US banks, already hesitant to work with crypto customers, are now even warier of providing services to the industry after a string of regional-lender collapses and amid heightened scrutiny by regulators. From a report: The closure of crypto-friendly Silvergate Capital and seizure of Signature Bank has left crypto firms struggling to find new banks for depository and payment services. While there's no blanket ban on serving crypto clients, financial firms are imposing lengthy application procedures, turning away smaller companies and some retail platforms, and in some cases shutting the door on crypto businesses altogether, according to industry participants, investors and bank executives.

Cross River Bank, for example, received requests from more than 100 new clients -- not all of whom were crypto companies -- seeking a safe harbor for their deposits within days of SVB Financial Group's Silicon Valley Bank and Signature collapsing, according to a person with direct knowledge of the bank's business. The closely held company turned down almost all those requests, the person said. Among the few crypto companies that have won over the bank is stablecoin issuer Circle Internet Financial, which expanded a partnership with Cross River, announced after Silicon Valley Bank failed. Earlier this month, lenders that were bidding to buy failed Signature Bank from the Federal Deposit Insurance Corp. specifically asked not to take on the digital-assets business, according to a person familiar with the process. Signature's crypto business was not part of the eventual takeover by New York Community Bancorp, and the FDIC is still seeking to sell Signet, Signature's real-time payments network for crypto firms.

Threat actors are exploiting a critical vulnerability in an IBM file-exchange application in hacks that install ransomware on servers, security researchers have warned. From a report: The IBM Aspera Faspex is a centralized file-exchange application that large organizations use to transfer large files or large volumes of files at very high speeds. Rather than relying on TCP-based technologies such as FTP to move files, Aspera uses IBM's proprietary FASP -- short for Fast, Adaptive, and Secure Protocol -- to better utilize available network bandwidth. The product also provides fine-grained management that makes it easy for users to send files to a list of recipients in distribution lists or shared inboxes or workgroups, giving transfers a workflow that's similar to email.

In late January, IBM warned of a critical vulnerability in Aspera versions 4.4.2 Patch Level 1 and earlier and urged users to install an update to patch the flaw. Tracked as CVE-2022-47986, the vulnerability makes it possible for unauthenticated threat actors to remotely execute malicious code by sending specially crafted calls to an outdated programming interface. The ease of exploiting the vulnerability and the damage that could result earned CVE-2022-47986 a severity rating of 9.8 out of a possible 10. On Tuesday, researchers from security firm Rapid7 said they recently responded to an incident in which a customer was breached using the vulnerability.

Lockheed Martin has created a spinoff devoted to lunar infrastructure, Crescent Space, whose first project is a Moon-to-Earth satellite network. Engadget reports: Parsec, as it's called, uses a constellation of small lunar satellites to provide a non-stop connection between astronauts, their equipment and the people back home. The system will also provide navigation help. The technology should help explorers keep in touch, and assist with spacecraft course changes. As Lockheed Martin explains, though, it could prove vital to those on lunar soil. Parsec's nodes create a lunar equivalent to GPS, giving astronauts their exact positions and directions back to base. A rover crew might know how to return home without driving into a dangerous crater, for instance.

Crescent's first Parsec nodes should be operational by 2025, with Lockheed Martin providing the satellites. And before you ask: yes, the company is clearly hoping for some big customers. CEO Joe Landon (formerly a Lockheed Martin Space VP) claims Crescent is "well positioned" to support NASA's Artemis Moon landings and other exploratory missions.

quonset writes: In what has to be one of the most inconceivable confluences ever, the Norwegian company Nammo says it is unable to expand its production of artillery shells to support Ukraine because of "cat videos" on TikTok. To placate European scrutiny, TikTok is opening two data centers in Europe to house European user data locally. One of those data centers is in the Hamar region of Norway. Because of this expansion, there is no excess capacity for the factory to ramp up production of artillery shells.

"The chief executive of Nammo, which is co-owned by the Norwegian government, said a planned expansion of its largest factory in central Norway hit a roadblock due to a lack of surplus energy, with the construction of TikTok's new data centre using up electricity in the local area," reports the Guardian. "Elvia, the local energy provider, confirmed to the Financial Times that the electricity network had no spare capacity after allocating it to the data center on a first-come, first-served basis. Additional capacity would take time to become available." "We are concerned because we see our future growth is challenged by the storage of cat videos," Morten Brandtzaeg told the Financial Times.

