T workers are pushing to keep working from home as an option, citing "long commutes to and from work, exorbitant childcare costs, ongoing concerns over exposure to COVID-19 variants and now monkeybox," reports The Guardian. From the report: At AT&T, the world's largest telecommunication company, workers represented by the Communications Workers of America agreed to a work from home extension until the end of March 2023, but workers say the company is forcing many workers to return to the office much sooner than that, while other departments had already been forced back to the office by their managers. [...] AT&T workers have started a petition demanding the company makes working from home a permanent option for workers. [...] Val Williams, an AT&T worker and union steward for the Communications Workers of America in Houston, Texas, was forced to return to work in the office in April 2022. She criticized the push to bring workers back into the office after she said workers had been praised for productivity while working from home.

Williams criticized the pushback to return to the office given AT&T is a communications company with the technology and resources to make working from home a seamless option. "Our revenue has increased over the last two years while we were working from home. Our job descriptions state we are capable of working with little to minimum management and that's what we've been doing," she said. She also argued it was unfair how the push to return workers to the office has been enforced, with some departments being brought back while others are still working from home. "We don't feel like anybody's health is greater than any others. Because everybody has their own health issues, or they may have family members that have health issues that they have to return home to," she added. [...] A spokesperson for AT&T did not provide data on how many workers at the company are still working from home, but claimed it was never the company's intention to make working from home indefinite. "The health and safety of our employees continues to be our priority," said the spokesperson in an email. "As we have throughout the pandemic, we adhere to guidance from the medical community, including implementing safety protocols to help protect our employees' wellbeing. And now that we are a largely vaccinated workforce, we believe it's safe for employees to return to the workplace. We do our best work when we're together."

15-year-old Ellis Pinsky stole $23.8 million worth of cryptocurrency — and his life was never the same. For example, Rolling Stone reports, in his last year of high school, "Four men wearing ski masks and gloves, armed with knives, rope, brass knuckles, and a fake 9 mm," crept around the back of his home in the suburbs: Two weeks before the break-in, a lawsuit had been filed against him, and news stories had circulated connecting him to the hack. He knew that the thieves wanted this money, the millions and millions of dollars he had stolen. He also knew that he couldn't give it to them. He didn't have it. Not anymore.
The magazine paints the portrait of "an anxious young man in Invisalign braces" who describes the revelation he'd had at the age of 13. "The internet held such secrets. All he had to do was uncover them." As he soon found, there were plenty of people working to uncover them all the time, and willing to share their methods — for a price.... Realizing that a lot of the information social engineers used came from hacked databases, he began teaching himself to program, particularly to do the Structured Query Language injections and cross-site scripting that allowed him to attack companies' database architecture. The terabyte upon terabyte of databases he extracted, traded, and hoarded made him valuable to OGUsers as well as to others, like the Russian hackers he was able to converse with thanks to his fluency with his mother's native language... By the time he was 14, he tells me, "I think it's fair to say I had the capabilities to hack anyone."
The article describes him as "attending high school by day and extracting the source code of major corporations by night.... He was 14 years old and taken with the thrill of possessing a hidden superpower, of spending his nights secretly tapping into an underground world where he was esteemed and even feared. And then, in the morning, being called downstairs to breakfast." He wrote a Python script to comb through social media networks and seek out any mentions of working for a [cellphone] carrier. Then he'd reach out with an offer of compensation for helping him with a task. Every fifth or sixth person — underpaid and often working a short-term contract — would say they were game, as Pinsky tells it. For a couple hundred dollars' worth of bitcoin, they'd be willing to do a SIM swap, no questions asked. Eventually, Pinsky says, he had employees at every major carrier also working for him. Then the stakes got even higher. It was only a matter of time before OG hackers, known to each other as "the Community," realized that if they could use the SIM-swapping method to steal usernames, they could just as easily use it to steal cryptocurrency...
In one massive heist Pinksky stole 10% of all the Trigger altcoins on the market from crypto impresario Michael Terpin. ("As Pinsky's money launderers were converting it, the market was crashing in real time.") Pinsky recruited a crew to launder the money — at least one of which simply kept it — but even with all the conversion fees, he still made off with millions. And then... For a while, he half-expected the FBI to knock on his door at any moment, just like in the movies; but as time passed, he grew less anxious.... He says he moved on to learning different types of programming. He ran a sneaker business that used bots and scripts to snap up limited pairs then flip them... He went to soccer practice. He and his friends had started hanging out with girls on the weekend, driving down to the docks where you could see the glowing lights from the Tappan Zee Bridge.
Until Terpin figured out it was Pinsky who'd robbed him: Pinsky and his legal team preempted his arrest by contacting the U.S. attorney directly and offering his cooperation. In February 2020, he voluntarily returned every last thing he says he got from the Terpin heist: 562 bitcoins, the Patek watch, and the cash he'd stored in the safe under his bed.... When I ask if he has also worked with the FBI to help bring down other hackers, he blinks quickly and then changes the subject.
Pinsky has not been criminally charged — partly because he was a minor, but also because of his cooperation with law enforcement. But filing a civil suit, Terpin wants to be compensated with triple the amount stolen, arguing that the teenager who robbed him was running an organized crime racket and that he should be heavily punished to set an example.

