Privacy professionals
Privacy professionals

fromThe Hacker News

1 hour ago

Hidden Passenger? How Taboola Routes Logged-In Banking Sessions to Temu

A bank's Taboola pixel redirected users to a Temu tracking endpoint without consent or security controls detecting the violation.

Nightclub Giant RCI Hospitality Reports Data Breach

RCI Hospitality Holdings reported a cybersecurity incident exposing sensitive personal information of independent contractors due to an IDOR vulnerability.

Booking.com Says Hackers Accessed User Information

Hackers may have accessed customer information on Booking.com, but accounts have not been breached.

fromFortune

First they went after medtech, then Kash Patel. Iranian hackers' next target is likely 'low-hanging fruit' in water, energy, and tourism, experts say | Fortune

Iran-linked hackers are targeting high-profile figures and critical infrastructure in the U.S. and Israel to sow disruption.

Britons warned about Russian hackers targeting internet routers for espionage

Russian hackers exploit internet routers for espionage, targeting users' credentials and devices on home networks.

NHS Scotland-linked domains push pr0n and illegal streams

Scottish healthcare provider domains have been hijacked to promote adult content and illegal sports streams.

fromThe Hacker News

1 hour ago

Hidden Passenger? How Taboola Routes Logged-In Banking Sessions to Temu

A bank's Taboola pixel redirected users to a Temu tracking endpoint without consent or security controls detecting the violation.

Nightclub Giant RCI Hospitality Reports Data Breach

RCI Hospitality Holdings reported a cybersecurity incident exposing sensitive personal information of independent contractors due to an IDOR vulnerability.

Booking.com Says Hackers Accessed User Information

Hackers may have accessed customer information on Booking.com, but accounts have not been breached.

fromFortune

First they went after medtech, then Kash Patel. Iranian hackers' next target is likely 'low-hanging fruit' in water, energy, and tourism, experts say | Fortune

Iran-linked hackers are targeting high-profile figures and critical infrastructure in the U.S. and Israel to sow disruption.

Britons warned about Russian hackers targeting internet routers for espionage

Russian hackers exploit internet routers for espionage, targeting users' credentials and devices on home networks.

NHS Scotland-linked domains push pr0n and illegal streams

Scottish healthcare provider domains have been hijacked to promote adult content and illegal sports streams.

more#cybersecurity

#security

34 minutes ago

Exclusive: Fashion retailer Express left customers' personal data and order details exposed to the internet

Express fixed a security flaw that exposed customer order details and personal information on its website.

The Hidden ROI of Visibility: Better Decisions, Better Behavior, Better Security

Visibility through security measures can deter undesirable behavior and enhance safety in challenging situations.

Sticky-note security turned gym into hall of '80s horrors

Leaving default security credentials exposed can lead to unauthorized access and potential security risks.

34 minutes ago

Exclusive: Fashion retailer Express left customers' personal data and order details exposed to the internet

Express fixed a security flaw that exposed customer order details and personal information on its website.

The Hidden ROI of Visibility: Better Decisions, Better Behavior, Better Security

Visibility through security measures can deter undesirable behavior and enhance safety in challenging situations.

Sticky-note security turned gym into hall of '80s horrors

Leaving default security credentials exposed can lead to unauthorized access and potential security risks.

more#security

fromEngadget

1 hour ago

Anthropic will ask Claude users to verify their identities 'for a few use cases'

Anthropic is implementing identity verification for certain capabilities on Claude, requiring users to provide a government-issued ID and a selfie.

16 hours ago

Child victims of online sexual abuse in UK inadequately protected, review finds

Child victims of online sexual abuse face increased risks due to police forces' inability to manage rising cases and inadequate protective measures.

#data-privacy

A data removal service helped me reclaim my privacy - see if you need one, too

Personal data is collected and sold by brokers, making removal services essential for protecting sensitive information.

Google Broke Its Promise to Me. Now ICE Has My Data.

Google provided user data to ICE without notification, violating a promise to users.

A data removal service helped me reclaim my privacy - see if you need one, too

Personal data is collected and sold by brokers, making removal services essential for protecting sensitive information.

Google Broke Its Promise to Me. Now ICE Has My Data.

