An anonymous reader quotes a report from Motherboard: The American Data Privacy and Protection Act (ADPPA), a new federal privacy bill that has actually a chance of becoming law, is designed to introduce new privacy protections for Americans. But it may also have the side effect of wiping out $200 million worth of fines proposed against some of the country's biggest telecommunications companies as part of a major location-data selling scandal in which the firms sold customer data that ended up in the hands of bounty hunters and other parties. The issue centers around the ADPPA's shift of enforcement for privacy related matters from the Federal Communications Commission (FCC), which proposed the fines, to the Federal Trade Commission (FTC). The news highlights the complex push and pulls when developing privacy legislation, and some of the pitfalls along the way.

The FCC proposed the $200 million fines in February 2020. The fines came after Motherboard revealed that the carriers sold phone location data to a complex supply chain of companies which then provided it to hundreds of bounty hunters and other third parties, including someone that allowed Motherboard to track a phone for just $300. The fines also came after The New York Times and the office of Sen. Ron Wyden found that the carriers sold location data in a similar method to a company called Securus, which allowed law enforcement officials to track the location of phones without a warrant. A former sheriff abused the tool to spy on judges and other officials. The offending telecoms -- AT&T, T-Mobile, Sprint, Verizon -- said they stopped the sale of location data at varying points in time in response to the investigations. The FCC then found that the carriers broke the law by selling such data.

FCC Press Secretary Paloma Perez told Motherboard in an emailed statement that "our real-time location information is some of the most sensitive data there is about us, and it deserves the highest level of privacy protection. That is why the FCC has proposed more than $200 million in fines against the nation's largest wireless carriers for selling their customers' location data. Through our continued oversight we have ensured that these carriers are no longer monetizing their consumers' real-time location in this way, and we are continuing our investigation into these practices and expect to reach a conclusion very soon." In July FCC Chairwoman Jessica Rosenworcel sent letters to a host of U.S. telecommunications, tech, and retail companies to ask about their use of location data.

Matt Edmondson, a hacker and digital forensics expert, built a Raspberry Pi-powered anti-tracking tool that "scans for nearby devices and alerts you if the same phone is detected multiple times within the past 20 minutes," reports Wired. The device, which can be carried around or placed in a car, consists of parts that cost around $200 in total. From the report: The homemade system works by scanning for wireless devices around it and then checking its logs to see whether they also were present within the past 20 minutes. It was designed to be used while people are on the move rather than sitting in, say, a coffee shop, where it would pick up too many false readings. The anti-tracking tool, which can sit inside a shoebox-sized case, is made up of a few components. A Raspberry Pi 3 runs its software, a Wi-Fi card looks for nearby devices, a small waterproof case protects it, and a portable charger powers the system. A touchscreen shows the alerts the device produces. Each alert may be a sign that you are being tailed. The device runs Kismet, which is a wireless network detector, and is able to detect smartphones and tablets around it that are looking for Wi-Fi or Bluetooth connections. The phones we use are constantly looking for wireless networks around them, including networks they've connected to before as well as new networks.

Edmondson says Kismet makes a record of the first time it sees a device and then the most recent time it was detected. But to make the anti-tracking system work, he had to write code in Python to create lists of what Kismet detects over time. There are lists for devices spotted in the past five to 10 minutes, 10 to 15 minutes, and 15 to 20 minutes. If a device appears twice, an alert flashes up on the screen. The system can show a phone's MAC address, although this is not much use if it's been randomized. It can also record the names of Wi-Fi networks that devices around it are looking for -- a phone that's trying to connect to a Wi-Fi network called Langley may give some clues about its owner. "If you have a device on you, I should see it," he says. In an example, he showed WIRED that a device was looking for a network called SAMSUNGSMART.