An anonymous reader shares a report: Back in 2019, Amazon announced Sidewalk, its low-bandwidth, long-range wireless network that uses the 900 MHz spectrum to connect Internet of Things (IoT) devices. It does this by creating a mesh network between Amazon's own Echo and Ring devices and sharing a small part of their owner's bandwidth. Ideally, this means Sidewalk will be able to connect devices that sit beyond the reach of a Bluetooth or Wi-Fi signal. Until now, though, only a select number of developers were able to build applications for the network. But that's changing today. The company is now shipping software and hardware development kits, as well as an easy-to-use test kit to test the available Sidewalk connectivity in your neighborhood.

Using the new test kit, developers will be able to check their local signal strength on a map to get a better sense of whether their devices will be able to connect to the network before they start working on a product. Amazon sent me one of these Ring-branded devices to try. Getting started with it involves little more than powering it up (it does have a battery for mobile usage) and logging into Amazon's web-based Sidewalk coverage service. From there, you can quickly see all of the raw data from the GPS-enabled test kit and get access to Amazon's U.S.-wide coverage map. To ensure user privacy, the coverage maps only show coverage within a 900m-by-900m square area. You will be able to see the exact location of your own device, but not other devices that report into the coverage map.

An anonymous reader quotes a report from Motherboard: Adult industry cryptocurrency payment platform SpankPay announced on Monday that it is closing down, after facing the same banking discrimination it aimed to help sex workers avoid. "After a long and difficult consideration, we have decided to close down SpankPay, our crypto payment processor that we built as a safe haven for our community," SpankPay tweeted. "Rest assured your money is safe and we'll get it to you as soon as possible."

SpankPay is the payments side of the blockchain Spankchain, a sex worker-led alternative to more mainstream cryptocurrency exchanges. Spankchain started development around 2017, and SpankPay launched in 2019. Wyre Payments, the company's upstream payment processor, terminated SpankPay's account because Wyre's new payment processor, Checkout.com, doesn't allow processing for payments related to sexual businesses, SpankPay said. In February, payments through SpankPay were suspended because Wyre indefinitely terminated Spankpay, alleging it was in violation of "third-party payment processor or network rules," according to a legal letter sent from Wyre that SpankPay posted to Twitter. "Operating SpankPay in a hostile banking environment has always been challenging, but the escalating attacks have become untenable for our small team and the niche market we serve," SpankPay tweeted in February.

Proposals to pay for broadband networks by imposing new fees on Big Tech companies "are built on a false premise," Meta executives wrote in a blog post today. From a report: "Network fee proposals do not recognize that our investments in content drive the business model of telecom operators," Meta executives Kevin Salvadori and Bruno Cendon Martin wrote. Meta's comments came a few weeks after Netflix co-CEO Greg Peters spoke out against the proposal being reviewed by European regulators. Meta executives said telecom operators and content application providers (CAPs) "are symbiotic businesses, occupying different but complementary roles in the digital ecosystem. Every year, Meta invests tens of billions of euros in our apps and platforms -- such as Facebook, Instagram, and Quest -- to facilitate the hosting of content. Billions of people go online every day to access this content, creating the demand that allows telecom operators to charge people for Internet access. Our investment in content literally drives the revenue and business model of telecom operators."

Internet service providers in the EU argue that Big Tech companies should pay a "fair share" toward network-building costs. In the US, Federal Communications Commission Republican Brendan Carr claims that "Big Tech has been enjoying a free ride on our Internet infrastructure while skipping out on the billions of dollars in costs needed to maintain and build that network." Big Tech companies don't actually get free access to the Internet, though. Anyone distributing content over the Internet pays their own providers, builds their own network infrastructure, or does some combination of the two. For extremely large companies like Netflix and Meta, investments include building their own content-delivery networks. "Over the last decade, CAPs have collectively invested over $880 billion in global digital infrastructure, including approximately $120 billion a year from 2018 to 2021," Meta's blog post today said. "These infrastructure contributions made by technology companies save telecom operators around $6 billion per year."

An anonymous reader quotes a report from KrebsOnSecurity: Google says it has suspended the app for the Chinese e-commerce giant Pinduoduo after malware was found in versions of the app. The move comes just weeks after Chinese security researchers published an analysis suggesting the popular e-commerce app sought to seize total control over affected devices by exploiting multiple security vulnerabilities in a variety of Android-based smartphones. In November 2022, researchers at Google's Project Zero warned about active attacks on Samsung mobile phones which chained together three security vulnerabilities that Samsung patched in March 2021, and which would have allowed an app to add or read any files on the device. Google said it believes the exploit chain for Samsung devices belonged to a "commercial surveillance vendor," without elaborating further. The highly technical writeup also did not name the malicious app in question.

