Tag: privacy

Japan relaxes privacy laws to make itself the ‘easiest country to develop AI’

Apr 8, 2026 11:52 PM

Tags: ai, country, data, law, privacy

Opting out of personal data use won’t be an option because Minister says that’s a ‘very big obstacle’ to AI adoption First seen on theregister.com Jump to article: www.theregister.com/2026/04/08/japan_privacy_law_changes_ai/
What we learned about TEE security from auditing WhatsApp’s Private Inference

Apr 7, 2026 2:50 PM

Tags: access, ai, attack, backdoor, breach, computing, control, data, encryption, exploit, firmware, flaw, Hardware, identity, malicious, nvidia, office, privacy, side-channel, software, threat, update, vulnerability

WhatsApp’s new “Private Inference” feature represents one of the most ambitious attempts to combine end-to-end encryption with AI-powered capabilities, such as message summarization. To make this possible, Meta built a system that processes encrypted user messages inside trusted execution environments (TEEs), secure hardware enclaves designed so that not even Meta can access the plaintext. Our…
GPUBreach Attack Could Lead to Full System Takeover and Root Shell Access

Apr 7, 2026 2:50 PM

Tags: access, attack, cyber, exploit, Hardware, privacy, vulnerability

A newly discovered vulnerability dubbed >>GPUBreach<< demonstrates that GPU-based Rowhammer attacks can now achieve complete system compromise. Scheduled for presentation at the IEEE Symposium on Security & Privacy in 2026, University of Toronto researchers revealed how manipulating GPU memory can lead to a full CPU root shell. Most alarmingly, this exploit successfully bypasses standard hardware…
Big tech vows to continue CSAM scanning in Europe despite expiration of law allowing it

Apr 6, 2026 9:52 PM

Tags: google, law, microsoft, privacy

Microsoft, Google, Meta and Snapchat released a statement on Friday saying they “reaffirm their continued commitment to protecting children and preserving privacy, and will continue to take voluntary action” to complete the scans. First seen on therecord.media Jump to article: therecord.media/big-tech-vows-to-continue-csam-scanning
Authentication is broken: Here’s how security leaders can actually fix it

Apr 6, 2026 12:51 PM

Tags: access, attack, authentication, backup, business, communications, control, credentials, cryptography, data, exploit, fido, firmware, Hardware, healthcare, identity, login, mfa, microsoft, okta, passkey, privacy, resilience, risk, soc, technology, update, windows

Sector snapshots: Where it breaks (and why that matters): Healthcare. Clinicians need tap and go speed with zero tolerance for downtime. One large hospital attempted to pair advanced HID SEOS credentials, which use privacy-preserving randomized IDs, with a clinical SSO platform that expects static IDs for user recognition. This architectural mismatch forced a choice between…
Meta YouTube Found Negligent: A Turning Point for Big Tech?

Apr 6, 2026 8:51 AM

Tags: privacy

A landmark jury verdict has found Meta and YouTube negligent in a social media addiction case, raising major questions about platform accountability and legal protections under Section 230. This episode covers the details of the case, why the ruling is significant, and what it could mean for the future of social media, privacy, and cybersecurity….…
BrowserGate: LinkedIn Tracks 6,000+ Browser Extensions on Users’ PCs

Apr 5, 2026 6:51 PM

Tags: data, linkedin, privacy

LinkedIn is accused in the BrowserGate report of tracking 6,000+ browser extensions on users’ PCs, raising concerns over privacy and data collection practices. First seen on hackread.com Jump to article: hackread.com/browsergate-linkedin-track-browser-extensions-user-pc/
Inconsistent Privacy Labels Don’t Tell Users What They Are Getting

Apr 4, 2026 12:51 AM

Tags: data, mobile, privacy

Data privacy labels are a great idea for mobile apps, but the current versions just aren’t good enough. First seen on darkreading.com Jump to article: www.darkreading.com/data-privacy/inconsistent-privacy-labels-not-enough
prompted 2026 Evaluating Threats Automating Defense At Google

Apr 3, 2026 6:52 PM

Tags: ai, defense, google, privacy, threat

Author, Creator & Presenter: Heather Adkins, VP of Security Engineering, Google & Four Flynn, VP Security and Privacy, Google Our thanks to [un]prompted for publishing their Creators, Authors and Presenter’s outstanding [un]prompted 2026 AI Security Practitioner content on the Organizations’) YouTube Channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/unprompted-2026-evaluating-threats-automating-defense-at-google/
When Your Own Eyes Turn Against You: How Compromised Security Cameras and IoT/OT Devices Become Tools for Your Attackers

