It looks like Yahoo has yet to reach its lowest point. The company revealed today via a regulatory filing that about 32 million user accounts were accessed by hackers in the past two years using forged cookies that allowed them to log into their accounts without passwords. According to Yahoo, the attack is likely connected to the "same state-sponsored actor believed to be responsible for the 2014 [breach]," which resulted in the theft of user information from 500 million user accounts. CNET reports: "Based on the investigation, we believe an unauthorized third party accessed the company's proprietary code to learn how to forge certain cookies," Yahoo said in its annual filing to the Securities and Exchange Commission. The company went on to say that forged cookies have been invalidated to prevent further use on accounts. Yahoo revealed the attack in December but the news was largely overlooked because the company announced at the same time it had identified a separate security breach that took place in 2013 in which hackers stole information on 1 billion Yahoo accounts. Yahoo CEO Marissa Mayer also revealed today that she is giving yahoo employees her annual bonus to make up for the massive hacks.

A battle is raging between telecommunications giants and the public is benefiting from it. In response to T-Mobile's "One" unlimited data plan announced in August, Verizon introduced unlimited data plans of their own a couple of weeks ago. This caused a ripple effect as Sprint and AT&T unveiled new unlimited data plans that same week, both of which have their own restrictions and pricing. The battle appears to show no signs of slowing as the carriers are continuing their efforts to win consumers over. Today, AT&T undercut Verizon and T-Mobile with newer unlimited data plans. The "Unlimited Choice" plan is the cheaper of the two new plans, featuring unlimited data at a maximum speed of 3 megabits per second, standard definition, and no mobile hotspot for $60 per month. While it's lower than T-Mobile's $70 plan and Verizon's $80 option, it may not be as generous as T-Mobile's latest promotion. The company just announced a new promotion after AT&T's announcement that offers three unlimited data lines for $100. The Verge reports: In its continuing efforts to attract more sign-ups, T-Mobile's latest promotion offers an additional line for free for accounts with two or more lines. The offer works whether you want to add an extra phone line or a line for wearables or tablets. The deal is available for current and new customers -- the amount of data available to the free line will match up with whatever your current plan is for the other lines. If your plan does not have the same amount of data between devices, the free line will get whatever's the lowest of the bunch. Just two weeks ago, the company updated its T-Mobile One plan to include unlimited data for $100 a month between two lines. CEO John Legere said the free line promotion also applies this new plan. If you are confused about the four carriers' recent announcements, you are not alone. We have included related links below to help you make sense of each carrier's plans.

Roger Cheng, writing for CNET: AT&T just fired the latest salvo in the unlimited data wars. The Dallas telecommunications giant unveiled two new unlimited data plans. The first is Unlimited Choice, a stripped-down plan that comes with unlimited data at a maximum speed of 3 megabits per second, standard definition, and no mobile hotspot. At $60, it's lower than T-Mobile's $70 plan and Verizon's $80 option. Both plans, however, offer you full high-definition video and 10 gigabytes of mobile hotspot access. Sprint still offers the cheapest option at $50 a month, although prices rise by $10 after a year. AT&T continues to push its video aspirations with higher end option called Unlimited Plus that includes HD video and 10GB of mobile hotspot access. The plan costs $90 a month, but gives you the option to add DirecTV Now streaming video service for $10 and DirecTV home satellite TV service for $25 a month.