On Feb. 28, 2023, researchers at the Chinese security firm DarkNavy published a blog post purporting to show evidence that a major Chinese ecommerce company's app was using this same three-exploit chain to read user data stored by other apps on the affected device, and to make its app nearly impossible to remove. DarkNavy likewise did not name the app they said was responsible for the attacks. In fact, the researchers took care to redact the name of the app from multiple code screenshots published in their writeup. DarkNavy did not respond to requests for clarification. "At present, a large number of end users have complained on multiple social platforms," reads a translated version of the DarkNavy blog post. "The app has problems such as inexplicable installation, privacy leakage, and inability to uninstall."

On March 3, 2023, a denizen of the now-defunct cybercrime community BreachForums posted a thread which noted that a unique component of the malicious app code highlighted by DarkNavy also was found in the ecommerce application whose name was apparently redacted from the DarkNavy analysis: Pinduoduo. A Mar. 3, 2023 post on BreachForums, comparing the redacted code from the DarkNavy analysis with the same function in the Pinduoduo app available for download at the time. On March 4, 2023, e-commerce expert Liu Huafang posted on the Chinese social media network Weibo that Pinduoduo's app was using security vulnerabilities to gain market share by stealing user data from its competitors. That Weibo post has since been deleted. On March 7, the newly created Github account Davinci1010 published a technical analysis claiming that until recently Pinduoduo's source code included a "backdoor," a hacking term used to describe code that allows an adversary to remotely and secretly connect to a compromised system at will. That analysis includes links to archived versions of Pinduoduo's app released before March 5 (version 6.50 and lower), which is when Davinci1010 says a new version of the app removed the malicious code. Pinduoduo boasts approximately 900 million monthly active users in China. In August of last year, the Guardian published an article covering the company's plans to expand to the U.S. and take on Amazon.

"9to5Linux.com reports that the GNOME 44 desktop environment is officially released and gives a detailed look at the major new features and improvements," writes Slashdot reader prisoninmate. From the report: Code-named "Kuala Lumpur" in recognition of the work done by the organizers of GNOME.Asia Summit 2022 conference, GNOME 44 introduces a GTK4 port of the Epihaphy (GNOME Web) web browser, a file chooser grid view for apps that use the standard GTK file chooser, as well as support for adding a WireGuard VPN directly from the Network panel. GNOME 44 continues to improve the Quick Settings feature introduced in GNOME 43 by implementing a submenu to the Bluetooth button to more easily and quickly connect or disconnect peripherals, adding descriptions to buttons to easily see their status, and implementing a new feature called Background Apps via a new background monitoring service in XDG portals 1.16.0." A full list of changes are available in the official release notes. The GNOME project also published a launch video on YouTube.

A new proposal targeting hidden fees charged by cable and satellite companies could force TV providers to clearly list their "all-in" prices. From a report The proposal announced today by Federal Communications Commission Chairwoman Jessica Rosenworcel would require cable and direct-broadcast satellite providers to "state the total cost of video programming service clearly and prominently, including broadcast retransmission consent, regional sports programming, and other programming-related fees, as a prominent single line item on subscribers' bills and in promotional materials." TV providers generally advertise a low rate that doesn't include charges such as the "Broadcast TV" and "Regional Sports Network" fees. Cable and satellite companies say these fees cover the amounts they have to pay for programming. But paying for programming is part of the cost of doing businessâ"there would be no TV channel lineup without channels, after all. By treating programming costs as separate fees, TV providers advertise rates that aren't even close to what customers actually have to pay. Comcast, for example, adds nearly $40 to monthly TV bills in the form of Broadcast TV and Regional Sports Network fees.

An ongoing internet disruption on one of Taiwan's islands is accelerating the self-governed territory's plans to launch an independent satellite network like SpaceX's Starlink, which would help ensure it remains connected in a potential Chinese invasion. From a report: Taiwan's National Communication Commission blamed Chinese vessels last month for cutting two undersea cables providing high-speed internet to Matsu, a Taiwanese island located only a few nautical miles off the coast of China's Fujian province. The cables have yet to be repaired; Matsu residents are currently relying on a microwave backup system and other fixes, such as using SIM cards from China. [...] Taiwan's Digital Minister Audrey Tang said last week that the territory would prioritize testing its satellite internet capabilities in outlying islands such as Matsu. She first announced in September that Taiwan was aiming to build a satellite system similar to the Starlink network run by Elon Musk's SpaceX, which has become instrumental to Ukraine in its war against Russia.