To stop the system from detecting your own phone or those of other people traveling with you, it has an "ignore" list. By tapping one of the device's onscreen buttons, it's possible to "ignore everything that it has already seen." Edmondson says that in the future, the device could be modified to send a text alert instead of showing them on the screen. He is also interested in adding the capability to detect tire-pressure monitoring systems that could show recurring nearby vehicles. A GPS unit could also be added so you can see where you were when you were being tracked, he says. [...] Edmondson has no plans to make the device into a commercial product, but he says the design could easily be copied and reused by anyone with some technical knowledge. Many of the parts involved are easy to obtain or may be lying around the homes of people in tech communities. For those interested, Edmondson open-sourced its underlying code and plans to present the research project at the Black Hat security conference in Las Vegas this week.

On Wednesday, Meta announced that the Portal Plus Gen 2 and Portal Go now support Duet Display, an app that can turn a display into a secondary monitor for Macs and PCs. Ars Technica reports: The Portal Plus is the same size as some of the best portable monitors, so it makes sense to repurpose it for that function. Because it's built for video image quality, it has a decent resolution for a portable display -- 2160x1440. Duet Display doesn't require a display to be connected to a computer via a cable, so specific Portals are now portable wireless monitors, too.

At a time when webcams are integrated into many laptops, and USB webcams are easier to find again, many consumers don't need a display dedicated primarily to web calls. But an extra monitor? That's more widely appealing. With the addition of Duet Display, Portal owners have further reason to think about their Portal when they're not on a video call. Meta also gave all Portals with a touchscreen -- namely, the Portal Go, Portal Plus, Portal, and Portal Mini -- a Meta Portal Companion app for macOS. The app enables screen sharing during video calls and provides quick access to video call features, like mute and link sharing in Zoom, Workplace, and BlueJeans.

True 5G wireless data, with its ultrafast speeds and enhanced security protections, has been slow to roll out around the world. As the mobile technology proliferates -- combining expanded speed and bandwidth with low-latency connections -- one of its most touted features is starting to come in to focus. But the upgrade comes with its own raft of potential security exposures. From a report: A massive new population of 5G-capable devices, from smart-city sensors to agriculture robots and beyond, are gaining the ability to connect to the internet in places where Wi-Fi isn't practical or available. Individuals may even elect to trade their fiber-optic internet connection for a home 5G receiver. But the interfaces that carriers have set up to manage internet-of-things data are riddled with security vulnerabilities, according to research that will be presented on Wednesday at the Black Hat security conference in Las Vegas. And those vulnerabilities could dog the industry long-term. After years of examining potential security and privacy issues in mobile-data radio frequency standards, Technical University of Berlin researcher Altaf Shaik says he was curious to investigate the application programming interfaces (APIs) that carriers are offering to make IoT data accessible to developers.

These are the conduits that applications can use to pull, say, real-time bus-tracking data or information about stock in a warehouse. Such APIs are ubiquitous in web services, but Shaik points out that they haven't been widely used in core telecommunications offerings. Looking at the 5G IoT APIs of 10 mobile carriers around the world, Shaik and his colleague Shinjo Park found common, but serious API vulnerabilities in all of them, and some could be exploited to gain authorized access to data or even direct access to IoT devices on the network. "There's a big knowledge gap. This is the beginning of a new type of attack in telecom," Shaik told WIRED ahead of his presentation. "There's a whole platform where you get access to the APIs, there's documentation, everything, and it's called something like 'IoT service platform.' Every operator in every country is going to be selling them if they're not already, and there are virtual operators and subcontracts, too, so there will be a ton of companies offering this kind of platform."

Walmart has held discussions with major media companies about including streaming entertainment in its membership service, The New York Times reported Tuesday, citing three people with knowledge of the conversations, part of an effort to extend its relationship with customers beyond its brick-and-mortar stores. From a report: In recent weeks, executives from Paramount, Disney and Comcast have spoken with Walmart, the people said, as the retailer ponders which movies and TV shows would add the most value to its membership bundle, called Walmart+. The people spoke on the condition of anonymity because the discussions were private. It is unclear whether any of the streaming companies are inclined to reach a deal with Walmart. Disney operates the Disney+, ESPN+ and Hulu streaming services; Comcast owns the Peacock streaming service; and Paramount runs the Paramount+ and Showtime services.

