#leaked-chat
#leaked-chat

Privacy professionals

FBI Declares Surveillance System Breach a 'Major Incident'

2 weeks ago

AI isn't the surveillance threat. Spreadsheets and subpoenas are - Silicon Canals

The FBI utilizes existing data aggregation methods for mass surveillance, rendering the AI debate less relevant.

fromSecuritymagazine

Breach of FBI Surveillance System Considered a "Major Incident," Security Experts Weigh In

FBI confirms major breach of surveillance system, exposing sensitive data and potentially revealing criminal probes and surveillance targets.

FBI Declares Surveillance System Breach a 'Major Incident'

A China-linked breach of an FBI surveillance system has been classified as a major incident, posing significant risks to US national security.

2 weeks ago

AI isn't the surveillance threat. Spreadsheets and subpoenas are - Silicon Canals

The FBI utilizes existing data aggregation methods for mass surveillance, rendering the AI debate less relevant.

more#fbi

#sextortion

Mental health

I felt ashamed and scared': how an online friendship became a sextortion nightmare

Online friendships can lead to severe risks, including sextortion, which can have devastating emotional consequences.

Children in UK report online sextortion attempts in record numbers

Record numbers of children in the UK report online sextortion attempts, prompting calls for tech companies to enhance protective measures.

Mental health

I felt ashamed and scared': how an online friendship became a sextortion nightmare

Online friendships can lead to severe risks, including sextortion, which can have devastating emotional consequences.

Children in UK report online sextortion attempts in record numbers

Record numbers of children in the UK report online sextortion attempts, prompting calls for tech companies to enhance protective measures.

Information security

Meta Pauses Work With Mercor After LiteLLM-Linked Data Breach - TechRepublic

fromnews.bitcoin.com

fromTNW | Corporates-Innovation

Deepmind's 'AI Agent Traps' Paper Maps How Hackers Could Weaponize AI Agents Against Users

Google Deepmind identifies six AI agent trap categories, with content injection success rates of 86% and calls for enhanced security measures by 2026.

Information security

Meta freezes AI data work after breach puts training secrets at risk

fromInfoWorld

Information security

Claude Code leak puts enterprise trust at risk as security, governance concerns mount

14 hours ago

Meta Pauses Work With Mercor After LiteLLM-Linked Data Breach - TechRepublic

Meta has paused work with Mercor due to a security breach linked to the LiteLLM supply chain attack.

fromnews.bitcoin.com

Deepmind's 'AI Agent Traps' Paper Maps How Hackers Could Weaponize AI Agents Against Users

Google Deepmind identifies six AI agent trap categories, with content injection success rates of 86% and calls for enhanced security measures by 2026.

fromTNW | Corporates-Innovation

Meta freezes AI data work after breach puts training secrets at risk

Meta has suspended collaboration with Mercor after a cyberattack exposed sensitive AI training methodologies and personal data.

fromInfoWorld

Claude Code leak puts enterprise trust at risk as security, governance concerns mount

Leaks threaten Anthropic's market position and raise security concerns about its AI coding tools.

more#ai-security

It started with a tip-off': how a Guardian investigation exposed child sex trafficking on Facebook and Instagram

Child sexual abuse trafficking surged during the pandemic, with platforms like Facebook and Instagram being exploited for these crimes.

#cybersecurity

fromSecuritymagazine

8 hours ago

Healthcare

Healthcare Executives Face a New Era of Personal Risk

5 hours ago

Information security

One maintainer, one compromised laptop: How North Korean hackers hijacked the Axios open source project - Silicon Canals

EU data protection

Europe's cyber agency blames hacking gangs for massive data breach and leak | TechCrunch

fromThe Hacker News

Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

Compromised npm packages can rapidly affect numerous systems, highlighting the need for enhanced security in software development processes.

European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack

Hackers stole over 300GB of data from the European Commission's AWS environment using a compromised API key from the Trivy supply chain attack.

fromTNW | Eu

European Commission breached after hackers poisoned open-source security tool Trivy

A major data breach at the European Commission was caused by TeamPCP exploiting a supply chain attack on the Trivy security tool.

Healthcare

fromSecuritymagazine

8 hours ago

Healthcare Executives Face a New Era of Personal Risk

Healthcare executives face heightened personal risks due to grievance-motivated cyber threats amid economic pressures and public accountability.

5 hours ago

One maintainer, one compromised laptop: How North Korean hackers hijacked the Axios open source project - Silicon Canals

North Korean hackers compromised the Axios HTTP library by socially engineering its maintainer, publishing malicious versions that exposed sensitive data.

Europe's cyber agency blames hacking gangs for massive data breach and leak | TechCrunch

A cybercriminal group known as TeamPCP hacked the EU's executive body, stealing 92 gigabytes of data, including personal information.

fromThe Hacker News

Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

Compromised npm packages can rapidly affect numerous systems, highlighting the need for enhanced security in software development processes.

European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack

Hackers stole over 300GB of data from the European Commission's AWS environment using a compromised API key from the Trivy supply chain attack.

fromTNW | Eu

European Commission breached after hackers poisoned open-source security tool Trivy

A major data breach at the European Commission was caused by TeamPCP exploiting a supply chain attack on the Trivy security tool.

Europe Gets Serious About Age Verification Online

Five EU countries are testing a digital wallet for age verification, but progress varies significantly among them.