Google provided user data to ICE without notification, violating a promise to users.

more#data-privacy

18 hours ago

Comcast's $117.5M Breach Settlement: Up to 30M People May Qualify

Comcast will pay $117.5 million in a class action settlement due to a 2023 cybersecurity incident exposing customer data.

#data-breach

Booking.com customers warned of 'reservation hijacking' after hack

A data breach at Booking.com has led to increased scams known as 'reservation hijacks' targeting customers.

Booking.com Hack Exposes Customer Data, Sparks Travel Scam Fears

Hackers breached Booking.com, exposing personal data of customers, including names, addresses, and booking details, raising concerns about privacy and security.

fromTechzine Global

Booking.com confirms data breach, but is tight-lipped about details

A data breach at Booking.com exposed customer bookings, with unauthorized access to personal information, though the extent and timing remain unclear.

Booking.com warns of possible reservation data exposure

Booking.com warns customers of potential data exposure due to unauthorized access, affecting reservation details but not financial information.

Booking.com confirms hackers accessed customers' data | TechCrunch

Hackers accessed Booking.com customers' personal data, including names, emails, and booking details, prompting notifications to affected users.

Booking.com warns customers of hack that exposed their data

Booking.com experienced a data breach, allowing unauthorized access to customer booking information, but financial data remained secure.

Booking.com customers warned of 'reservation hijacking' after hack

A data breach at Booking.com has led to increased scams known as 'reservation hijacks' targeting customers.

Booking.com Hack Exposes Customer Data, Sparks Travel Scam Fears

Hackers breached Booking.com, exposing personal data of customers, including names, addresses, and booking details, raising concerns about privacy and security.

fromTechzine Global

Booking.com confirms data breach, but is tight-lipped about details

A data breach at Booking.com exposed customer bookings, with unauthorized access to personal information, though the extent and timing remain unclear.

Booking.com warns of possible reservation data exposure

Booking.com warns customers of potential data exposure due to unauthorized access, affecting reservation details but not financial information.

Booking.com confirms hackers accessed customers' data | TechCrunch

Hackers accessed Booking.com customers' personal data, including names, emails, and booking details, prompting notifications to affected users.

Booking.com warns customers of hack that exposed their data

Booking.com experienced a data breach, allowing unauthorized access to customer booking information, but financial data remained secure.

Privacy professionals

Cookies, Whether You Want Them Or Not; Feeding The 'Industry Plants' | AdExchanger

Microsoft's cookie policies raise concerns about user privacy despite opting out of third-party data sharing.

fromKqed

What Is the Point of California's Privacy Laws if Big Tech Ignores Them? | KQED

Google's non-compliance with the Global Privacy Control opt-out signal is evident in network traffic.

fromAdExchanger

Cookies, Whether You Want Them Or Not; Feeding The 'Industry Plants' | AdExchanger

Microsoft's cookie policies raise concerns about user privacy despite opting out of third-party data sharing.

fromKqed

What Is the Point of California's Privacy Laws if Big Tech Ignores Them? | KQED

Google's non-compliance with the Global Privacy Control opt-out signal is evident in network traffic.

more#privacy

fromSan Jose Spotlight

16 hours ago

Another lawsuit targets San Jose's license plate cameras - San Jose Spotlight

San Jose residents filed a federal lawsuit against the city's automated license plate reader program, claiming it violates Fourth Amendment rights.

#google

fromSearch Engine Roundtable

Google May Use Spam Report Submissions For Manual Actions

Google now uses spam report submissions to take manual action against violations of its spam policies.

Privacy advocates want Google to stop handing consumer data over to ICE

Google is being investigated for allegedly failing to notify users before disclosing their data to law enforcement.

Google $135M Settlement: Millions of Android Users May Qualify for Payout

A class action lawsuit against Google over unauthorized data use on Android may result in $135 million in payouts for millions of users.

Android users can get up to $100 each from this class action suit - see if you're eligible

A lawsuit claims Google transmitted user data without permission, affecting Android users since 2017, with a settlement fund of $135 million.

fromSearch Engine Roundtable

Google May Use Spam Report Submissions For Manual Actions

Google now uses spam report submissions to take manual action against violations of its spam policies.