Apr 3, 2026 1:51 AM

Tags: access, advisory, attack, botnet, cctv, china, cloud, control, corporate, credentials, cyber, cyberattack, cybersecurity, dark-web, data, data-breach, defense, detection, endpoint, espionage, exploit, finance, firmware, flaw, government, group, hacking, healthcare, infrastructure, intelligence, international, Internet, iot, iran, law, linux, malware, network, office, privacy, ransomware, resilience, risk, russia, service, supply-chain, technology, threat, tool, ukraine, unauthorized, update, vpn, vulnerability, warfare, windows, zero-day, zero-trust

TL;DR Security cameras, IoT, and OT devices that are meant to protect us, are easily compromised and turned against defenders, enabling nation-state reconnaissance (Iranian hacks on Hikvision/Dahua cameras during strikes, Russian webcam abuse in Ukraine), espionage via exposed live feeds, ransomware pivots (Akira group bypassing EDR), massive botnets (Mirai/Eleven11bot), and physical disruption. Structural weaknesses like…
Malwarebytes Privacy VPN receives full third-party audit

Apr 2, 2026 5:50 PM

Tags: privacy, vpn

We commissioned a third-party audit for the infrastructure behind our VPNs. Here are the results. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/malwarebytes-privacy-vpn-receives-full-third-party-audit/
Zero-Knowledge Proofs: How to Prove You Know a Secret Without Revealing the Secret

Apr 1, 2026 6:30 PM

Tags: authentication, blockchain, privacy

The most powerful cryptographic primitive you’ve never heard of. Zero-knowledge proofs prove you know something without revealing what you know, and they’re quietly revolutionizing privacy, authentication, and blockchain technology. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/zero-knowledge-proofs-how-to-prove-you-know-a-secret-without-revealing-the-secret/
Zero-Knowledge Proofs: How to Prove You Know a Secret Without Revealing the Secret

Apr 1, 2026 6:30 PM

Tags: authentication, blockchain, privacy

The most powerful cryptographic primitive you’ve never heard of. Zero-knowledge proofs prove you know something without revealing what you know, and they’re quietly revolutionizing privacy, authentication, and blockchain technology. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/zero-knowledge-proofs-how-to-prove-you-know-a-secret-without-revealing-the-secret/
Microsoft Teams to Improve Privacy With EXIF Data Removal Feature

Apr 1, 2026 3:30 PM

Tags: cyber, cybersecurity, data, microsoft, privacy, update

Microsoft is rolling out a wave of privacy and security updates for Microsoft Teams, headlining with a critical new feature that automatically removes EXIF metadata from shared images. These upcoming changes are designed to protect user privacy by default, streamline biometric data management, and enforce modern browser security standards across the platform. For cybersecurity professionals…
FBI warns against using Chinese mobile apps due to privacy risks

Apr 1, 2026 2:29 PM

Tags: china, mobile, privacy, risk

The U.S. Federal Bureau of Investigation (FBI) warned Americans against using foreign-developed mobile applications, particularly those created by Chinese developers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fbi-warns-against-using-chinese-mobile-apps-over-to-data-security-risks/
Free VPNs leak your data while claiming privacy

Apr 1, 2026 10:34 AM

Tags: android, data, leak, privacy, vpn

Most free Android VPNs track users, request dangerous permissions, and connect to risky servers, privacy comes at a hidden cost. Free VPN apps are some of the most popular downloads on Android, promising privacy at no cost. But the reality is far from what they advertise. Most users tap “install” without a second thought, unaware…
Proton launches new “Meet” privacy-focused conferencing platform

Apr 1, 2026 1:30 AM

Tags: google, microsoft, privacy, service

Proton has announced a new video conferencing service named Meet and positioned it as a privacy-focused alternative to mainstream services like Google Meet, Zoom, and Microsoft Teams. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/proton-launches-new-meet-privacy-focused-conferencing-platform/
Proton Launches Encrypted Video Conferencing and Unified Workspace to Take On Google and Microsoft

Mar 31, 2026 3:29 PM

Tags: google, microsoft, privacy

Swiss privacy company Proton has today announced the simultaneous launch of Proton Workspace and Proton Meet, its most significant expansion yet into the enterprise productivity market and a direct challenge to the dominance of Google Workspace and Microsoft 365. The double launch marks a strategic pivot for the Geneva-based firm, which has built a user…
California Gets Serious About Regulation (Again)

Mar 31, 2026 11:29 AM

Tags: cybersecurity, privacy, regulation, risk, risk-assessment

California’s privacy regime has evolved. As of January 1, 2026, the CCPA/CPRA now mandates risk assessments, automated decision-making (AI) oversight, and independent cybersecurity audits. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/california-gets-serious-about-regulation-again/
Fortinet hit by another exploited cybersecurity flaw

