A brand-new law (awaiting only the president's signature) will let the Federal Communications Commission directly regulate rates in the notoriously predatory prison calling industry. From a report: Under the threat of having to provide a solid product for a reasonable price, companies may opt to call it a day and open up the market to a more compassionate and forward-thinking generation of providers. Prison calling systems depend on the state and the prison system, and generally have run the gamut from good enough to shockingly bad. With a literally captive customer base, companies had no real reason to innovate, and financial models involving kickbacks to the prisons and states incentivized income at all costs. Inmates are routinely charged extortionate rates for simple services like phone calls and video calls (an upsell), and have even had visitation rights rescinded, leaving paid calls the only option.

Needless to say, this particular financial burden falls disproportionately on people of color and those with low incomes, and it's a billion-dollar industry. It's been this way for a long time, and former FCC commissioner Mignon Clyburn spent years trying to change it. When I talked with her in 2017, before she left the agency, she called inmate calling "the clearest, most glaring type of market failure I've ever seen as a regulator." It was an issue she spent years working on, but she gave a lot of credit to Martha Wright-Reed, a grandmother who had organized and represented the fight to bring reform to the system right up until she died.

Long-time Slashdot reader theodp writes: In recognition of the innovation and unique nature of 1-Click, the U.S. Patent Office awarded Patent No. 5960411 to Amazon.com for 1-Click on September 28, 1999," boasted an Oct. 1999 Amazon press release. "First made available to Amazon.com customers in September 1997, 1-Click combines with Gift-Click and Wish List to make Amazon.com the most convenient, easiest-to-use shopping destination this holiday season."

The following day, Amazon weaponized its new patent, filing a lawsuit on Oct. 20th saying defendant and competitor Barnes and Noble had illegally copied Amazon's patented 1-Click ordering technology. "We're pleased that Judge Pechman recognized the innovation underlying our 1-Click feature," said Amazon CEO and 1-Click co-inventor Jeff Bezos in a Dec. 1999 Amazon press release celebrating a preliminary injunction that barred barnesandnoble.com from using its 'copycat version of 1-Click technology' while the lawsuit was pending (Amazon and B&N settled in 2002).

"The patent system is designed to encourage innovation on behalf of customers," Amazon had written in its 1999 press release, arguing that in 1997 its 1-Click technology "was a significant step forward for online shoppers that required thousands of hours of effort." It's been noted that B&N first threw down the litigation gauntlet, slapping Amazon with a lawsuit over its marketing claim as "World's Largest Bookstore" just days before Amazon's IPO in May 1997.

USPTO continuity records show a 'child' patent of the original Method and System for Placing a Purchase Order Via a Communications Network patent finally expired due to non-payment of maintenance fees on 10/10/2022, more than 25 years after Amazon applied for its 1-Click patent on 9/22/1997.

A proposal to force cellphone companies to block certain spam texts is gaining momentum. From a report: California Attorney General Rob Bonta has expressed his support for a proposal by the Federal Communications Commission (FCC) to put an end to illegal and malicious texts. By doing so, he joined attorneys general from the other 49 states and Washington D.C., who had all previously expressed their support of the proposal. In a letter signed by all 51 attorneys general to the FCC, supporting them in their hopes to require cellular providers to block illegal text messages from invalid or unused numbers, as well as blocking any phone numbers found on a "do not originate" list, numbers which have previously been proved to have been used for fraudulent activity.

"As a quick follow-up to yesterday's post about InSight's final photo, the InSight Lander's mission is now officially over after 2 failed communications attempts," writes Slashdot reader davidwr. From a NASA press release: NASA's InSight mission has ended after more than four years of collecting unique science on Mars. Mission controllers at the agency's Jet Propulsion Laboratory (JPL) in Southern California were unable to contact the lander after two consecutive attempts, leading them to conclude the spacecraft's solar-powered batteries have run out of energy -- a state engineers refer to as "dead bus."