A Walmart+ membership, which costs $12.95 per month, includes free shipping on orders and discounts on fuel. It also includes a free six-month subscription to the Spotify Premium music service. As the streaming field gets more crowded, the biggest media companies have turned to giants in other industries to find new subscribers. Wireless providers like Verizon and T-Mobile have struck deals to offer their customers free or discounted subscriptions to streaming services like Disney+ or Paramount+ as an extra incentive to sign up. Media companies, in turn, receive an influx of new customers whose subscriptions are subsidized by their wireless partner.

An anonymous reader quotes a report from Motherboard: In July, a video of a robot dog with a submachine gun strapped to its back terrified the internet. Now a hacker who posts on Twitter as KF@d0tslash and GitHub as MAVProxyUser has discovered that the robot dog contains a kill switch, and it can be accessed through a tiny handheld hacking device. "Good news!" d0tslash said on Twitter. "Remember that robot dog you saw with a gun!? It was made by @UnitreeRobotic. Seems all you need to dump it in the dirt is @flipper_zero. The PDB has a 433mhz backdoor."

In the video, d0tslash showed one of the Unitree robot dogs hooked up to a power supply. A hand comes into the frame holding a Flipper Zero, Tamagotchi-like multitool hacking device that can send and receive wireless signals across RFID, Bluetooth, NFC, and other bands. A button is pushed on the Flipper and the robot dog seizes up and falls to the ground. Motherboard reached out to d0tslash to find out how they hacked the robot dog. The power supply in the video is an external power source. "Literally a 24-volt external power supply, so I'm not constantly charging battery while doing dev," d0tslash said.

d0tslash got their hands on one of the dogs and started going through the documentation when they discovered something interesting. Every dog ships with a remote cut-off switch attached to its power distribution board, the part of a machine that routes power from the battery to its various systems. The kill switch listens for a particular signal at 433mhz. If it hears the signal, it shuts down the robot. Some of the Unitree robot dogs even ship with the wireless remote that shuts the dog down instantly. d0tslash then used Flipper Zero to emulate the shutdown, copying the signal the robot dog's remote broadcasts over the 433MHz frequency. Anyone with a Flipper Zero or similar device can shut down these robot dogs, thanks to the work d0tslash has shared on Github.

Cable companies are being downgraded by Wall Street analysts in response to weak broadband growth coming out of the pandemic. From a report: Cable companies have managed to stay afloat amid the cord-cutting crisis thanks to their booming broadband businesses. But some analysts see that safety net beginning to fade. Jonathan Chaplin, managing partner at New Street Research, wrote in two notes to clients that the firm has lowered its broadband subscriber estimates for the second time this year for both Charter and Comcast. "We have limited conviction in a quick recovery, given limited visibility all around," he wrote regarding Charter. "We are hoping for a turnaround later in the quarter but have low conviction," he wrote regarding Comcast. Comcast's stock slid last week after it reported flat broadband subscriber additions for the second quarter of 2022. The telecom giant was still able to increase broadband revenues, but its growth has been slowed by increased competition and more users relying on mobile hotspots and fixed wireless plans. Charter lost broadband subscribers for the first time last quarter. Executives cited customers rolling off the government's broadband subsidy program as a major contributor to its customer loss. "Excluding that headwind, we organically grew 38,000 internet customers in the quarter," Charter chief financial officer Jessica Fischer told investors.