The number of victims affected by a mass-ransomware attack, caused by a bug in a popular data transfer tool used by businesses around the world, continues to grow as another organization tells TechCrunch that it was also hacked. From the report: Canadian financing giant Investissement Quebec confirmed to TechCrunch that "some employee personal information" was recently stolen by a ransomware group that claimed to have breached dozens of other companies. Spokesperson Isabelle Fontaine said the incident occurred at Fortra, previously known as HelpSystems, which develops the vulnerable GoAnywhere file transfer tool. Hitachi Energy also confirmed this week that some of its employee data had been stolen in a similar incident involving its GoAnywhere system, but saying the incident happened at Fortra.

Over the past few days, the Russia-linked Clop gang has added several other organizations to its dark web leak site, which it uses to extort companies further by threatening to publish the stolen files unless a financial ransom demand is paid. TechCrunch has learned of dozens of organizations that used the affected GoAnywhere file transfer software at the time of the ransomware attack, suggesting more victims are likely to come forward. However, while the number of victims of the mass-hack is widening, the known impact is murky at best. Since the attack in late January or early February -- the exact date is not known -- Clop has disclosed less than half of the 130 organizations it claimed to have compromised via GoAnywhere, a system that can be hosted in the cloud or on an organization's network that allows companies to securely transfer huge sets of data and other large files.

In the 1970s, Bob Metcalfe helped develop the primary technology that lets you send email or connect with a printer over an office network. From a report: In June 1972, Bob Metcalfe, a 26-year-old engineer fresh out of graduate school, joined a new research lab in Palo Alto, Calif., as it set out to build something that few people could even imagine: a personal computer. After another engineer gave up the job, Dr. Metcalfe was asked to build a technology that could connect the desktop machines across an office and send information between them. The result was Ethernet, a computer networking technology that would one day become an industry standard. For decades, it has connected PCs to servers, printers and the internet in corporate offices and homes across the globe.

For his work on Ethernet, the Association for Computing Machinery, the world's largest society of computing professionals, announced on Wednesday that Dr. Metcalfe, 76, would receive this year's Turing Award. Given since 1966 and often called the Nobel Prize of computing, the Turing Award comes with a $1 million prize. When Dr. Metcalfe arrived at the Palo Alto Research Center -- a division of Xerox nicknamed PARC -- the first thing he did was connect the lab to the Arpanet, the wide-area network that later morphed into the modern internet. The Arpanet transmitted information among about 20 academic and corporate labs across the country. But as PARC researchers designed their personal computer, called the Alto, they realized they needed a network technology that could connect personal computers and other devices within an office, not over long distances. Further reading: Ethernet Creator Makes the Inventors Hall of Fame (2007).

An anonymous reader quotes a report from The Register: A cancer patient whose nude medical photos and records were posted online after they were stolen by a ransomware gang, has sued her healthcare provider for allowing the "preventable" and "seriously damaging" leak. The proposed class-action lawsuit stems from a February intrusion during which malware crew BlackCat (also known as ALPHV) broke into one of the Lehigh Valley Health Network (LVHN) physician's networks, stole images of patients undergoing radiation oncology treatment along with other sensitive health records belonging to more than 75,000 people, and then demanded a ransom payment to decrypt the files and prevent it from posting the health data online. The Pennsylvania health care group, one of the largest in the US state, oversees 13 hospitals, 28 health centers, and dozens of other physicians' clinics, pharmacies, rehab centers, imaging and lab services. LVHN refused to pay the ransom, and earlier this month BlackCat started leaking patient info, including images of at least two breast cancer patients, naked from the waist up.

According to the lawsuit [PDF] filed this week, here's how one of the patients, identified as "Jane Doe" found out about the data breach -- and that LVHN had stored nude images of her on its network in the first place. On March 6, LVHN VP of Compliance Mary Ann LaRock, called Doe and told her that her nude photos had been posted on the hackers' leak site. "Ms. LaRock offered plaintiff an apology, and with a chuckle, two years of credit monitoring," the court documents say. In addition to swiping the very sensitive photos, the crooks also made off with everything needed for identity fraud.