"I watched the launch and landing of this mission, and while saying goodbye to a spacecraft is always sad, the fascinating science InSight conducted is cause for celebration," said Thomas Zurbuchen, associate administrator of NASA's Science Mission Directorate in Washington. "The seismic data alone from this Discovery Program mission offers tremendous insights not just into Mars but other rocky bodies, including Earth." You can read more about the InSight Mars Lander at NASA's website.

schwit1 shares a report from PC Magazine with the caption, "More Russian vaporware?" From the report: A Russian arms manufacturer claims it can help the country's military detect and bombard Starlink satellite dishes, which have been crucial to the defense effort in Ukraine. Earlier this month, a mysterious company called Sestroretsk Arms Factory published a website that debuted the "Borshchevik" or "hogweed" system, which is designed to locate Starlink dishes at a distance of up to 10 kilometers (6.2 miles). The technology can supposedly pinpoint a Starlink dish within 5 to 60 meters (16 to 196 feet) of its actual location. In addition, it can be fitted on top of a moving vehicle, allowing it to detect Starlink activity across the front lines on a battlefield.

However, it's unclear how the Borshchevik system actually works or if it's even effective. News of the technology was posted on a Telegram channel called "Reverse Side of the Medal," which seems to be closely associated with the Russian military, including the paramilitary Wagner Group. The user behind the Reverse Side of the Medal channel said they plan on testing the Borshchevik system on the frontlines in Russia's ongoing war with Ukraine.

NASA's InSight lander has probably phoned home for the last time from the planet Mars. From a report: The space agency said the spacecraft did not respond to communications from Earth on Sunday, December 18. The lack of communications came as the lander's power-generating capacity has been declining in recent months due to the accumulation of Martian dust on its solar panels. NASA said that it is "assumed" that InSight has reached the end of its operations but that it will continue to try to contact the lander in the coming days. Also on Monday, the InSight Twitter account shared a photo with a message saying this was probably the last photo it was sending from Mars. UPDATE 12/21/22: NASA's InSight Mission Officially Over

Epic Games has agreed to pay $520 million to resolve Federal Trade Commission allegations that the "Fortnite" videogame developer violated online privacy protections for children and tricked players into making unintended purchases. From a report: The FTC said the agreement consisted of two record-breaking settlements that resolve a pair of civil complaints it was filing against Epic. One, filed in federal court, alleged the company violated the federal Children's Online Privacy Protection Act by collecting personal information from "Fortnite" players under the age of 13 without notifying their parents or obtaining verifiable parental consent.

That lawsuit also accused the company of illegally enabling real-time voice and text chat communications for children and teens in the game by default. Further, the FTC said Epic put those users at risk by connecting them with strangers, and as a result, some were "bullied, threatened, harassed and exposed to dangerous and psychologically traumatizing issues such as suicide." Epic will pay a $275 million civil penalty for the alleged COPPA violations, the FTC said, the largest assessed in the commission's enforcement of the privacy law. Epic didn't admit or deny the FTC's allegations as part of the settlements. The commission also said the company agreed to pay $245 million in consumer refunds to resolve the second complaint, which was filed in administrative court. It is the FTC's largest settlement that bars the use of so-called dark patterns, tactics that trap customers into paying for goods and services and create obstacles to canceling. The agency alleged that Epic deployed a variety of tactics to drive unintended purchases of virtual perks such as outfits and dance moves in "Fortnite," including the use of counterintuitive, inconsistent and confusing button configurations. "These tactics led to hundreds of millions of dollars in unauthorized charges for consumers," it said.

Trade groups that represent Meta and Alphabet's Google said they asked the US Supreme Court to overturn a Texas law that would sharply restrict the editorial discretion of social media companies. From a report: The appeal by NetChoice and the Computer & Communications Industry Association contends the Texas law violates the First Amendment by forcing social media companies to disseminate what they see as harmful speech and putting platforms at risk of being overrun by spam and bullying. The law "would wreak havoc by requiring transformational change to websites' operations," the groups argued. The New Orleans-based 5th US Circuit Court of Appeals upheld the law in September but left the measure on hold to allow time for an appeal to the Supreme Court.

The Texas law bars social media platforms with more than 50 million users from discriminating on the basis of viewpoint. Texas Governor Greg Abbott and other Republicans say the law is needed to protect conservative voices from being silenced. The appeal adds a new layer to a Supreme Court term that could reshape the legal rules for online content. The justices are already considering opening social media companies to lawsuits over the targeted recommendations they make to users.