According to a new report from ETNews, Intel is planning to install its next-generation Wi-Fi 7 (802.11be) technology in devices by 2024 as Apple transitions its devices to Wi-Fi 6E. MacRumors reports: Wi-Fi 7 is the successor to Wi-Fi 6E (802.11ax), bringing two times faster data processing speeds of 5.8 Gbps and more stable 6 GHz bandwidth stability, as well as support for up to 36 Gbps when working with data. Intel plans to expand its Wi-Fi 7 development efforts ahead of its introduction to the market in 2024 and intends to apply its technology predominantly in laptops before expanding to other devices. "We are currently developing Intel's Wi-Fi '802.11be' in order to obtain the 'Wi-Fi Alliance' certification, and it will be installed in PC products such as laptops by 2024. We expect it to appear in major markets in 2025," Eric McLaughlin, vice president of Intel's wireless solutions division, said at a recent press conference in Asia.

Meanwhile, Apple is on the cusp of transitioning its devices to Wi-Fi 6E. While it was heavily rumored to debut with the iPhone 13 lineup last year, Apple has yet to release any devices with support for Wi-Fi 6E. That is expected to change this year starting with the iPhone 14. Apple's long-rumored mixed-reality headset is also expected to feature Wi-Fi 6E. Apple analyst Ming-Chi Kuo said that head-mounted display devices in 2022, 2023, and 2024 will offer Wi-Fi 6/6E, Wi-Fi 6E/7, and Wi-Fi 7, respectively, but it is unclear if this information was related to Apple's product roadmap specifically. "Wi-Fi 6E offers the features and capabilities of Wi-Fi 6, including higher performance, lower latency, and faster data rates, extended into the 6 GHz band for processing speeds of 2.4 Gbps," notes MacRumors. "The additional spectrum provides more airspace beyond existing 2.4GHz and 5GHz Wi-Fi, resulting in increased bandwidth and less interference."

Other tech giants like Qualcomm, Broadcom, and MediaTek are also planning to release Wi-Fi 7-based products in the next few years.

Comcast fell the most in two years after its prized internet business added no new customers last quarter, its worst performance in decades, due to a housing slowdown and heavy competition. From a report: The largest US cable TV provider had added broadband customers in every quarter since at least 2005, according to data compiled by Bloomberg. Analysts were looking for around 83,000 new subscribers in the second quarter, and none of them predicted the gain would be in fact, zero. The shares slid as much as 9.9% on Thursday, their biggest intraday decline since March 2020. Rival Charter Communications, which reports earnings on Friday, dropped as much as 7.5%. "We expect the stock to face pressure absent forward-looking comments that suggest an improvement in broadband trends," New Street Research analyst Jonathan Chaplin wrote of Comcast. As home buying slows and competition among fiber and wireless broadband providers intensifies, the prospects of Comcast and its cable peers returning to prepandemic internet growth has become more challenging.

In an upcoming update, Chromebooks equipped with mobile data will be able to serve as a Wi-Fi hotspot for other devices, just like Android and iOS devices can today. 9to5Google reports: The work-in-progress feature has made its first appearance in ChromeOS code in the form of a new flag coming to chrome://flags. The details are quite slim at the moment, with little more than the flag description available today. That said, it's easy to imagine how a mobile hotspot would work on ChromeOS, based on how the same feature works on Android phones today.

Presumably, you would be able to choose the name and password for your Chromebook's hotspot through the Settings app in ChromeOS, where you can also toggle the hotspot on and off. If it truly follows the example of Android, there would also be an easy way to turn on your hotspot through a Quick Settings toggle.

An anonymous reader quotes a report from Interesting Engineering: A research team consisting of scientists from some of the top institutes in the U.S. have demonstrated a wireless technology that allows neurons in a fly brain to be controlled in less than a second, an institutional press release said. [...] Called Magnetic, Optical, Acoustic Neural Access (MOANA), the program aims to develop a wireless headset that can facilitate brain-to-brain communication in a nonsurgical manner. Jacob Robinson, an associate professor at Rice University is among the researchers working on the project, and his team has developed a method to hack fly brains wirelessly.