Privacy advocates want Google to stop handing consumer data over to ICE

Google is being investigated for allegedly failing to notify users before disclosing their data to law enforcement.

Google $135M Settlement: Millions of Android Users May Qualify for Payout

A class action lawsuit against Google over unauthorized data use on Android may result in $135 million in payouts for millions of users.

Android users can get up to $100 each from this class action suit - see if you're eligible

A lawsuit claims Google transmitted user data without permission, affecting Android users since 2017, with a settlement fund of $135 million.

more#google

#fisa

22 hours ago

House readies vote to renew FISA 702 without a warrant amendment

The House is set to reauthorize Section 702 of the FISA without a warrant requirement, despite concerns over privacy and Fourth Amendment rights.

We Need You: Our Privacy Cannot Afford a Clean Extension of Section 702

Section 702 of FISA requires substantial reforms before reauthorization to protect privacy rights and address compliance issues.

22 hours ago

House readies vote to renew FISA 702 without a warrant amendment

The House is set to reauthorize Section 702 of the FISA without a warrant requirement, despite concerns over privacy and Fourth Amendment rights.

We Need You: Our Privacy Cannot Afford a Clean Extension of Section 702

Section 702 of FISA requires substantial reforms before reauthorization to protect privacy rights and address compliance issues.

more#fisa

from404 Media

Google, Microsoft, Meta All Tracking You Even When You Opt Out, According to an Independent Audit

Microsoft, Meta, and Google may be violating California privacy laws by failing to honor user opt-out requests for ad cookies.

#section-702

fromThe Cipher Brief

The Case for Reauthorizing Section 702

Section 702 is essential for national security, enabling the disruption of cyberattacks and tracking terrorist plots without targeting Americans.

Former national security officials urge Congress to renew Section 702 before expiration

Former national security officials urge Congress to renew Section 702 of the FISA before it expires, emphasizing its importance for national security.

fromThe Cipher Brief

The Case for Reauthorizing Section 702

Section 702 is essential for national security, enabling the disruption of cyberattacks and tracking terrorist plots without targeting Americans.

Former national security officials urge Congress to renew Section 702 before expiration

Former national security officials urge Congress to renew Section 702 of the FISA before it expires, emphasizing its importance for national security.

more#section-702

Palantir defends its record as MPs demand more scrutiny of data use

Palantir defends its NHS data contracts amid scrutiny, emphasizing its role in integrating fragmented healthcare systems and ensuring data security.

#openai

Woman Sues OpenAI, Saying ChatGPT Unleashed a Vicious Stalker Against Her and Did Nothing When She Begged for Help

A woman sued OpenAI, claiming ChatGPT exacerbated her stalker's delusions and that the company failed to intervene despite her pleas for help.

Stalking victim sues OpenAI, claims ChatGPT fueled her abuser's delusions and ignored her warnings | TechCrunch

A lawsuit claims OpenAI's technology enabled harassment, as a user allegedly stalked his ex-girlfriend after believing he found a cure for sleep apnea.

Florida AG to probe OpenAI, alleging possible connection to FSU shooting | TechCrunch

Florida Attorney General James Uthmeier is investigating OpenAI for potential harm to minors and national security threats related to its technology.

Florida launches investigation into OpenAI

Florida Attorney General James Uthmeier is investigating OpenAI for public safety and national security risks related to its technology.

Florida AG announces investigation into OpenAI over shooting that allegedly involved ChatGPT | TechCrunch

Florida's Attorney General is investigating OpenAI for ChatGPT's alleged involvement in a deadly shooting at Florida State University.

Woman Sues OpenAI, Saying ChatGPT Unleashed a Vicious Stalker Against Her and Did Nothing When She Begged for Help

A woman sued OpenAI, claiming ChatGPT exacerbated her stalker's delusions and that the company failed to intervene despite her pleas for help.

Stalking victim sues OpenAI, claims ChatGPT fueled her abuser's delusions and ignored her warnings | TechCrunch

A lawsuit claims OpenAI's technology enabled harassment, as a user allegedly stalked his ex-girlfriend after believing he found a cure for sleep apnea.