An anonymous reader quotes a report from the Australian Financial Review: Members of the inner circle of power at collapsed cryptocurrency exchange FTX formed a chat group called "Wirefraud" and were using it to send secret information about operations in the lead up to the company's spectacular failure. On Monday (Tuesday AEDT) Mr Bankman-Fried denied being part of the chat saying, "If this is true then I wasn't a member of that inner circle (I'm quite sure it's just false; I have never heard of such a group). The news of the chat group heightens concerns about the prospect of wrongdoing by Mr Bankman-Fried and his colleagues. Last week, Mr Bankman-Fried said he no longer had access to many of his own private communications. He was scheduled to testify virtually before the House Financial Services Committee on the 13th, but was arrested by the Royal Bahamas Police Force the day before. That said, Forbes published a transcript of SBF's planned testimony, where he at no point admits fraudulent behavior and does not address the (multi-)billion dollar loans that helped contribute to the collapse.

Most recently, we learned that FTX's chief engineer made a secret change to the cryptocurrency exchange's software that allowed FTX to use client money.

A new patent granted to Apple suggests the company could use satellite communications for more than just getting help in an emergency. 9to5Mac reports: Emergency SOS via Satellite was one of the headline features of September's Apple event -- so much so that the Far Out event name referenced it. The service launched in the US and Canada last month, and was yesterday extended to the UK, France, Germany, and Ireland. More countries will follow. A patent granted on the same day the service expanded to more countries suggests that Apple satellite plans may extend beyond text, and beyond emergency use.

Patently Apple spotted it: "Satellite communications data conveyed by transceivers #28 and antenna radiators #30 may include media data (e.g., streaming video, television data, satellite radio data, etc.), voice data (e.g., telephone voice data), internet data, and/or any other desired data." Apple has currently committed $450M to support the satellite communications feature, a reasonably sizeable amount of money even by Apple standards for a service that will be of use to a tiny fraction of iPhone owners. But if it's the start of something more, then the investment could look rather modest.

Microsoft aims to secure internet access for 100 million more people in Africa by 2025, teaming up with a satellite provider and setting the stage for longer-term cloud adoption, its President Brad Smith said. From a report: The software maker has long pushed to bring more people online, playing the role of facilitator among telecoms and electricity providers, governments and non-profits. Since 2017, it helped widen connectivity for 50 million people, including nearly 10 million in Africa, under its so-called Airband initiative.

Now, Microsoft is tapping satellite technology for the program for the first time, aiming to reach remote areas that have had little connectivity. In news pegged to the U.S.-Africa Leaders Summit, Microsoft said Wednesday it is working with Viasat to expand access in Nigeria, the Democratic Republic of the Congo and other countries globally. Smith said the effort was "building a new market for access to the internet, for the use of the cloud, for the power of AI, the ability to harness data. All of these things connect with our business."

An anonymous reader quotes a report from KrebsOnSecurity: On Dec. 10, 2022, the relatively new cybercrime forum Breached featured a bombshell new sales thread: The user database for InfraGard, including names and contact information for tens of thousands of InfraGard members. The FBI's InfraGard program is supposed to be a vetted Who's Who of key people in private sector roles involving both cyber and physical security at companies that manage most of the nation's critical infrastructures -- including drinking water and power utilities, communications and financial services firms, transportation and manufacturing companies, healthcare providers, and nuclear energy firms. "InfraGard connects critical infrastructure owners, operators, and stakeholders with the FBI to provide education, networking, and information-sharing on security threats and risks," the FBI's InfraGard fact sheet reads.

KrebsOnSecurity contacted the seller of the InfraGard database, a Breached forum member who uses the handle "USDoD" and whose avatar is the seal of the U.S. Department of Defense. USDoD said they gained access to the FBI's InfraGard system by applying for a new account using the name, Social Security Number, date of birth and other personal details of a chief executive officer at a company that was highly likely to be granted InfraGard membership. The CEO in question -- currently the head of a major U.S. financial corporation that has a direct impact on the creditworthiness of most Americans -- did not respond to requests for comment. USDoD told KrebsOnSecurity their phony application was submitted in November in the CEO's name, and that the application included a contact email address that they controlled -- but also the CEO's real mobile phone number. "When you register they said that to be approved can take at least three months," USDoD said. "I wasn't expected to be approve[d]." But USDoD said that in early December, their email address in the name of the CEO received a reply saying the application had been approved. While the FBI's InfraGard system requires multi-factor authentication by default, users can choose between receiving a one-time code via SMS or email. "If it was only the phone I will be in [a] bad situation," USDoD said. "Because I used the person['s] phone that I'm impersonating."