Mar 31, 2026 5:30 AM

Tags: access, advisory, ai, application-security, attack, authentication, control, credentials, cybersecurity, exploit, firewall, flaw, fortinet, group, hacking, infrastructure, injection, Internet, open-source, privacy, ransomware, remote-code-execution, risk, service, sql, theft, threat, tool, unauthorized, update, vulnerability, zero-day, zero-trust

SQL injection a top app security issue: Beauceron’s Shipley underscored the dangers of SQL injection, pointing out that the vulnerability was the first on the OWASP top 10 application security risks when the open source foundation was launched more than 20 years ago. The attack type has remained in the top spot for most of…
Apple will hide your email address from apps and websites, but not cops

Mar 30, 2026 6:30 PM

Tags: apple, email, privacy

Demands for Apple customer records by federal agents in recent months underscore the privacy limitations of email. First seen on techcrunch.com Jump to article: techcrunch.com/2026/03/30/apple-will-hide-your-email-address-from-apps-and-websites-but-not-cops/
New CCPA Rules Turn Your Privacy Policy into a Liability

Mar 30, 2026 3:30 PM

Tags: compliance, privacy

California’s revised CCPA rules took effect on January 1, 2026, and they expose a gap that most compliance teams have been ignoring. After you’ve updated… First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/new-ccpa-rules-turn-your-privacy-policy-into-a-liability/
Android 17 tweaks location privacy with one-time access

Mar 30, 2026 1:29 PM

Tags: access, android, control, data, google, privacy, tool

Google introduced a suite of location privacy features in Android 17 Beta 3 to give users more control and provide developers with tools for data minimization and product … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/30/android-location-privacy-features-control/
The Hidden Tracking Risk Inside Your Tires

Mar 30, 2026 7:30 AM

Tags: monitoring, privacy, risk

In this episode, Tom Eston and co-host Scott Wright discuss research showing that Tire Pressure Monitoring Systems (TPMS) can create privacy risks because the sensors broadcast unencrypted, uniquely identifying wireless signals that could be used to track vehicles. They reference a 10-week study by researchers at IMDEA in Madrid that collected about 6 million signals……
How to ensure confident data privacy with NHIs?

Mar 27, 2026 11:30 PM

Tags: breach, cloud, data, privacy

Are Non-Human Identities the Overlooked Guardians of Data Privacy? Where data breaches are as frequent as the morning sun, ensuring data privacy is paramount. Where businesses increasingly rely on cloud environments, new security paradigms have emerged, with Non-Human Identities (NHIs) at the forefront. But what exactly are NHIs, and how do they ensure data privacy?……
Apple’s Email Privacy Tool Tested in FBI Threat Case, Exposing Limits of Anonymity

Mar 27, 2026 10:30 PM

Tags: apple, email, privacy, threat, tool

Apple’s Hide My Email feature, long promoted as a privacy safeguard for consumers, has come under scrutiny following a federal investigation that revealed how easily anonymized identities can be uncovered through legal channels. Newly disclosed court records show that Apple provided authorities with account information tied to an anonymous email address used to send a..…
The CISO’s guide to responding to shadow AI

Mar 26, 2026 8:47 PM

Tags: ai, breach, business, ciso, cybersecurity, data, governance, guide, mitigation, privacy, risk, strategy, technology, tool, training, update

Understand why AI is being used: If CISOs want to manage shadow AI effectively, they need to understand why it keeps popping up. The immediate reaction may be to shut down the use of shadow AI, but there must be more to the response than that.”Our focus is understanding why they’re using it, educating them…
Uncover prompt injection, insider threats with the Tenable One Model Refusal Detection

Mar 26, 2026 7:47 PM

Tags: access, ai, attack, business, chatgpt, corporate, cyber, cybersecurity, data, data-breach, defense, detection, google, group, injection, LLM, malicious, monitoring, openai, privacy, risk, strategy, threat, unauthorized

Tenable One’s new Model Refusal Detection turns an LLM’s refusal to execute a risky or suspicious prompt into a high-fidelity early warning signal. It helps you uncover and stop prompt injection attacks, insider threats, and other risky user behaviors before they escalate into a breach. Key takeaways: AI has shifted traditional cyber detection methods away…
4 Best Free VPNs in 2026

Mar 25, 2026 4:47 PM

Tags: guide, privacy, vpn

Looking for the best free VPNs? Check out our guide to find the most reliable and secure options for protecting your online privacy that won’t break the bank. The post 4 Best Free VPNs in 2026 appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/best-free-vpns/
Sen. Wyden Warns of Another Section 702 Abuse

Mar 25, 2026 2:47 PM

Tags: law, privacy

Sen. Ron Wyden is warning us of an abuse of Section 702: Wyden took to the Senate floor to deliver a lengthy speech, ostensibly about the since approved (with support of many Democrats) nomination of Joshua Rudd to lead the NSA. Wyden was protesting that nomination, but in the context of Rudd being unwilling to…