The research team used genetic engineering to express a special ion channel in flies' neuronal cells, which can be activated using heat. When the ion channel is activated, the flies spread out their wings, as they would do as part of their mating gesture. To activate the channel at will, the researchers then injected the experimental flies with nanoparticles that could be heated by applying a magnetic field. The genetically modified flies were then introduced into an enclosure that had an electromagnet on top and a camera to capture the movements of the flies. When the researchers activated the electromagnet, the electric field heated the nanoparticles, which activated the neurons, resulting in the flies spreading their wings, as seen in the short video [here]. Analyzing the video from the experiments, the researchers also found that the time lapse between the activation of the electromagnet and the spreading of wings was less than half a second.

Robinson is confident that this ability to precisely activate cells will be helpful in studying the brain, developing brain communication technology as well as treating brain-related disorders. The team is focused on developing technology that will help restore vision in people even if their eyes do not work. They aim to achieve this by stimulating parts of the brain that are associated with a vision to give a sense of vision in the absence of functional eyes. The findings have been published in the journal Nature Materials.

After weeks of teases, Nothing is finally announcing its debut smartphone -- the Nothing Phone 1 -- at a launch event today. From a report: Led by OnePlus co-founder Carl Pei, it's the well-funded startup's second product released following last year's Ear 1 true wireless earbuds. The big news is that the Nothing Phone 1 will be sold with a modest starting price of $475 USD (though it's not getting a widespread release in the US) when it goes on sale on July 21st. $475 gets you the model with 8GB of RAM and 128GB of storage, while stepping up to $535 gets you 256GB of storage. The model with 12GB of RAM and 256GB of storage goes on sale later this summer for $593 USD.

Canadian telecom Rogers is suffering a major outage affecting landline phones, cellular connections, and internet connectivity throughout Canada that started early this morning. DownDetector listed thousands of reports for the issue as people started to get up around 5AM ET and couldn't get online. From a report: Rogers first addressed the outage in a tweet from its official support account just before 9AM ET, and then went silent for a couple of hours. In a statement given to The Verge and tweeted at around 11:30AM ET, Rogers said, "We are currently experiencing an outage across our wireline and wireless networks and our technical teams are working hard to restore services as quickly as possible. On behalf of all of us at Rogers, we sincerely apologize to our customers, and we will continue to keep you updated as we have more information to share, including when we expect service to be back up. Thank you for your patience as we work to resolve this issue."

U.S. right-to-repair advocates hoped a district judge would finally rule Friday on Massachusetts' voter-approved right-to-repair referendum. But they were disappointed again, reports the Boston Globe, since instead the judge said he'd first have to consider a recent ruling by America's Supreme Court limiting the regulatory powers of the U.S. government's Environmental Protection Agency: The Massachusetts law was approved by 75 percent of voters in a 2020 referendum. But its implementation has been held up by court challenges ever since. It would require all automakers selling new cars in Massachusetts to provide buyers with access to "telematic" data â diagnostic information â via a wireless connection. That way, car owners could get their cars repaired at any independent repair shop, instead of being forced to have the work done at manufacturer-approved dealerships.

But the Alliance for Automotive Innovation, an association of the world's top carmakers, sued to overturn the law, arguing that only the federal government, not states, may enact such a rule. In addition, carmakers said that they could not redesign the digital systems of their cars in time to comply with the law's 2022 model-year deadline.

The lawsuit went to trial last summer, but the court's judgment has been repeatedly delayed. In the meantime, at least two auto manufacturers, Subaru and Kia, began selling cars in Massachusetts with their telematic features switched off, to avoid violating the law.
The state's attorney general has now granted a two-week "grace period" during which the law won't be enforced, according to the article, while the district judge "said that he expected to rule before the end of a two-week grace period."