Rolling Stone's article raisees the question: what should happen next?

From the MacRumors blog earlier this week: Germany's Federal Cartel Office, the Bundeskartellamt, has initiated proceedings against Apple to investigate whether its tracking rules and anti-tracking technology are anti-competitive and self-serving, according to a press release. The proceeding announced will review under competition law Apple's tracking rules and specifically its App Tracking Transparency Framework (ATT) in order to ascertain whether they are self-preferencing Apple or being an impediment to third-party apps...

Introduced in April 2021 with the release of iOS 14.5 and iPadOS 14.5, Apple's App Tracking Transparency Framework requires that all apps on âOEiPhoneâOE and âOEiPadâOE ask for the user's consent before tracking their activity across other apps. Apps that wish to track a user based on their device's unique advertising identifier can only do so if the user allows it when prompted.

Apple said the feature was designed to protect users and not to advantage the company... Earlier this year it commissioned a study into the impact of ATT that was conducted by Columbia Business School's Marketing Division. The study concluded that Apple was unlikely to have seen a significant financial benefit since the privacy feature launched, and that claims to the contrary were speculative and lacked supporting evidence.
The technology/Apple blog Daring Fireball offers its own hot take: In Germany, big publishing companies like Axel Springer are pushing back against Google's stated plans to remove third-party cookie support from Chrome. The notion that if a company has built a business model on top of privacy-invasive surveillance advertising, they have a right to continue doing so, seems to have taken particular root in Germany. I'll go back to my analogy: it's like pawn shops suing to keep the police from cracking down on a wave of burglaries....

The Bundeskartellamt perspective here completely disregards the idea that surveillance advertising is inherently unethical and Apple has studiously avoided it for that reason, despite the fact that it has proven to be wildly profitable for large platforms. Apple could have made an enormous amount of money selling privacy-invasive ads on iOS, but opted not to.

The Associated Press reports: Federal regulators say Verizon and AT&T will delay part of their 5G rollout near airports to give airlines more time to ensure that equipment on their planes is safe from interference from the wireless signals, but the airline industry is not happy about the deal. An airline industry trade group said federal regulators are taking a "rushed approach" to changing equipment on planes under pressure from the telecommunications companies.

The Federal Aviation Administration said Friday that the wireless companies agreed to delay some of their use of the C-Band section of the radio spectrum until July 2023. "We believe we have identified a path that will continue to enable aviation and 5G C-band wireless to safely co-exist," said the FAA's acting administrator, Billy Nolen. However, aviation groups say the C-Band service could interfere with radio altimeters — devices used to measure a plane's height above the ground....

Nolen said planes most susceptible to interference — smaller, so-called regional airline planes — must be retrofitted with filters or new altimeters by the end of this year. Components to retrofit larger planes used by major airlines should be available by July 2023, when the wireless companies expect to run 5G networks in urban areas "with minimal restrictions," he said. Airlines for America, a trade group for the largest U.S. carriers, said the FAA hasn't approved necessary upgrades and manufacturers have not yet produced the parts. "It is not at all clear that carriers can meet what appears to be an arbitrary deadline," trade group CEO Nicholas Calio said in a letter to Nolen....