USDoD said the InfraGard user data was made easily available via an Application Programming Interface (API) that is built into several key components of the website that help InfraGard members connect and communicate with each other. USDoD said after their InfraGard membership was approved, they asked a friend to code a script in Python to query that API and retrieve all available InfraGard user data. "InfraGard is a social media intelligence hub for high profile persons," USDoD said. "They even got [a] forum to discuss things." USDoD acknowledged that their $50,000 asking price for the InfraGard database may be a tad high, given that it is a fairly basic list of people who are already very security-conscious. Also, only about half of the user accounts contain an email address, and most of the other database fields -- like Social Security Number and Date of Birth -- are completely empty. [...] While the data exposed by the infiltration at InfraGard may be minimal, the user data might not have been the true end game for the intruders. USDoD said they were hoping the imposter account would last long enough for them to finish sending direct messages as the CEO to other executives using the InfraGuard messaging portal.

After almost a decade of running the operation, Meta has shut down Facebook Connectivity. From a report: Meta, formerly Facebook, confirmed to Light Reading it would fold what is now called Meta Connectivity into two other groups within the company: "Infrastructure" and "Central Products." The moves make sense considering Meta's "Infrastructure" team handles the company's work in areas such as subsea cabling. The action will not affect Meta's participation in the Telecom Infra Project (TIP), which it helped to found in 2016. That group continues to develop open and disaggregated standards for various telecom technologies.

CNBC reports: Chinese technology giant Huawei said Friday it will license its 5G technology to rival handset maker Oppo as it looks to unlock a new revenue stream after its smartphone business was crushed by U.S. sanctions....

Huawei has a massive portfolio of over 100,000 patents globally. It is one of the top patent holders in 5G technology, which is next-generation ultra-fast mobile internet seen as key to underpinning future industries such as artificial intelligence and autonomous cars.... The company previously stated that it expected to earn revenue of $1.2 billion to $1.3 billion from licensing its intellectual property between 2019 to 2021. Huawei said that it met its intellectual property revenue expectations for 2021, but did not provide a figure.

The day before FTX filed for bankruptcy, founder Sam Bankman-Fried received an "alarmed" text message from Binance CEO Changpeng Zhao, reports the New York Times: Mr. Zhao was concerned that Mr. Bankman-Fried was orchestrating crypto trades that could send the industry into a meltdown. "Stop now, don't cause more damage," Mr. Zhao wrote in a group chat with Mr. Bankman-Fried and other crypto executives on Nov. 10. "The more damage you do now, the more jail time." FTX and its sister hedge fund, Alameda Research, had just collapsed after a run on deposits exposed an $8 billion hole in the exchange's accounts. The implosion unleashed a crypto crisis, as firms with ties to FTX teetered on the brink of bankruptcy, calling the future of the entire industry into question.

The series of about a dozen group texts between Mr. Zhao and Mr. Bankman-Fried on Nov. 10, which were obtained by The New York Times, show that key crypto leaders feared that the situation could get even worse. And their frantic communications offer a rare glimpse into the unusual way business is conducted behind the scenes in the industry, with at least three top officials from rival companies exchanging messages in a group chat on the encrypted messaging app Signal. The texts also show that industry leaders were acutely aware that the actions of a single firm or fluctuations in the value of one virtual currency could destabilize the whole industry. The exchanges became increasingly tense as Mr. Bankman-Fried and Mr. Zhao traded barbs.

Earlier that week, Mr. Zhao had agreed to buy FTX and save the exchange, before backing out of the deal. In the Nov. 10 texts, he appeared certain that FTX would not survive, and concerned that it could bring the rest of the industry down with it.... In the Nov. 10 texts, Mr. Zhao specifically accused Mr. Bankman-Fried of using his hedge fund to drive down the price of Tether, a so-called stablecoin whose price is designed to remain at $1. According to messages seen by The Times and people familiar with the matter, the group chat included several other prominent crypto executives, including Jesse Powell, a founder of the crypto exchange Kraken, and Paolo Ardoino, the chief technology officer of Tether, the company that issues the stablecoin of the same name.