Steve Jobs, the co-founder and former CEO of Apple, has been awarded a posthumous Presidential Medal of Freedom by President Joe Biden, the White House announced Friday. The Verge reports: The Presidential Medal of Freedom is the highest US honor that can be given to a civilian, and it's presented to "individuals who have made exemplary contributions to the prosperity, values, or security of the United States, world peace, or other significant societal, public or private endeavors," the White House said in a statement. Jobs founded Apple in April 1976, and it's since become one of the biggest companies in the world. He helped launch many tech products that have gone on to become cultural touchstones, including the Mac, the iPod, and the iPhone. He died on October 5th, 2011.

In its statement, the White House praised Jobs's creative approach to his various endeavors. "Steve Jobs was the co-founder, chief executive, and chair of Apple, Inc., CEO of Pixar and held a leading role at the Walt Disney Company," the White House wrote. "His vision, imagination and creativity led to inventions that have, and continue to, change the way the world communicates, as well as transforming the computer, music, film and wireless industries." The award will be presented on July 7th. The full list of this year's Presidential Medal of Freedom recipients can be viewed here.

Monica Alleven writes via Fierce Wireless: So much for the "win-win-win" scenario that Dish Network envisioned for the 12 GHz band. Dish and fellow MVDDS licensee RS Access have argued that the 12 GHz band can be used by both satellite players like SpaceX's Starlink and by companies like Dish that want to use it for 5G, all for the public's benefit. SpaceX on Tuesday submitted its own analysis (PDF) of the effect of terrestrial mobile deployment on non-geostationary orbit fixed satellite service (NGSO FSS) downlink operations. The upshot: The SpaceX study shows terrestrial mobile service would cause harmful interference to SpaceX's Starlink terminals in the 12.2-12.7 GHz band more than 77% of the time, resulting in full outages 74% of the time.

Although entities like RS Access note that SpaceX has access to plenty of other spectrum to accomplish its broadband mission, SpaceX insists that the 12 GHz band has become one of the most important and intensely used spectrum bands for Americans who depend on satellite services. In fact, SpaceX said it depends on the 12 GHz band for the workhorse frequencies in critical downlink services to serve Americans "in every corner of the nation." [...] SpaceX would like the FCC to drop the 12 GHz proceeding, but Dish and RS Access have been urging the FCC for years to change the rules so that their MVDDS licenses can be used for two-way 5G services. In response to SpaceX's submission, the 5G for 12 GHz Coalition, issued the following statement: "We understand that SpaceX has -- after 18 months and both a robust comment and reply period -- just filed its own in-house technical submission to the 12 GHz proceeding. Our engineers and technical experts are reviewing the filing in depth and remain committed to working in good faith with the FCC and stakeholders to ensure that the American public is able to reap the immense benefits of 5G services in this band."

An anonymous reader quotes a report from Ars Technica: The Federal Aviation Administration says it finally has a plan for the industry to replace or retrofit airplane altimeters that can't filter out transmissions from outside their allotted frequencies. The altimeter problem has prevented AT&T and Verizon from fully deploying 5G on the C-Band spectrum licenses the wireless carriers purchased for a combined $69 billion. The FAA was urging airlines to retrofit or replace altimeters in recent months and now says it has finalized a plan. An FAA statement on Friday said that "airlines and other operators of aircraft equipped with the affected radio altimeters must install filters or other enhancements as soon as possible."

AT&T and Verizon said they will be able to accelerate 5G deployments near airports in the coming months, but the carriers agreed to continue some level of "voluntary mitigations" in the airport areas until July 2023. Altimeters are used by airplanes to measure altitude. The FAA said a new "phased approach requires operators of regional aircraft with radio altimeters most susceptible to interference to retrofit them with radio frequency filters by the end of 2022. This work has already begun and will continue on an expedited basis."

Additionally, "filters and replacement units for the mainline commercial fleet should be available on a schedule that would permit the work to be largely completed by July 2023," the FAA said, continuing: "The radio-altimeter manufacturers have worked at an unprecedented pace with Embraer, Boeing, Airbus and Mitsubishi Heavy Industries to develop and test filters and installation kits for these aircraft. Customers are receiving the first kits now. In most cases, the kits can be installed in a few hours at airline maintenance facilities. Throughout this process, the FAA will work with both industries to track the pace of the radio altimeter retrofits while also working with the wireless companies to relax mitigations around key airports in carefully considered phases."