Verizon said the agreement will let the company lift voluntary limits on its 5G rollout around airports "in a staged approach over the coming months." AT&T said it agreed to take "a more tailored approach" to controlling the strength of signals near runways so airlines have more time to retrofit equipment.

Sean Hollister writes via The Verge: Since 2013, AT&T has quietly bilked customers out of hundreds of millions of dollars with a bogus "administrative fee," a fee it more than doubled to $1.99 a month in 2018. For a few years there, a California class-action lawsuit made it seem like AT&T might finally get taken to task. But this week, both sides told a judge they'd settle for just $14 million -- meaning customers may get less than 10 percent of what they paid AT&T, while AT&T gets to keep on charging them. According to the proposed settlement agreement in Vianu v. AT&T Mobility -- which still needs to be approved by a judge -- just about every AT&T Wireless postpaid customer in California since 2015 will be eligible for an estimated payment of between $15 and $29.

But again, that's only a fraction of what AT&T's own records show it charged: $180 per customer on average since 2015, according to documents. The settlement "represents a refund of approximately 6-11 months of the average fees," they read. Meanwhile, the lawyers are likely to get $3.5 million. "The estimated payment amount represents a strong result for the Settlement Class, particularly given the substantial risks, costs, and delay of continued litigation," reads the proposed settlement agreement, going on to list all the ways that the lawyers suing AT&T believe that AT&T might still win the case. [...]

Oh, and you won't even get a check in the mail if you're still an AT&T customer, assuming this version of the settlement is approved. The money will be credited back to your AT&T account, where AT&T can dip its hand right back in again for that $1.99 -- or more if it feels emboldened enough to increase the fee yet again. (Admittedly, the AT&T account could be a more reliable way to make sure customers get money back.) The settlement websites can be found here.

An AT&T spokesperson issued the following response: "We deny the allegations in this lawsuit because we clearly disclose all fees that are charged to our customers. However, we have decided to settle this case to avoid lengthy, expensive litigation."

Apple's controversial App Tracking Transparency feature available in iOS 14.5 is expected to have a significant impact on Facebook, Twitter, Snap, and YouTube in 2022. According to a report by Lotame, big tech platforms' revenue could drop by almost $16 billion. 9to5Mac reports: For those who don't remember, ATT requires that applications ask permission from users before tracking them across other apps and websites. For example, when you open the Facebook app, you'll see a prompt that says the app would like to track you across other apps and services. There will be two options from which to choose: "Ask App not to Track" or "Allow."

Talking about Facebook, Lotame's report shows that Zuckerberg's company will take the biggest hit as the privacy changes will cost it $12.8 billion in revenue: "The effects of these changes on these companies are hard to isolate because all four players are still growing extremely strongly, still taking share from the last bastions of traditional media and gaining share in digital media as privacy regulations make it harder and harder for independent publishers and technologies to execute,' said Mike Woosley, Chief Operating Officer at Lotame. 'To add to the complexity, the pandemic has introduced volatile and unpredictable gyrations in the pacing of media spend.'"

An anonymous reader quotes a report from Forbes: Google had plenty of news about Stadia, the consumer-facing aspect of its cloud gaming products, at its Google for Games Developer Summit. On the flip side of that is the white-label platform Google's been working on: a way for other companies to license the game streaming tech that powers Stadia. Previously, that B2B offering was believed to be known as Google Stream. Google has now confirmed more details about the offering, including its name.

It's now called Immersive Stream for Games (which doesn't exactly roll off the tongue as smoothly as Google Stream). The Stadia team built it with the help of the folks at Google Cloud. The company says the service will allow companies to run their own game trials, let users play full games, offer subscription bundles or have full storefronts. In other words, publishers might be able to run their own versions of Stadia with their own libraries of games, branding and custom user interface.

We've seen a version of Immersive Stream for Games in action. Last year, Google teamed up with AT&T to offer people a way to play Batman: Arkham Knight for free via the cloud. Thousands of folks took advantage of the offer. AT&T plans to offer its customers access to another game soon with the help of Immersive Stream for Games. While that version of Batman: Arkham Knight was only available on desktop and laptop web browsers, the next game will run on mobile devices too. If all goes well, it could be a decent way for AT&T to show off what its 5G network can do. Immersive Stream for Games will include other features Google revealed for Stadia today, including a way to offer free trials of full games and a project aimed at making it easier to port games so they run on Stadia tech, as well as analytics. Developers and publishers can send Google an inquiry for more details.

