Saying China-affiliated parties have compromised telecom networks, stolen customer call record data and accessed private communications of senior U.S. officials, the Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday issued mobile communications best practices guidance that it said mirrors advice it's giving federal agencies and Congress. "There is no single solution," but the guidance's content will enhance security, Jeff Greene, executive assistant director-cybersecurity, DHS' CISA, told press members.

The FCC’s Communications Security, Reliability and Interoperability Council’s working groups are making progress toward providing the agency with reports on AI security concerns, ensuring access to 911 as networks evolve and offering recommendations for 6G security, said the group leads during Wednesday’s CSRIC meeting. The groups are on pace to deliver several reports in 2025 and 2026, with the first -- on AI, machine learning and the specific security concerns they bring to communications networks -- due in March. “We believe this is a complex task,” said working group co-Chair Vijay Gurbani, Vail Systems' chief data scientist.

Backers of the revised AM Radio for Every Vehicle Act (HR-8449) signaled Wednesday they want to move swiftly on the proposal next year after congressional leaders didn't reach a deal to include it in a continuing resolution that extends federal appropriations through March 14. The CR released Tuesday night includes language from the NTIA Reauthorization Act (HR-4510) and several other telecom and tech bills. Meanwhile, the Senate voted 85-15 Wednesday to pass the FY 2025 National Defense Authorization Act (HR-5009) with language that would authorize the AWS-3 reauction to offset $3.08 billion in funding for the FCC’s Secure and Trusted Communications Networks Reimbursement Program (see 2412070001).

Federal appellate Judge Robert Luck repeatedly expressed skepticism Wednesday about the one-to-one robotext consent policy the FCC adopted a year ago (see 2312130019). During roughly 33 minutes of oral argument before the 11th U.S. Circuit Court of Appeals (docket 24-10277), Luck and Matthew Dunne from the FCC Office of General Counsel repeatedly circled around the issue of whether the agency went too far in implementation. The Insurance Marketing Coalition (IMC) is challenging the FCC order, arguing that the agency exceeded its Telephone Consumer Protection Act statutory authority (see 2405170005). Some observers had predicted the FCC could face an 11th Circuit having particular misgivings regarding regulatory agency reach (see 2412060029).

Incoming House Commerce Committee Chairman Brett Guthrie, R-Ky., plans on introducing comprehensive and kids’ privacy bills in the new year, he told us Tuesday.

The FCC should grant broadcasters a brief retroactive waiver of the agency’s audible crawl rules to allow them to adequately display emergency information until the agency decides on a longer-term solution, nearly every commenter said in docket 12-107 responding to a recent NAB petition (see 2411290007).

Sen. Jerry Moran, R-Kan., clarified that he hasn’t yet been selected as Senate Communications Subcommittee chairman for the next Congress despite filling in during a subpanel hearing last week (see 2412110067) for current ranking member John Thune, R-S.D. Current Communications Chairman Ben Ray Lujan of New Mexico is hopeful but not certain that he will remain the subpanel’s lead Democrat next year. Rep. Brett Guthrie of Kentucky, who will be House Commerce Committee chairman in the next Congress, said he’s adding 10 current and incoming Republican lawmakers to the panel.

Facing SEC requirements of prompt public disclosure of material cybersecurity incidents, many companies are reporting out of fear of violating the rules, sometimes going public with nonmaterial incidents, cybersecurity experts say. In an FCBA CLE Monday, Wiley cybersecurity lawyer Josh Waldman said the SEC's lawsuit against SolarWinds over the software company's disclosure practices seemed like it would trigger vast under- or overreporting, with the latter seemingly emerging as the dominant trend. While there's a willingness among agencies and Congress to harmonize different agencies' privacy, data security and cybersecurity rules, there's not a clear way of doing so, cybersecurity experts said.

FCC Commissioner Brendan Carr’s Nov. 13 letters to tech companies (see 2411150032) about their relationship with news website rating service NewsGuard are inaccurate and repeat false information, NewsGuard co-CEOs Steven Brill and Gordon Crovitz said in a letter Friday to Carr, the agency's incoming chair. “We wish you had reached out to us before sending your letter because it relies on false reporting about us,” the co-CEOs wrote. Carr also relied on reporting from Newsmax, which has “misled” the commissioner in order to undermine the service’s credibility because it rates Newsmax poorly, NewsGuard's letter said. “An analogy would be a maker of unsafe cars objecting to its rating by Consumer Reports by making false claims about the magazine’s testing process,” NewsGuard said.

The U.S. Supreme Court Monday denied to review a petition from telecom groups challenging a New York law requiring that ISPs offer a certain plan for eligible low-income households (see 2404260051). The Affordable Broadband Act requires $15 monthly plans providing 25/3 Mbps speeds. Some saw the decision to uphold the 2nd Circuit's ruling in favor of the law as unsurprising given the legal battle over the FCC's reclassification of broadband as a Title II telecom service (see 2410010024).