The Associated Press reports: Federal regulators say Verizon and AT&T will delay part of their 5G rollout near airports to give airlines more time to ensure that equipment on their planes is safe from interference from the wireless signals, but the airline industry is not happy about the deal. An airline industry trade group said federal regulators are taking a "rushed approach" to changing equipment on planes under pressure from the telecommunications companies.

The Federal Aviation Administration said Friday that the wireless companies agreed to delay some of their use of the C-Band section of the radio spectrum until July 2023. "We believe we have identified a path that will continue to enable aviation and 5G C-band wireless to safely co-exist," said the FAA's acting administrator, Billy Nolen. However, aviation groups say the C-Band service could interfere with radio altimeters — devices used to measure a plane's height above the ground....

Nolen said planes most susceptible to interference — smaller, so-called regional airline planes — must be retrofitted with filters or new altimeters by the end of this year. Components to retrofit larger planes used by major airlines should be available by July 2023, when the wireless companies expect to run 5G networks in urban areas "with minimal restrictions," he said. Airlines for America, a trade group for the largest U.S. carriers, said the FAA hasn't approved necessary upgrades and manufacturers have not yet produced the parts. "It is not at all clear that carriers can meet what appears to be an arbitrary deadline," trade group CEO Nicholas Calio said in a letter to Nolen....

Verizon said the agreement will let the company lift voluntary limits on its 5G rollout around airports "in a staged approach over the coming months." AT&T said it agreed to take "a more tailored approach" to controlling the strength of signals near runways so airlines have more time to retrofit equipment.

An anonymous reader quotes a report from BleepingComputer: Cisco advises owners of end-of-life Small Business RV routers to upgrade to newer models after disclosing a remote code execution vulnerability that will not be patched. The vulnerability is tracked as CVE-2022-20825 and has a CVSS severity rating of 9.8 out of 10.0. According to a Cisco security advisory, the flaw exists due to insufficient user input validation of incoming HTTP packets on the impacted devices. An attacker could exploit it by sending a specially crafted request to the web-based management interface, resulting in command execution with root-level privileges.

The vulnerability impacts four Small Business RV Series models, namely the RV110W Wireless-N VPN Firewall, the RV130 VPN Router, the RV130W Wireless-N Multifunction VPN Router, and the RV215W Wireless-N VPN Router. This vulnerability only affects devices with the web-based remote management interface enabled on WAN connections. [...] Cisco states that they will not be releasing a security update to address CVE-2022-20825 as the devices are no longer supported. Furthermore, there are no mitigations available other than to turn off remote management on the WAN interface, which should be done regardless for better overall security. Users are advised to apply the configuration changes until they migrate to Cisco Small Business RV132W, RV160, or RV160W Routers, which the vendor actively supports.

Over the last day or two, there have been a growing number of reports by people who own certain Canon Pixma printers that the devices either won't turn on at all or, once turned on, get stuck in a reboot loop, cycling on and off as long as they're plugged in. The Verge reports: Verge reader Jamie pointed us to posts on Reddit about the problem and Canon's own support forum, citing problems with models including the MX490, MX492, MB2010, and MG7520. Some believe their problem is due to a software update Canon pushed to the printers, but that hasn't been confirmed yet. In response to an inquiry from The Verge, corporate communications senior director and general manager Christine Sedlacek said, "We are currently investigating this issue and hope to bring resolution shortly as customer satisfaction is our highest priority."

Until there is an official update or fix, some people in the forums have found that disconnecting the printers from the internet is enough to keep them from rebooting, with control still possible via USB. To get the printers to work while maintaining your connection to the internet and their connection to local network devices, one reply from a customer on Canon's support forum suggests a method that many people report has worked for them.