AT&T's planned shutdown of its 3G network Tuesday has sparked fears that home security systems, medical alert monitors and a range of other devices will stop working. From a report: Carriers have previously retired networks, but this transition is proving more complicated because the pandemic hindered companies that rely on 3G services from making upgrades. Plus, there are just more devices to manage. AT&T, T-Mobile and Verizon are all planning to shut down their 3G networks this year to support new 5G services. AT&T, which first announced plans to sunset its 3G network in 2019, says less than 1% of its mobile data traffic runs on that network. The company has offered customers free and discounted 4G LTE phones to help them upgrade, totaling about 2 million replacements. What to watch: AT&T says phone coverage will not be affected, but it's not just phones that use the company's 3G network.

An anonymous reader quotes a report from Bloomberg: Ericsson may have made payments to the ISIS terror organization to gain access to certain transport routes in Iraq, in a shock admission following years of regulatory investigations. Shares in the Stockholm-based company were down almost 14.5% around lunchtime on Wednesday, its biggest drop in a day since July 2017. In an interview with newspaper Dagens Industri, chief executive officer Borje Ekholm said that Ericsson had identified "unusual expenses dating back to 2018" but the company hasn't yet determined who the final recipient of the money was. "What we are seeing is that transport routes have been purchased through areas that have been controlled by terrorist organizations, including ISIS," Ekholm added. Ekholm's comments follow a statement by the telecommunications equipment manufacturer late on Tuesday, in which the company said that it continues to "invest significantly" into a probe regarding compliance concerns in its Iraq-based operations.

The news of the internal investigation adds another embarrassment for the company following a long running corruption probe, including a $1 billion settlement in 2019. A unit of Ericsson AB pleaded guilty to a years-long campaign of bribery and corruption in Asia and the Middle East. In October last year, the matter resurfaced, after the U.S. Department of Justice accused the company of breaching the agreement by failing to provide certain documents to the D.O.J. The new suspect payments likely formed part of the same corruption probe, according to analysts at Handelsbanken. The analysts don't expect the revelations to trigger further investigations. Ekholm told the newspaper that Ericsson has spent "considerable resources trying to understand this as best we can. Financing terrorism is completely unacceptable and something we do not allow at all."

America's Federal Aviation Administration "has published the list of 50 airports around which it wants Verizon and AT&T to create '5G buffer' zones..." reports PC Magazine: The Department of Transportation previously asked Verizon and AT&T to delay the deployment of their C-Band networks from Dec. 5, 2021 to Jan. 5 due to concerns about interference affecting the altimeters used by commercial aircraft. Then on Jan. 2 the FAA asked the carriers to push back the debut of their C-Band networks again so it could investigate those safety risks.

The FAA said at the time that it would "identify priority airports where a buffer zone would permit aviation operations to continue safely while the FAA completes its assessments of the interference potential around those airports." Verizon and AT&T agreed to delay the launch of their C-Band networks for two weeks and respect the buffer zones designated by the FAA.

The administration says in its announcement that "the wireless companies agreed to turn off transmitters and make other adjustments near these airports for six months to minimize potential 5G interference with sensitive aircraft instruments used in low-visibility landings...." Reuters reports that the FAA's list was informed by Verizon and AT&T's coverage maps — in some cases "5G towers are far enough away that a natural buffer exists," the FAA says, according to the report — as well as a given airport's existing capabilities.
"Traffic volume, the number of low-visibility days and geographic location factored into the selection," acknowledges the FAA's statement.

Thanks to long-time Slashdot reader xetdog for sharing the story!

An anonymous reader quotes a report from Ars Technica: The Federal Aviation Administration tentatively agreed not to seek any more 5G delays from AT&T and Verizon, potentially ending a battle over the aviation industry's unproven claim that 5G transmissions on C-Band frequencies will interfere with airplane altimeters. The commitment came Monday night, when AT&T and Verizon agreed to one more delay of two weeks, pushing their deployment off until January 19. They had previously agreed to a delay from December 5 until January 5. Terms of Monday's deal were described in an attachment to a letter (PDF) that Secretary of Transportation Pete Buttigieg sent to the carriers. "In light of the foregoing, and subject to any unforeseen aviation safety issues, DOT and FAA will not seek or demand any further delays of C-Band deployment," the deal terms say.