Florida AG to probe OpenAI, alleging possible connection to FSU shooting | TechCrunch

Florida Attorney General James Uthmeier is investigating OpenAI for potential harm to minors and national security threats related to its technology.

Florida launches investigation into OpenAI

Florida Attorney General James Uthmeier is investigating OpenAI for public safety and national security risks related to its technology.

Florida AG announces investigation into OpenAI over shooting that allegedly involved ChatGPT | TechCrunch

Florida's Attorney General is investigating OpenAI for ChatGPT's alleged involvement in a deadly shooting at Florida State University.

more#openai

fromThe Cipher Brief

Avoiding Another 9/11: 3 Key Reasons to Reauthorize Section 702

Section 702 of the FISA is crucial for U.S. national security and should be reauthorized to prevent unnecessary risks.

fromRoute Fifty

Getting privacy policy right in a competitive digital economy

State and local leaders aim to balance privacy protection with economic competitiveness, as inconsistent privacy laws can hinder business operations and consumer trust.

fromMail Online

Warning to iPhone users over iCloud storage scam exposing bank details

A new email scam targets iPhone users, posing as iCloud notifications to steal personal and banking information.

#meta

Privacy professionals

Huge Group of Experts Warns Meta That Its Pervert Glasses Will Enable Terrible Crimes

Meta employee in London accused of downloading 30,000 private Facebook images

A former Meta employee is under investigation for downloading 30,000 private Facebook images using a program to bypass security checks.

Privacy professionals

Ex-Meta worker investigated for downloading 30,000 private Facebook photos

A former Meta employee is under investigation for downloading 30,000 private Facebook images using a program to bypass security checks.

Privacy professionals

Meta paused its work with AI training startup Mercor after a data breach

Meta has paused its collaboration with Mercor following a data breach at the AI training startup.

Huge Group of Experts Warns Meta That Its Pervert Glasses Will Enable Terrible Crimes

Meta's Ray-Ban AI glasses face backlash for privacy violations and plans for facial recognition technology, prompting outrage from civil rights groups.

Meta employee in London accused of downloading 30,000 private Facebook images

A former Meta employee is under investigation for downloading 30,000 private Facebook images using a program to bypass security checks.

Ex-Meta worker investigated for downloading 30,000 private Facebook photos

A former Meta employee is under investigation for downloading 30,000 private Facebook images using a program to bypass security checks.

Meta paused its work with AI training startup Mercor after a data breach

Meta has paused its collaboration with Mercor following a data breach at the AI training startup.

Privacy professionals

BrowserGate: Claims of LinkedIn 'Spying' Clash With Security Research Findings

fromComputerworld

Privacy professionals

Questions raised about how LinkedIn uses the petabytes of data it collects

BrowserGate: Claims of LinkedIn 'Spying' Clash With Security Research Findings

LinkedIn allegedly scans users' computers to collect data on browser extensions, raising concerns about corporate espionage.

fromComputerworld

Questions raised about how LinkedIn uses the petabytes of data it collects

LinkedIn users should limit identifiable data exposure and treat the platform as potentially hostile until BrowserGate allegations are verified.

more#linkedin

fromEngadget

Meta warned by dozens of organizations that facial recognition on its smart glasses would empower predators

Civil rights organizations urge Meta to abandon facial recognition in smart glasses due to risks of empowering stalkers and predators.

fromKotaku

GTA 6 Hackers Say They Will Release The Breached Data After Ransom Demands Not Met - Kotaku

ShinyHunters plans to publish stolen data from Rockstar after ransom demands were not met.

fromArs Technica

Your tech support company runs scams. Stop-or disguise with more fraud?

Tech Live Connect processed fraudulent charges using real customer data, including names and addresses, to make the charges appear legitimate and maintain a low chargeback ratio.

Privacy professionals

Suspect in Molotov attack on Sam Altman's home linked to AI Discord server

A 20-year-old suspect was arrested for a Molotov cocktail attack on Sam Altman's home, linked to a Discord server critical of AI development.

fromEngadget

The US government wants Reddit to snitch on one of its users through a grand jury

ICE is using a grand jury subpoena to identify a Reddit user who criticized the agency.