"T-Mobile USA is ready to deploy a new LTE technology over the same 5GHz frequencies used by Wi-Fi following U.S. government approval of the first 'LTE-U' devices," reports Ars Technica. "The Federal Communications Commission today authorized the first LTE-U (LTE for unlicensed spectrum) devices after a controversial process designed to ensure that cellular network use of the 5GHz band won't interfere with Wi-Fi networks." From the report: LTE-U will help T-Mobile achieve its goal of offering gigabit LTE speeds, the carrier said. Verizon Wireless is also planning to use LTE-U. The company said in September that it is "eager to deploy" the technology and developed an equipment testing plan, but it's not clear when a Verizon deployment will happen. Cellular carriers in the US generally hold exclusive licenses to spectrum, while Wi-Fi operates in unlicensed frequencies. Anyone can operate in unlicensed spectrum without an FCC license as long as they use certified radio equipment and comply with power limits and other technical requirements. The plan to bring LTE to unlicensed Wi-Fi spectrum set off an industry fight. LTE-U deployment plans drew opposition in 2015 from cable companies and the Wi-Fi Alliance, an industry group that certifies equipment to make sure it doesn't interfere with other Wi-Fi equipment. Industry groups worked together to develop a "Coexistence Test Plan" to prevent interference, and the Wi-Fi Alliance said it's satisfied with the result even though the new testing is voluntary rather than required by the FCC.

Verizon will test faster fifth-generation (5G) mobile broadband service in 11 markets in the first half of this year as the nation's largest wireless carrier tries to take the lead in the 5G race. From a report on Bloomberg: Working with equipment partners including Ericsson and Samsung, Verizon will beam 5G signals to a test group of homes and businesses in Ann Arbor, Michigan; Atlanta; Bernardsville, New Jersey; Brockton, Massachusetts; Dallas; Denver; Houston; Miami; Sacramento, California; Seattle; and Washington, D.C., according to a statement released as part of Mobile World Congress, which starts this week in Barcelona. While 5G service isn't expected to be commercially available until 2020, Verizon and its closest rival, AT&T, are bringing the technology out of the lab and into the hands of actual users to spur development.

Ingrid Lunden, writing for TechCrunch: After the disclosure of two massive data breaches last year, today Yahoo and Verizon finally confirmed new terms for the sale of Yahoo to Verizon: Verizon will pay $350 million less than originally planned, working out to a price of $4.48 billion to acquire Yahoo. The two have also agreed to share legal and regulatory liabilities after the massive data breach at Yahoo, which affected some 1.5 billion users across two hacks, one revealed in September 2016, and another in December 2016.

According to Reuters, SoftBank is willing to cede control of Sprint to make a T-Mobile-Sprint merger happen. The company controls 83 percent of Sprint, but it'd reportedly be willing to surrender control of Sprint and retain a minority stake in a merger with T-Mobile. PhoneDog reports: It's said that SoftBank is growing frustrated with Sprint's lack of major growth in the U.S. market, and so it wants to merge with T-Mobile in order to better compete with Verizon and ATT. No talks between SoftBank and Deutsche Telekom are currently happening because of the FCC's 600MHz spectrum auction that prevents collusion between competing companies. Once the auction ends in April, though, it's expected that SoftBank will approached Deutsche Telekom about a deal.

Earlier this week, Verizon announced it is bringing back unlimited data plans after years of selling capped data packages. Now, ATT will be doing the same. ATT will let any current or potential customer buy an unlimited data plan. Until now, only DirecTV customers were able to purchase unlimited data from the carrier. PhoneDog reports: ATT says that starting tomorrow, February 17, its Unlimited Plan will be available to all customers. The plan will include unlimited data, talk, and text, and customers with the plan will also be able to travel to Canada or Mexico and use their plan just as they would at home, with zero roaming charges. ATT's Unlimited Plan also includes Stream Saver, which will optimize video streams to 480p. However, Stream Saver can be disabled if you'd like. One feature that's missing from ATT's Unlimited Plan is mobile hotspot usage, which is notable because the unlimited plans from the other three major U.S. carriers do include some mobile hotspot. Finally, it's worth noting that after 22GB of usage, ATT Unlimited Plan customers may have their speeds slowed during times of network congestion. This policy is also in place at the other three major U.S. carriers, with Verizon's threshold being 22GB, Sprint's 23GB, and T-Mobile's 26GB. A single line on the ATT Unlimited Plan will cost $100 per month. Each additional line will cost $40, but ATT will offer the fourth line free, making the cost for a family of four $180 per month.