Buttigieg thanked the AT&T and Verizon CEOs, writing, "Your voluntary agreement both to delay initial deployment by two weeks, and to subsequently adopt some additional mitigations, will give us additional time and space to reduce the impacts to commercial flights... We are confident that your voluntary steps will support the safe coexistence of 5G C-Band deployment and aviation activities." The deal incorporates voluntary commitments that AT&T and Verizon previously made, including "C-Band radio exclusion zones" around airports for six months. The aviation industry will give carriers "a list of no more than 50 priority airports" where the exclusion zones will apply.

AT&T and Verizon will provide data on base stations, operating characteristics, and planned deployment locations. They will also "continue to work in good faith with aviation stakeholders to support the technical assessment of individual altimeters and airport environments," the deal says. The FAA previously said it "will safely expedite the approvals of Alternate Means of Compliance (AMOCs) for operators with high-performing radio altimeters to operate at those airports," signaling that airlines may already be using altimeters that can co-exist with C-Band transmissions. AT&T and Verizon's C-Band spectrum licenses are for the frequencies from 3.7 GHz to 3.98 GHz, but the companies don't plan to deploy between 3.8 GHZ and 3.98 GHz until 2023. The radio altimeters used to determine airplane altitudes rely on spectrum from 4.2 GHz to 4.4 GHz. "Assuming there are no further problems, AT&T and Verizon would be able to use their spectrum licenses without extra restrictions after July 5," the report says.

"At the end of the commitment period specified in the Voluntary Commitments (i.e. through July 5, 2022), Licensees intend to deploy 5G base stations in any manner consistent with their C-Band Licenses, all customary rules and regulations, and any additional airport-specific mitigation measures Licensees have committed to take based on their continued engagement with the FAA and the aviation industry," the agreement said.

Reuters reports: U.S. Transportation Secretary Pete Buttigieg and the head of the Federal Aviation Administration (FAA) on Friday asked AT&T and Verizon Communications to delay the planned January 5 introduction of new 5G wireless service over aviation safety concerns. In a letter Friday seen by Reuters, Buttigieg and FAA Administrator Steve Dickson asked AT&T Chief Executive John Stankey and Verizon Chief Executive Hans Vestberg for a delay of no more than two weeks as part of a "proposal as a near-term solution for advancing the co-existence of 5G deployment in the C-Band and safe flight operations."

The aviation industry and FAA have raised concerns about potential interference of 5G with sensitive aircraft electronics like radio altimeters that could disrupt flights.... Earlier Friday the two companies accused the aerospace industry of seeking to hold C-Band spectrum deployment "hostage until the wireless industry agrees to cover the costs of upgrading any obsolete altimeters." Buttigieg and Dickson said under the framework "commercial C-band service would begin as planned in January with certain exceptions around priority airports...." The carriers, which won the spectrum in an $80 billion government auction, previously agreed to precautionary measures for six months to limit interference...

Wireless industry group CTIA said 5G is safe and spectrum is being used in about 40 other countries.

Thousands of networking devices belonging to AT&T Internet subscribers in the US have been infected with newly discovered malware that allows the devices to be used in denial-of-service attacks and attacks on internal networks, researchers said on Tuesday. From a report: The device model under attack is the EdgeMarc Enterprise Session Border Controller, an appliance used by small- to medium-sized enterprises to secure and manage phone calls, video conferencing, and similar real-time communications. As the bridge between enterprises and their ISPs, session border controllers have access to ample amounts of bandwidth and can access potentially sensitive information, making them ideal for distributed denial of service attacks and for harvesting data.

Researchers from Qihoo 360 in China said they recently spotted a previously unknown botnet and managed to infiltrate one of its command-and-control servers during a three-hour span before they lost access. "However, during this brief observation, we confirmed that the attacked devices were EdgeMarc Enterprise Session Border Controller, belonging to the telecom company AT&T, and that all 5.7k active victims that we saw during the short time window were all geographically located in the US," Qihoo 360 researchers Alex Turing and Hui Wang wrote. They said they have detected more than 100,000 devices accessing the same TLS certificate used by the infected controllers, an indication that the pool of affected devices may be much bigger. "We are not sure how many devices corresponding to these IPs could be infected, but we can speculate that as they belong to the same class of devices the possible impact is real," they added.