Uber and DoorDash have an identity theft problem, and it's costing people on tax day

Uber and DoorDash reported earnings for individuals who claim they never worked for the platforms, leading to a lawsuit over identity verification issues.

fromBloomberglaw

Splintered Video Privacy Rulings Won't Be Fixed by Supreme Court

The Supreme Court's review of the VPPA may clarify the definition of 'consumer' but won't resolve circuit splits on personally identifiable information.

fromFast Company

This iPhone trick lets you use ChatGPT without the privacy risks

Using AI chatbots poses risks to privacy and data security, but Siri can help mask identity when accessing ChatGPT on iPhones.

Judge renews procedures for 702 surveillance program that could soon lapse

The Trump administration's surveillance program under Section 702 was renewed, but concerns were raised about data filtering tools used by intelligence agencies.

fromArs Technica

Dad stuck in support nightmare after teen lied about age on Discord

Discord failed to provide adequate support for a hacked account belonging to a minor, despite knowing the user's age.

fromBloomberglaw

CNN Stuck With Suit Challenging Use of Online Tracking Tools

Lead plaintiff Anthony D'Antonio established he suffered a concrete injury sufficient to establish standing to sue in federal court, according to Judge Victor Marrero.

Privacy professionals

#fintech

fromEntrepreneur

Your Next Buyer Is Googling You Right Now

In 2026, buyers prioritize fintech legitimacy over features, making trust a crucial stage in the decision-making process.

fromSilicon Canals

A money-transfer app stored customer passports on an unencrypted, publicly accessible server for nearly five years - Silicon Canals

Fintech companies face regulatory pressure to collect identity documents but lack enforceable obligations to protect them, leading to data breaches.

fromEntrepreneur

Your Next Buyer Is Googling You Right Now

In 2026, buyers prioritize fintech legitimacy over features, making trust a crucial stage in the decision-making process.

fromSilicon Canals

A money-transfer app stored customer passports on an unencrypted, publicly accessible server for nearly five years - Silicon Canals

Fintech companies face regulatory pressure to collect identity documents but lack enforceable obligations to protect them, leading to data breaches.

more#fintech

fromPsychology Today

Chatbots Can Talk, but Parents Can Connect

GenAI policy and regulatory safeguards for teens are critical but lag behind the rapid development of technology.

fromBloomberglaw

fromwww.independent.co.uk

Instagram Promotes Explicit Content to Teens, Iowa AG Suit Says

Meta Platforms Inc. is being sued for falsely advertising Instagram as safe for teenagers despite harmful content being accessible.

Roblox predator who groomed girl and sent highly sexualised' messages jailed

Carlo Tritta, 19, has been locked up for 28 months after pleading guilty to various offences including making indecent images of a child and sexual communications with a child.

Privacy professionals

OpenAI releases a new safety blueprint to address the rise in child sexual exploitation | TechCrunch

OpenAI has introduced a Child Safety Blueprint to combat AI-enabled child exploitation and enhance child protection efforts in the U.S.

fromInfoQ

Inside Spotify's 2025 Wrapped Archive: AI Narratives at Scale and the Privacy TradeOff

Spotify's 2025 Wrapped Archive generates personalized reports for users, emphasizing narrative recaps while raising privacy concerns.

fromWIRED

Men Are Buying Hacking Tools to Use Against Their Wives and Friends

Telegram groups facilitate the sale of hacking and surveillance services, promoting abusive content targeting women and girls.

Hack-for-hire group caught targeting Android devices and iCloud backups | TechCrunch

A hack-for-hire group is targeting journalists and officials in the Middle East and North Africa using phishing and spyware tactics.

Banning New Foreign Routers Mistargets Products to Fix Real Problem

The FCC has banned foreign-made routers from U.S. sale due to security concerns, impacting consumer options without effectively addressing vulnerabilities.

Alarm in health service over Palantir staff being given NHS email accounts

Health service staff are alarmed by Palantir engineers receiving NHS email accounts, raising concerns about privacy and ethics.

fromLos Angeles Times

Trove of sensitive LAPD records leaked in suspected hack

A trove of sensitive LAPD records, including officer personnel files and documents from Internal Affairs investigations, are among the materials believed to have been seized by hackers in a breach last month involving the L.A. city attorney's office.