Tether is a linchpin of crypto trading worldwide, commonly used by digital asset enthusiasts to conduct transactions. Industry insiders have long feared that if Tether's price fell, it would cause a domino effect that might bring the industry to its knees. (Tether ultimately did not end up losing its $1 peg.)
30-year-old Bankman-Fried told the Times that Mr. Zhao's claims were "absurd.... Trades of that size would not make a material impact on Tether's pricing, and to my knowledge neither myself nor Alameda has ever attempted to intentionally depeg Tether or any other stablecoins... I have made a number of mistakes over the past year but this is not one of them."

A spokeswoman for Tether told the Times they'd "demonstrated its resilience to attacks," adding that FTX's actions "don't reflect the ethos and commitment of an entire industry."

An anonymous reader quotes a report from Techdirt: "In an enormous breakthrough for those seeking transparency and accountability to the shadowy surveillance industry, the Swiss Government has been forced to publish the list of export licenses for surveillance technologies and other equipment, including details of their cost and destination," [reports The Unwanted Witness.] "The decision by the Federal Information and Data Protection Commissioner comes on the heels of consistent pressure from Privacy International, Swiss journalists, and several Members of Parliament on policymakers, government officials, and companies in Switzerland over the past year and a half. The commissioner's decision was the result of a FOI challenge filed against the State Secretariat for Economic Affairs (SECO) for its refusal to reveal information regarding the destination of the pending exports for surveillance technologies."

The beneficiary of this release by SECO is, of course, everyone who's interested in government accountability and transparency, especially when it involves an area of government work that tends to shrouded in often impenetrable secrecy. The most direct beneficiary -- Swiss news agency Tagblatt -- has plenty to say about the release of this information, including how much SECO simply did not want to reveal the countries Swiss surveillance tech providers sell to. (The following was translated by Google Translate, so apologies for the clunky English.) The Seco does not act entirely voluntarily: Our newspaper only received the list after it requested access to the administration in 2013 based on the principle of transparency. At the end of 2014, the federal data protection officer recommended granting access, although Seco wanted to refuse this. [The Data Protection Commissioner] picks [Seco's] arguments to pieces. It didn't even provide a minimal justification. But that's not all: Seco was unable to prove why the announcement of the recipients was affecting Switzerland's foreign policy relations.

The technology these countries acquired from Swiss tech purveyors are IMSI catchers -- cell tower spoofers capable of forcing all phones in the area to connect to it so investigators can locate sought devices or (if enabled) intercept communications. Twenty-one export licenses were issued in 2014, with the list encompassing a long list of human rights abusers. [...] The approved list for full licenses doesn't exactly suggest a whole lot of discretion from Swiss IMSI manufacturers. Nor does it say much about SECO, which allowed these sales (and demonstrations) to happen. The list of denied license applications (which includes Russia, Yemen, and Turkmenistan) suggests some restraint by SECO. But the fact that Swiss spy tech makers requested the licenses shows they are just as willing to sell to terrible governments as other surveillance tech purveyors who've made international headlines repeatedly. (Yes, we're talking about Israel's NSO Group. And, to a lesser extent, Italy's Hacking Team.) "And it's not just IMSI catchers," says Techdirt's Tim Cushing. "Plenty of human rights violators were on the list of potential customers for internet surveillance tech sold by Swiss companies. That those violators were unable to access this tech is largely due to the Snowden leaks, which forced a lot of countries to look more closely at their own spying efforts and surveillance contractors."

"That's a pretty nasty group of customers to want to sell to. And that the companies appear to have been deterred by a series of leaks suggests they were more motivated by potential backlash from the Snowden revelations, rather than any sense of responsibility or propriety."

In closing, Cushing writes: "You don't have to sell to the worst governments in the world. But, like far too many other surveillance tech purveyors, Swiss companies seemed more than willing to sell powerful spy tech to governments they knew with certainty would abuse it."

U.S. telecom providers, under a new FCC order, will have to take "all necessary steps" to block calls from a shady communication company engaged in a mass robocall scam preying on people seeking student loan forgiveness. From a report: The scammer company, called Urth Access, LLC, would reportedly spam users with calls urging them to forfeit their personal information or pay a fee in order to receive up to around $10,000 in student loan debt relief. Many of the scams reportedly referred to the Biden Administration's student loan forgiveness plan to give the messages a semblance of credibility. Though numerous fraudsters took part in the scam, an investigation conducted by the FCC and its private partner YouMail said Urth Access stood apart as the largest, accounting for around 40% of the robocalls in October.