Take that, Verizon! Sprint's unlimited data plan now has HD video too. From a report: On February 16, Sprint upped its unlimited plan, launching the "best unlimited HD plan ever", according to its press release. The new plan matches Verizon Wireless' new unlimited plan by offering unlimited calls, text, data, HD video streaming, and 10 GB of mobile hotspot for $22.50 per line, for four lines. That equates to $90 per month for four lines, or half of what Verizon Wireless is charging. Sprint's plan requires the account owner to enable AutoPay, ensuring the bill is paid on time each month. For those who don't need four lines, the first line will set you back $50 per month, two lines of service will bump it $90 per month.

Kate Conger, writing for TechCrunch: Yahoo is continuing to issue warnings to users about several security incidents as it moves toward an acquisition by Verizon. Users are receiving notifications today about unauthorized access to their accounts in 2015 and 2016, which occurred due to previously disclosed cookie forging. "As we have previously disclosed, our outside forensic experts have been investigating the creation of forged cookies that could have enabled an intruder to access our users' accounts without a password. The investigation has identified user accounts for which we believe forged cookies were taken or used. Yahoo is in the process of notifying all potentially affected account holders. Yahoo has invalidated the forged cookies so they cannot be used again," a Yahoo spokesperson told TechCrunch.

It didn't take long for T-Mobile to respond to Verizon's recently announced unlimited data plans. T-Mobile's CEO John Legere announced two improvements to the carrier's T-Mobile One unlimited plan that both take effect this Friday, reports The Verge. "Beginning February 17th, the plan will include HD video, an upgrade to the 480p/DVD-quality 'optimizations' that are currently in place." From the report: The other change Legere announced is related to the hotspot feature of T-Mobile One, which lets you share your smartphone's data connection with other devices. As of Friday, the plan will let customers use up to 10GB of high-speed data each month for tethering. That matches Verizon's plan, which also allows for 10GB of LTE tethering. But again, prior to today, T-Mobile One only allowed 3G hotspot speeds unless you paid extra for the T-Mobile One Plus plan. Lastly, Legere announced a promotion that will offer two lines of T-Mobile One for $100. A two-line family plan usually costs $120 per month. Unlike other carriers, T-Mobile includes taxes and fees in its advertised price -- so that should be all you pay month to month. Verizon charges $140 (plus taxes and fees) for a two-line unlimited plan. Assuming there's no sneaky fine print or trickery here, T-Mobile has at least for now regained its feature-for-feature price advantage compared against Verizon Unlimited. The company also has a higher threshold (28GB versus Verizon's 22GB) before its users might experience reduced speeds when the network is congested. In a long series of tweets, John Legere announced the new improvements/promo and took several jabs at Big Red. In one tweet, Legere wrote: "... And we all know no one was falling for [Verizon's] 'you don't need unlimited' bullshit. Hey @verizon - your ads are still up..."

A surprise announcement Sunday revealed that tomorrow Verizon will begin offering introductory plans with unlimited data.*

* Customers "will get full LTE speeds until they reach 22GB of usage," reports The Verge, "after which they'll be subject to reduced data speeds and de-prioritization."

An anonymous reader writes: Other carriers have similar limits. "For Sprint it's 23GB. T-Mobile has a slightly higher threshold of 26GB... AT&T matches Verizon at 22GB," reports The Verge. Verizon says their cap is "to ensure a quality experience for all customers... While we don't expect to do that very often, network management is a crucial tool that benefits all Verizon customers." The $80-a-month plan also includes hotspot tethering -- up to 10 gigabytes -- and "includes 'HD' video as opposed to the 480p/DVD-quality video that T-Mobile One customers get by default."