According to the lawsuit, LaRock also told Doe that her physical and email addresses, along with date of birth, social security number, health insurance provider, medical diagnosis and treatment information, and lab results were also likely stolen in the breach. "Given that LVHN is and was storing the sensitive information of plaintiff and the class, including nude photographs of plaintiff receiving sensitive cancer treatment, LVHN knew or should have known of the serious risk and harm that could occur from a data breach," the lawsuit says. It claims LVHN was negligent in its duty to safeguard patients' sensitive information, and seeks class action status for everyone whose data was exposed with monetary damages to be determined. Pennsylvania attorney Patrick Howard, who is representing Doe and the rest of the plaintiffs in the proposed class action, said he expects the number of patients affected by the breach to be in the "hundreds, if not thousands."

New Zealand will ban TikTok on devices with access to the parliamentary network because of cybersecurity concerns, a government official said on Friday. CNBC reports: TikTok will be banned on all devices with access to New Zealand's parliamentary network by the end of March, said Parliamentary Service Chief Executive Rafael Gonzalez-Montero. Gonzalez-Montero, in an email to Reuters, said the decision was taken after advice from cybersecurity experts and discussions within government and with other countries.

"Based on this information the Service has determined that the risks are not acceptable in the current New Zealand Parliamentary environment," he said. Special arrangements can be made for those who require the app to do their jobs, he added.

Google's security research unit is sounding the alarm on a set of vulnerabilities it found in certain Samsung chips included in dozens of Android models, wearables and vehicles, fearing the flaws could be soon discovered and exploited. From a report: Google's Project Zero head Tim Willis said the in-house security researchers found and reported 18 zero-day vulnerabilities in Exynos modems produced by Samsung over the past few months, including four top-severity flaws that could compromise affected devices "silently and remotely" over the cellular network.

"Tests conducted by Project Zero confirm that those four vulnerabilities allow an attacker to remotely compromise a phone at the baseband level with no user interaction, and require only that the attacker know the victim's phone number," Willis said. By gaining the ability to remotely run code at a device's baseband level -- essentially the Exynos modems that convert cell signals to digital data -- an attacker would be able to gain near-unfettered access to the data flowing in and out of an affected device, including cellular calls, text messages, and cell data, without alerting the victim. The list of affected devices includes (but is not limited to): Samsung mobile devices, including the S22, M and A series handsets; Vivo mobile devices, including those in the S16, S15, S6, X70, X60 and X30 series; Google Pixel 6 and Pixel 7 series; and connected vehicles that use the Exynos Auto T5123 chipset.

Wemo, Belkin's smart home company, has paused development of Matter smart home devices. The Verge reports: In an email exchange, Jen Wei, Vice President of Global Communications and Corporate Development at Belkin, confirmed that, while the company remains convinced that "Matter will have a significantly positive impact on the smart home industry," it has decided to "take a big step back, regroup, and rethink'' its approach to the smart home. Wei went on to write that Wemo will bring new Matter products to market when it can find a way to differentiate them. It seems like Wemo might be concerned its smart home gear is becoming commoditized.

During CES 2022, Wemo announced it would bring Thread-compatible, Matter-compliant products to market when that new standard officially arrived. At the time, it was expected that the new connectivity standard, which promised to once and for all tear down the walls that have sequestered ecosystems away from one another, would launch in the middle of 2022 after two years of frustrating delays -- but Matter was again pushed back. As the year wore on, Wemo indeed updated a product to use Thread, the primary wireless protocol beneath the Matter standard that enables Wi-Fi-free local control of smart devices, and released a new Thread-compatible smart dimmer. Curiously, none of the new products -- a light switch, dimmer switch, plug, and a stick-on-the-wall three-button scene controller -- are slated for future Matter support. With the news, Wemo is tapping the brakes on Matter. And we probably won't get those updated versions it announced last year, either.

While the existing Thread devices from Wemo come with many of the important benefits of Matter -- exclusively local control with no direct access to your home network, fast operation, and easy setup that cuts out your Wi-Fi router as the middleman -- they lack the most crucial feature, the central problem Matter is to solve: near-universal smart home platform compatibility. These Thread devices only work with Apple HomeKit. But it's pretty hard for companies like Wemo to stand out in a field full of cheap IoT junk that costs half the price to do the same thing, as far as most normal people are concerned. Sure, maybe they're less secure, but many people willingly put an internet-connected microphone in their home, too. They probably don't care about the possible security issues with their light switch.