Privacy professionals

#fbi

New FBI Warning: Chinese Apps Could Expose User Data

FBI warns Americans about potential data risks from foreign apps, especially those developed in China.

Privacy professionals

FBI Declares Surveillance System Breach a 'Major Incident'

fromSecuritymagazine

Privacy professionals

Breach of FBI Surveillance System Considered a "Major Incident," Security Experts Weigh In

FBI confirms major breach of surveillance system, exposing sensitive data and potentially revealing criminal probes and surveillance targets.

Suspected Chinese breach of FBI system exposed surveillance targets' phone numbers

A breach linked to China exposed phone numbers of FBI surveillance targets, raising concerns about counterintelligence risks.

New FBI Warning: Chinese Apps Could Expose User Data

FBI warns Americans about potential data risks from foreign apps, especially those developed in China.

FBI Declares Surveillance System Breach a 'Major Incident'

A China-linked breach of an FBI surveillance system has been classified as a major incident, posing significant risks to US national security.

fromSecuritymagazine

Breach of FBI Surveillance System Considered a "Major Incident," Security Experts Weigh In

FBI confirms major breach of surveillance system, exposing sensitive data and potentially revealing criminal probes and surveillance targets.

Suspected Chinese breach of FBI system exposed surveillance targets' phone numbers

A breach linked to China exposed phone numbers of FBI surveillance targets, raising concerns about counterintelligence risks.

more#fbi

fromAdExchanger

What Regulators Talk About When They Talk About Ad Tech | AdExchanger

Privacy regulators emphasize protecting children, honoring opt-outs, and ensuring companies are transparent about data collection practices.

Children in UK report online sextortion attempts in record numbers

Record numbers of children in the UK report online sextortion attempts, prompting calls for tech companies to enhance protective measures.

fromFast Company

When knowing less is worth more

The unveiling of Banksy's identity challenges the belief that more knowledge is always beneficial, as some prefer to maintain mystery.

#microsoft

fromTNW | Artificial-Intelligence

Privacy professionals

Microsoft says Copilot isn't just 'for entertainment purposes' after its terms of service language goes viral

Privacy professionals

Microsoft's own ToS calls Copilot 'entertainment only' amid adoption slump

Microsoft says Copilot isn't just 'for entertainment purposes' after its terms of service language goes viral

Microsoft will update Copilot's Terms of Use to remove outdated 'entertainment purposes only' language reflecting its current functionality.

fromTNW | Artificial-Intelligence

Microsoft's own ToS calls Copilot 'entertainment only' amid adoption slump

Microsoft's Copilot is marketed as an essential AI tool, but its Terms of Use label it as 'for entertainment purposes only'.

more#microsoft

Creepy surveillance': why some cities are shutting down Flock cameras amid privacy concerns

Residents of Dunwoody, Georgia, are protesting the city's contract with Flock Safety over privacy concerns and data ownership issues.

fromEntrepreneur

How to Turn Security From a Bottleneck Into a Revenue Driver

Deals stall due to buyers' inability to quickly verify security, not lack of security itself.

Convicted spyware maker Bryan Fleming avoids jail at sentencing | TechCrunch

Bryan Fleming, the first convicted spyware maker in over a decade, received no jail time after pleading guilty to federal charges related to his surveillance company.

fromPCMAG

Use Perplexity? Lawsuit Accuses It of Sharing Personal Data With Google and Meta Without Permission

Perplexity faces a lawsuit for allegedly sharing user data with Google and Meta without consent, violating privacy rights.

China Cracking Down on the Types of AI That Are Tearing America Apart

China is implementing strict regulations on AI personalities to protect children and prevent addiction.

fromIndependent

Gearoid O'Sullivan: Would you be happy to have details of your tax affairs paraded in public?

New rules threaten taxpayer privacy by limiting the right to private hearings in the appeals process.

Embattled startup Delve has 'parted ways' with Y Combinator | TechCrunch

Delve has lost its relationship with Y Combinator amid controversy over compliance and misleading claims.