"Scam robocalls try to pull from the headlines to confuse consumers," FCC Commissioner Jessica Rosenworcel said in a statement. "Trying to take advantage of people who want help paying off their student loans. Today we're cutting these scammers off so they can't use efforts to provide student loan debt relief as cover for fraud." The new order asks telecommunications companies to cease accepting phone calls coming from Urath Access, or report efforts they are making to limit Urath's reach in an effort to shut down the scams.

A US government probe into how many mobile phones belonging to diplomats and government workers have been infected with spyware could "easily run to the hundreds," according to a member of the House Intelligence Committee. From a report: Jim Himes, a Democrat representative from Connecticut, told Bloomberg News that the Biden administration is "just beginning to get an inkling of the magnitude of the problem." He predicted that the probe could find that spyware was used against "hundreds" of federal personnel in "multiple countries." Himes was a lead author of a September letter calling on the federal government to better protect US diplomats overseas from spyware and publicly detail instances of such abuse. He received a letter last month written jointly by the Departments of Commerce and State that confirmed commercial spyware has targeted US government personnel serving overseas.

"Spyware technology has sort of moved beyond our ability to ensure that the communications of our diplomats are protected, or even the locations and contacts and photographs of our diplomats are protected. And that's obviously a huge vulnerability," he said. The official confirmation follows a Reuters report from last year that the iPhones of at least nine State Department employees were hacked with spyware developed by Israel's NSO Group. The employees were either based in Uganda or focused on issues related to the country, according to the report.

A three-year-old NASA satellite lost touch with ground controllers two weeks ago and is now wandering through low Earth orbit without supervision. Sadly, the space agency fears the worst. Gizmodo reports: NASA's Ionospheric Connection Explorer (ICON) mission has not communicated with ground stations since November 25 due to some sort of glitch the space agency is yet to identify, NASA wrote in a blog post on Wednesday. The spacecraft is equipped with an onboard command loss timer that's designed to reset ICON in the event that contact is lost for eight days, but the reset seemingly did not work as the team was still unable to communicate with the spacecraft on December 5 after the power cycle was complete.

Although silent, the ICON spacecraft is still intact. NASA used the Department of Defense's Space Surveillance Network to confirm that ICON is still out there in one piece, according to the space agency. But communication is obviously key for orbiting spacecraft, as it allows the mission team to send commands to satellites and also receive data through downlinked signals. "The ICON mission team is working to troubleshoot the issue and has narrowed the cause of the communication loss to problems within the avionics or radio-frequency communications subsystems," NASA wrote in the blog post. "The team is currently unable to determine the health of the spacecraft, and the lack of a downlink signal could be indicative of a system failure." Oof, that doesn't sound good.

The newly elected government in Pacific island nation of Vanuatu encountered a serious problem from the very first day of its term on Nov. 6 -- no one could use their government email accounts. But then the situation got worse. Much worse. From a report: Officials could not use any government computer services, from renewing a drivers' license to paying taxes or accessing medical and emergency information. They were forced to turn to 20th century technology -- pen and paper. That's a major problem in a nation where the population of around 320,000 people is distributed across dozens of islands north of New Zealand. "Imagine if in the U.S. or the U.K. or Australia, a new government has started and there's a whole changeover ... you can't even allocate email addresses to your new staff, you can't coordinate what's happening between ministers," Glen Craig, managing partner of the consulting firm Pacific Advisory, told NPR in a phone interview.

"We're the first country in the world that this has happened to. ... It's not a good time in Vanuatu, I can assure you," continued Craig, who also serves as chairman of the Vanuatu Business Resilience Council. After more than three weeks of working on the problem, Prime Minister Alatoi Ishmael Kalsakau told local news outlets Wednesday that services were 70 percent restored. However, the disruption continues. Vanuatu's government officials first discovered suspicious activity on their networks, many of which are centrally connected, on Nov. 6. They revealed the breach to local media several days later, but have so far been fairly tight lipped about the extent of the damage, the possible culprits, and what's being done to recover service. Some sources have suggested the attack was ransomware, in which cybercriminals break in and take data hostage in exchange for payment, though the government has not officially confirmed whether that's the case or addressed whether a ransom payment was made.