In a Sunday YouTube video, the head of Verizon's wireless effort says customer interviews found "Some of the heavier users of data -- the power users -- had data anxiety." But it's still a surprising move. Engadget reports that in the past Verizon "frequently tried its hardest to discourage unlimited data users," but today is "facing stiff competition from T-Mobile, which engineered a dramatic comeback in recent years and upped the ante by making unlimited data standard through the One plan."
Verizon's pricing was also targeted heavily last week in a barrage of Super Bowl ads by both Sprint and T-Mobile just last Sunday. T-Mobile showed a masochistic woman calling Verizon just to enjoying hearing about the overages, taxes and fees she incurred by exceeding her data limit, while Sprint showed a man who was trying to escape his Verizon contract by faking his own death.

An anonymous reader writes:An attacker compromised over 5,000 IoT devices on a campus network -- including vending machines and light sensors -- and then used them to attack that same network. "In this instance, all of the DNS requests were attempting to look up seafood restaurants," reports ZDNet, though the attack was eventually blocked by cybersecurity professionals. Verizon's managing principal of investigative response blames the problem on devices configured using default credentials -- and says it's only gong to get worse. "There's going to be so many of these things used by people with very limited understanding of what they are... There's going to be endless amounts of technology out there that people are going to easily be able to get access to."
The article suggests "ensuring that IoT devices are on a completely different network to the rest of the IT estate." But it ends by warning that "until IoT manufacturers bother to properly secure their devices -- and the organizations which deploy them learn to properly manage them -- DDoS attacks by IoT botnets are going to remain a huge threat."

Verizon has tied T-Mobile for the fastest carrier in the United States and both carriers are virtually tied for the "best" in overall LTE download speeds, according to Open Signal's State of Mobile Networks: USA report. Android Central reports: Using data collected from 169,683 users, 4,599,231,167 data points were used to measure network speeds on both 4G and 3G, network availability and latency. The data is collected by users installing the Open Signal app from Google Play or the App Store and going about their daily routine. In their analysis of the collected data, they say that Verizon has improved their 4G network speeds to pull even with T-Mobile who has traditionally done well in this category. They also mention that the average overall network speeds in the U.S. have risen slightly, and over 81% of U.S. residents have access to LTE networks. Availability of high-speed data services shows that all four carriers have improved, but T-Mobile (86.6%) is now within two percentage points of Verizon (88.2%) when it comes to finding an LTE signal. The company with the most improvement here is Sprint, who jumped from covering 69.9% in August to 76.8% in February 2017.

The advertising industry's self-regulation body said Comcast should stop saying in advertisements that it "delivers the fastest internet in America" and the "fastest in-home Wi-Fi." The evidence Comcast uses to substantiate those claims is not sufficient, ruled the National Advertising Review Board (NARB). Ars Technica reports: Verizon had challenged Comcast's advertising claims, leading to today's ruling. Comcast said today that it disagreed with the findings but will comply with the decision. Comcast used crowdsourced speed test data from Ookla to make its claim about Xfinity Internet speeds. "Ookla's data showed only that Xfinity consumers who took advantage of the free tests offered on the Speedtest.net website subscribed to tiers of service with higher download speeds than Verizon FiOS consumers who took advantage of the tests," today's NARB announcement said. The Ookla data's accuracy wasn't questioned, but it was judged to be "not a good fit for an overall claim that an ISP delivers 'America's fastest Internet.'" The ad review board said Comcast's "America's Fastest Internet" claims gave the impression that Comcast offers "overall Internet speed superiority in all tiers of service that it provides." The Comcast ads also give the impression that Comcast "delivers the fastest download and upload speeds," whereas the Ookla data showed that the top 10 percent of Verizon FiOS customers had higher upload speeds than the top 10 percent of Comcast customers.