Ethereum's next major software upgrade, which could make crypto's biggest commercial highway more attractive to investors and developers alike, will take place around April 12. From a report: Called Shanghai, it will let people who pledged their Ether tokens to order transactions on the Ethereum blockchain to withdraw them. Currently, some 17.5 million of such so-called staked Ether, worth about $29 billion at current prices, can't be accessed on the network, although the coins do earn their owners a yield. Ethereum software developers have been working on Shanghai for months, and have finally been able to set the date after deploying a final software test earlier this week. Developers confirmed the target date during a call on Thursday. Once Shanghai launches, that's expected to kick off a wave of withdrawals, though they will be limited to ensure the network's continued security. Waiting in line to withdraw could take weeks or months. However, many investors stake through crypto platforms such as Lido, which already give them some flexibility with their coins.

Amazon.com plans to launch its first internet satellites to space in the first half of 2024 and offer initial commercial tests shortly after, the company said Tuesday, as it prepares to vie with Elon Musk's SpaceX and others to provide broadband internet globally. Reuters reports: Amazon's satellite internet unit, Project Kuiper, will begin mass-producing the satellites later this year, the company said. Those will be the first of over 3,000 satellites the technology giant plans to launch in low-Earth orbit in the next few years. "We'll definitely be beta testing with commercial customers in 2024," Dave Limp, senior vice president of Amazon devices, said at a conference in Washington.

The 2024 deployment target would keep Amazon on track to fulfill a regulatory mandate to launch half its entire Kuiper network of 3,236 satellites by 2026. Limp, who oversees Amazon's consumer devices powerhouse, said the company plans to make "three to five" satellites a day to reach that goal. With plans to pump more than $10 billion into the Kuiper network, Amazon sees its experience producing millions of devices from its consumer electronics powerhouse as an edge over rival SpaceX, the Musk-owned space company whose Starlink network already has roughly 4,000 satellites in space.

Amazon plans to launch a pair of prototype satellites early this year aboard a new rocket from the Boeing-Lockheed joint venture United Launch Alliance. The 2024 launch, carrying the initial production satellites, is expected to be the first of many more in a swift deployment campaign using rockets Amazon procured in 2021 and 2022. The company on Tuesday also revealed a slate of three different terminals, or antennas, that will connect customers with its Kuiper satellites in orbit. In a blog post on Tuesday, Amazon detailed its new terminals with photos and pricing.

Standard Customer Terminal: "Project Kuiper's standard customer terminal measures less than 11 inches square and 1 inch thick. It weighs less than five pounds without its mounting bracket. Despite this modest footprint, the device will be one of the most powerful commercially available customer terminals of its size, delivering speeds up to 400 megabits per second (Mbps). Amazon expects to produce these terminals for less than $400 each."

"Most Affordable" Terminal: "A 7-inch square design will be Project Kuiper's smallest and most affordable customer terminal. Weighing just 1 pound and offering speeds up to 100 Mbps, its portability and affordability will create opportunities to serve even more customers around the world. This design will connect residential customers who need an even lower-cost model, as well as government and enterprise customers pursuing applications like ground mobility and internet of things (IoT)."

"Most Capable" Antenna Model: "Project Kuiper's largest, most capable model is designed for enterprise, government, and telecommunications applications that require even more bandwidth. The device measures 19 inches by 30 inches, and will deliver speeds up to 1 gigabit per second (Gbps)."

An anonymous reader quotes a report from Ars Technica: Today, the federal government's Joint Office of Energy and Transportation opened up applications for a $2.5 billion program to expand electric vehicle charging infrastructure in underserved communities. The Charging and Fueling Infrastructure Discretionary Grant Program was authorized along with the $5 billion National Electric Vehicle Infrastructure Formula Program as part of the Infrastructure Investment and Jobs Act of 2021. For starters, the Joint Office is making $700 million available for EV chargers -- but also other alternative fuels including hydrogen and natural gas.

The CFI program actually encompasses two discrete $1.25 billion grant programs. The first is for community charging and fueling grants in both urban and rural areas, particularly in underserved and disadvantaged communities, including low- and moderate-income neighborhoods as well as neighborhoods with a low ratio of private parking. The other half of the money is for the alternative fuel corridor grants, which will fund the deployment of EV chargers and other alternative fuel infrastructure along designated alternative fuel corridors. "It's critical that we build a national charging network that provides EV drivers with the right type of charging in the right location -- whether that's high-powered charging on highway corridors and in urban hubs or Level 2 charging where EV drivers or riders live, work, and play," said Joint Office Executive Director Gabe Klein. "By working with cities and communities through the CFI Program to get this mix right, we can ensure that everyone has convenient and affordable access to riding and driving electric."