AT&T and Verizon said they will slightly reduce the power of their 5G transmissions in C-band spectrum for six months. The companies said they will do so to allow federal aviation officials more time to study how such transmission might affect radio altimeters in aircraft. From a report: "We are committed to the rapid deployment of 5G and the safety of aviation," the two companies told the FCC in a new letter. "While we continue to believe the FCC's current rules provide for both, we will, without waiver of our legal rights associated with our substantial investments in these licenses, adopt these precautionary measures to allow for additional time for continued analysis." Importantly, according to the Wall Street Journal, executives in the wireless industry don't expect the power reduction to "seriously impair" the operators' 5G operations in the spectrum band. Further, the operators continued to argue that their 5G transmissions in C-band spectrum do not pose a risk to air travel in the US, despite a report from some airlines showing a potential risk of interference to aircraft operations.

Because of a "surprising and sudden request" from America's Federal Aviation Administration that's "based on unverified potential radio interference, a highly anticipated increase in 5G speeds and availability just got put on hold," writes the president/chief analyst of market research/consulting firm TECHnalysis.

But in an opinion piece for USA Today, he asks if the concern is actually warranted? [A]s soon as you start to dig into the details, the concerns quickly seem less practical and more political. Most notably, the plan to launch 5G services on C-Band frequencies has been in the works for several years and really took on momentum after the three big U.S. carriers spent over $80 billion earlier this year to get access to these frequencies. In addition, a report that the FAA cited as part of their complaint has been out for well over a year, so why the last-minute concerns?

U.S. government agencies are, unfortunately, known to hold grudges against one another, sometimes without real clarity as to what's actually involved, as appears to be the case here... Some 40 countries around the world are already using most of the C-Band frequencies for 5G (part of the reason the U.S. has fallen behind on the 5G front), and none have reported any interference with radio altimeters on planes in their countries, the wireless trade association CTIA argues on its website 5GandAviation.com. In addition, new filtering technologies being built into a somewhat obscure part of smartphones called the RF (radio frequency) front end, such as Qualcomm's recently introduced ultraBAW filters, can reduce interference issues on next generation smartphones.

All told, there are numerous reasons why the FAA's concerns around 5G deployment look to be more of a red herring than a legitimate technical concern. While it is true that some older radio altimeters with poor filtering might have to be updated and/or replaced to completely prevent interference, it's not clear that the theoretical interference would even cause an issue.
The article complains that the delayed expansion of bandwidth "could also delay important (and significant) economic impacts," since every previous change in cellular service levels "has triggered billions of dollars of new business and thousands of new jobs by creating new opportunities that faster wireless networks bring with them and 5G is expected do the same...

"While airplane safety shouldn't be compromised in any way, an overabundance of unnecessary caution on this issue could have a much bigger negative impact on the U.S.'s technology advancements and economy than many realize."

Peloton, the makers of an internet-connected exercise bike, saw their stock price drop 35% overnight on Thursday, reports CNBC. "At least four Wall Street investment firms downgraded the stock following Peloton's dismal fiscal first-quarter financial report... Peloton's stock has fallen 63% year to date."

The company had cut its annual revenue forecast — by $1 billion — and lowered its projections for both profit margins and paying subscribers. Bloomberg reports: At best, Peloton currently expects to have 3.45 million connected fitness subscriptions by the end of the fiscal year. It had previously called for 3.63 million. And gross profit margin will be 32%, compared with an earlier forecast of 34%. All that will add up to a loss of as much as $475 million, excluding some items....

On a more upbeat note, the company hinted that it plans to launch new products in the coming weeks and months. Peloton has been working on a rowing machine and a heart-rate monitor that attaches to a wearer's arm, Bloomberg News has reported.
The article suggests Peloton's business was hurt by the end of lockdowns, supply-chain constraints, and the cost of freight. But they also point out another factor. "Like several other companies, Peloton also blamed Apple Inc.'s ad-related privacy changes, which have made it more difficult to target shoppers based on their interests." Apple's new Ad Tracking Transparency feature (or "ATT") now first asks users to deny or allow apps to track their activity for the targeted advertising which had apparently been boosting Peloton's business.

