#privacy
12 articles
Technology, government, and education were the sectors most affected across 20 articles published between April 12 and April 27, 2026, with a severity mix of nine medium, five high, and six informational items. The top CVE identified was CVE-2026-28950. The impacted regions included Global, the United States, Europe, Mexico, and the Netherlands, with the telecommunications and advertising sectors also affected.
MEDIUMMobile App Permissions Still Expose Users to Privacy Risks
ESET analysis shows 1 in 3 Android apps request unnecessary permissions — location, camera, microphone — enabling data harvesting and surveillance. Users should audit permissions.
HIGHApple Patches iOS Flaw That Stored Deleted Signal Notifications
CVE-2026-28950 in iOS Notification Services retained deleted Signal messages on device, accessible via forensic tools. Apple fixed the logging flaw in iOS 18.4.1 and iPadOS 18.4.1.
MEDIUMICE Admits Using Graphite Spyware for Surveillance
U.S. Immigration and Customs Enforcement (ICE) confirmed using spyware from Israeli firm Graphite, a tool capable of extracting data from encrypted messaging apps like WhatsApp…
HIGHRituals Cosmetics Breach Exposes Customer Membership Data
Attackers stole personal data from Rituals Cosmetics' My Rituals membership database — names, emails, addresses, and loyalty points. Number of affected customers undisclosed.
INFORMATIONALGrupo Seguritech Mexican Surveillance Firm Expands into US Market
Grupo Seguritech, a Mexican surveillance firm with a history of human rights allegations, is expanding its operations into the United States, raising data privacy and security concerns.
INFORMATIONALGoogle Tightens Android 17 Privacy Rules, Blocks 8.3 Billion Ads in 2025
Google announced new Android 17 privacy policies restricting contact and location data access, while its 2025 ad safety report details the blocking of 8.3 billion policy-violating ads and 24.9 million advertiser account suspensions.
MEDIUMSocial Media Age Bans May Increase Cybersecurity Risks for Children
Proposed bans on social media for children under 16 may inadvertently push them toward riskier, less-regulated platforms and necessitate invasive age-verification systems that create new data privacy and security threats.
INFORMATIONALFISA Section 702 Reauthorization Debate Intensifies Amid Privacy and Security
The U.S. Congress is debating the reauthorization of FISA Section 702, a surveillance authority that allows warrantless collection of foreign communications but also sweeps in American data, pitting national security claims against privacy concerns.
HIGHMajor Tech Giants Ignore Legally Mandated Privacy Opt-Out Signals
A forensic audit finds Google, Microsoft, and Meta systematically ignore the Global Privacy Control signal, setting tracking cookies after users opt out, violating California privacy law.
MEDIUMAI Chatbots as Political Advisors Raise Security and Transparency Concerns
A U.S. Senator's use of an AI chatbot for policy consultation highlights emerging risks in AI-assisted governance, including data privacy, model integrity, and accountability gaps.
MEDIUMWhatsApp's End-to-End Encryption Claims Challenged as 'Major Consumer Fraud'
Telegram founder Pavel Durov alleges WhatsApp's default end-to-end encryption is misleading, as unencrypted cloud backups can expose billions of user messages.
MEDIUMXChat's Self-Destructing Messages: A Security Analysis of Musk's New Feature
Elon Musk's X platform launched XChat with self-destructing messages, a feature that introduces complex security and forensic implications for enterprise users and incident responders.
Stay Updated
Get the latest cybersecurity news delivered to your inbox.