jriding writes: The Federal Communications Commission's new Republican leadership has rescinded a determination that ATT and Verizon Wireless violated net neutrality rules with paid data cap exemptions. The FCC also rescinded several other Wheeler-era reports and actions. The FCC released its report on the data cap exemptions (aka "zero-rating") in the final days of Democrat Tom Wheeler's chairmanship. Because new Chairman Ajit Pai opposed the investigation, the FCC has now formally closed the proceeding. The FCC's Wireless Telecommunications Bureau sent letters to ATT, Verizon, and T-Mobile USA notifying the carriers "that the Bureau has closed this inquiry. Any conclusions, preliminary or otherwise, expressed during the course of the inquiry will have no legal or other meaning or effect going forward." The FCC's Wireline Competition Bureau also sent a letter to Comcast closing an inquiry into the company's Stream TV cable service, which does not count against data caps. The FCC issued an order that "sets aside and rescinds" the Wheeler-era report on zero-rating. All "guidance, determinations, and conclusions" from that report are rescinded, and it will have no legal bearing on FCC proceedings going forward, the order said. ATT and Verizon allow their own video services (DirecTV and Go90, respectively) to stream on their mobile networks without counting against customers' data caps, while charging other video providers for the same data cap exemptions. The FCC under Wheeler determined that ATT and Verizon unreasonably interfered with online video providers' ability to compete against the carriers' video services.

Customers are turning to Sprint again. From a report on CNET: In fact, they're starting to look to the nation's fourth-largest wireless carrier over stalwarts like AT&T and Verizon Wireless. The company said it added 405,000 net new post-paid subscribers -- people who pay at the end of the month and tend to be more loyal. Of that total, 368,000 were phone customers, Sprint's highest rate of growth in four years. The numbers suggest Sprint is starting to pull itself out of a death spiral, reversing years of losses, customers faced with poor service and a network that lagged behind the competition. Sprint's customer growth came at a time when all the carriers were aggressive with holiday promotions. It's a trend that will likely continue, resulting in more potential deals for consumers. "Sprint is turning the corner," CEO Marcelo Claure said in the company's fiscal third-quarter report on Tuesday.

wiredmikey quotes a report from SecurityWeek: Yahoo said Monday that the closing of a $4.8 billion deal to sell its core internet assets to U.S. telecom titan Verizon has been delayed several months. A close originally set for this quarter has been pushed into next quarter, and has been thrown into doubt following disclosures of two huge data breaches. Yahoo announced in September that hackers in 2014 stole personal data from more than 500 million of its user accounts. It admitted another cyberattack in December, this one dating from 2013, affecting over a billion users. The U.S. Securities and Exchange Commission has opened an investigation into whether Yahoo should have informed investors sooner about the two major data breaches.

New submitter Linorgese quotes a report from The Wall Street Journal (Warning: paywalled; alternate source): U.S. authorities are investigating whether Yahoo Inc.'s two massive data breaches should have been reported sooner to investors, according to people familiar with the matter, in what could prove to be a major test in defining when a company is required to disclose a hack. Last month, the Federal Bureau of Investigation said it had begun an investigation into a 2013 data breach that involved more than 1 billion users' accounts. That followed Yahoo's disclosure that a 2014 intrusion involved about 500 million accounts. As part of its investigation, the SEC last month requested documents from Yahoo, the Journal said, citing persons familiar with the situation. The agency has been seeking a model case for cybersecurity rules it issued in 2011, legal experts told the Journal. In a November 2016 SEC filing, Yahoo noted that it was cooperating with the SEC, Federal Trade Commission and other federal, state, and foreign governmental officials and agencies including "a number of State Attorneys General, and the U.S. Attorney's office for the Southern District of New York." When Yahoo reported the 2014 breach it said that evidence linked it to a state-sponsored attacker. It has not announced a suspected responsibility for the larger 2013 intrusion, but the company has said it does not believe the two breaches are linked.

Thousands of Verizon customers continue to use the Galaxy Note 7 smartphone, the carrier said. This despite the widely publicized recalls spurred by battery fire concerns and a software upgrade designed to kill the phone by preventing it from recharging. From a report: "In spite of our best efforts, there are still customers using the recalled phones who have not returned or exchanged their Note 7 to the point of purchase," a Verizon spokeswoman said. "The recalled Note 7s pose a safety risk to our customers and those around them." So now Verizon is fighting fire with fire, so to speak. The carrier plans to reroute all non-911 outgoing calls to its customer service line, and it might bill the holdouts for the full retail cost of the phone.