And tlhIngan (Slashdot reader #30,335) tipped us off to a larger trend, since Gizmodo reports that Peloton "isn't the only company that has pointed accusingly at Apple lately." When reporting its third quarter earnings at the end of October, Facebook (now called Meta) — which depends on targeted ads for almost 98% of its revenue — said that ATT had decreased the accuracy of its ad targeting. The feature also increased "the cost of driving outcomes" for advertisers, Facebook COO Sheryl Sandberg explained, and made it harder to measure those outcomes. "Overall, if it wasn't for Apple's iOS 14 changes, we would have seen positive quarter-over-quarter revenue growth," Sandberg said.

On Sunday, the Financial Times reported that ATT had cost Snap, Facebook, Twitter, and YouTube an estimated $9.85 billion in lost revenue in the second half of this year. That's an 87% increase year over year.

Apple's privacy rules are "negatively affecting" Facebook, and its business, Facebook CEO Mark Zuckerberg claimed during its most recent earnings call. MacRumors reports: As a quick refresher, starting with iOS 14.5 and all newer versions of iOS and iPadOS, Apple requires that apps ask for users' permission to track them across other apps and websites. Under the App Tracking Transparency (ATT) framework, the latest change gives users a choice on whether they wish to be tracked for ads or other purposes. [...] Continuing on its anti-Apple's privacy rules campaign, Facebook CEO Mark Zuckerberg was quick to blame Apple for his company's lower than expected growth in the third quarter of the year. Kicking off the earnings call, Zuckerberg said Apple is "negatively affecting" Facebook but that he believes the company will be able to "navigate" the challenges Apple is presenting thanks to its long-term investments.

"As expected, we did experience revenue headwinds this quarter, including from Apple's changes that are not only negatively affecting our business, but millions of small businesses in what is already a difficult time for them in the economy. Sheryl and Dave will talk about this more later, but the bottom line is we expect we'll be able to navigate these headwinds over time with investments that we're already making today." While Zuckerberg and the Facebook executive team hold Apple's changes accountable for this quarter's performance, it may also be an asset. Zuckerberg has in the past stated that ATT could ultimately help Facebook, and it's a sentiment he again repeated during the earning's call. Apple's changes, according to Zuckerberg, are making "e-commerce and customer acquisition less effective on the web." Still, Facebook could benefit from the lessened effectiveness as "solutions that allow businesses to set up shop right inside our apps will become increasingly attractive," Zuckerberg added.

Facebook's chief operating officer, Sheryl Sandberg, also criticized Apple and its privacy rules, going as far as to claim that the new rules are negatively impacting Facebook while benefiting Apple's own advertising business: "We've been open about the fact that there were headwinds coming -- and we've experienced that in Q3. The biggest is the impact of Apple's iOS14 changes, which have created headwinds for others in the industry as well, major challenges for small businesses, and advantaged Apple's own advertising business." Despite Facebook facing an avalanche of pressure amid leaked internal documents and scrutiny, Sandberg pointed the finger at Apple for Facebook's lackluster performance this quarter. "Overall, if it wasn't for Apple's iOS 14 changes, we would have seen positive quarter-over-quarter revenue growth," Sandberg said.

AT&T's new 5G Plus expansion gives T-Mobile the perfect "I told you so" moment. From a report: AT&T currently offers two "flavors" of 5G: 5G Plus over the high-band mmWave spectrum and regular 5G, which is comparable to 4G LTE. Now, a blog post details that AT&T is bolstering 5G Plus with the mid-band C-band spectrum in 2022 -- a concept that T-Mobile has been preaching for years. Former T-Mobile CEO John Legere slammed AT&T for not having a mid-band spectrum in 2019, stating that 5G needs a low-band, mid-band, and high-band spectrum to work efficiently. This is because that high-band mmWave 5G offers the fastest speeds over shorter distances, making it best for highly concentrated areas. Conversely, low-band 5G provides the bare minimum for speed over wider areas. Offering 5G service with no in-between isn't ideal -- a mid-band range serves as the median between both spectrums.