#claude-code

Software development

Claude Code's innards revealed as source code leaked online

fromTechzine Global

Claude Code leak exposes many of Anthropic's secrets

A leak of Claude Code's source code reveals significant details about its features and future plans, despite Anthropic's usual secrecy.

Claude Code's source reveals extent of system access

Claude Code has significant control over devices, raising concerns about data retention and potential misuse in sensitive environments.

Software development

Claude Code's innards revealed as source code leaked online

fromTechzine Global

Claude Code leak exposes many of Anthropic's secrets

A leak of Claude Code's source code reveals significant details about its features and future plans, despite Anthropic's usual secrecy.

Claude Code's source reveals extent of system access

Claude Code has significant control over devices, raising concerns about data retention and potential misuse in sensitive environments.

LinkedIn 'BrowserGate' Investigation Alleges Secret Browser Extension Scanning Within Platform

LinkedIn allegedly collects extensive user data through a hidden system called 'Spectroscopy' without explicit user consent.

fromTNW | Insights

LinkedIn secretly scans 6,000+ browser extensions and fingerprints your device

LinkedIn's hidden JavaScript routine collects extensive user data without disclosure, raising concerns about covert surveillance practices.

fromTech Times

LinkedIn 'BrowserGate' Investigation Alleges Secret Browser Extension Scanning Within Platform

LinkedIn allegedly collects extensive user data through a hidden system called 'Spectroscopy' without explicit user consent.

fromTNW | Insights

LinkedIn secretly scans 6,000+ browser extensions and fingerprints your device

LinkedIn's hidden JavaScript routine collects extensive user data without disclosure, raising concerns about covert surveillance practices.

more#linkedin

Law

I always considered social media evil': big tobacco whistleblower on tech's addictive products

Jeffrey Wigand compares social media companies' practices to the tobacco industry's targeting of children and negligence regarding addiction and harm.

Humor

fromFast Company

12 hours ago

Let Justin Timberlake and Tiger Woods be a warning: The body cam footage industry could come for any of us

Body cam footage of arrests, while entertaining, raises ethical concerns about public shaming and the fragility of privacy.

Give It Up Or Go to Jail!' Trump Threatens Media Company Over Alleged Rescue Leak

Trump threatened a media company over a leak regarding a U.S. military rescue mission in Iran, citing national security concerns.

fromwww.mediaite.com

11 hours ago

Key Journo Defiant Amid Trump Hunt For Leaker: I Will Protect My Sources'

Trump threatens journalist over source related to Iran airman rescue, emphasizing national security and potential jail time for non-compliance.

fromwww.mediaite.com

14 hours ago

Give It Up Or Go to Jail!' Trump Threatens Media Company Over Alleged Rescue Leak

Trump threatened a media company over a leak regarding a U.S. military rescue mission in Iran, citing national security concerns.

fromwww.mediaite.com

11 hours ago

Key Journo Defiant Amid Trump Hunt For Leaker: I Will Protect My Sources'

Trump threatens journalist over source related to Iran airman rescue, emphasizing national security and potential jail time for non-compliance.

more#trump

Non-profit organizations

fromNextgov.com

14 hours ago

The war against fraud should be a war for tech modernization

A new task force aims to combat fraud in public benefits programs by ensuring adequate anti-fraud controls and addressing data sharing challenges.

NYC parents

fromwww.amny.com

19 hours ago

Op-Ed | Albany's online safety' bill incentivizes surveillance, chills free expression | amNewYork

New York's budget process risks limiting input on a proposal that threatens privacy, youth safety, and free expression.

Marketing tech

fromEMARKETER

fromInside Higher Ed | Higher Education News, Events and Jobs

Most consumers say ads would undermine the trust they're placing in AI search results

63% of US adults trust AI search results less when ads are present.

Higher education

22 hours ago

Consumer Protection Group Unveils Student AI Bill of Rights

Consumer protection advocates urge higher education institutions to adopt a Student AI Bill of Rights to protect students from AI misuse.

World politics

fromPoynter

Fact-checking is crucial when the news moves this fast - Poynter

The U.S. and Israel launched attacks on Iranian targets, prompting extensive fact-checking on claims regarding military capabilities and misinformation.

SF parents

fromCalifornia Post

Disturbing twist after sicko allegedly recorded families with spy cameras at rental mansion

A man was released on bail after facing felony charges for possessing child sexual abuse material and secretly recording guests at his rental property.

#ai

fromFuturism

Artificial intelligence

Claude Leak Shows That Anthropic Is Tracking Users' Vulgar Language and Deems Them "Negative"

fromThe Verge

Roam Research

PSA: Anyone with a link can view your Granola notes by default

fromComputerWeekly.com

Identity and AI: Questions of data security, trust and control | Computer Weekly

AI-driven identity solutions improve access control but raise compliance, privacy, and ethical concerns that organizations must address.

fromFuturism

Claude Leak Shows That Anthropic Is Tracking Users' Vulgar Language and Deems Them "Negative"

Anthropic experienced a significant leak of its Claude Code AI source code, raising concerns about competitive advantages and user experience tracking.

Roam Research

fromThe Verge

PSA: Anyone with a link can view your Granola notes by default

Granola's AI note-taking app makes user notes viewable by default, raising privacy concerns for sensitive information.

fromComputerWeekly.com

Identity and AI: Questions of data security, trust and control | Computer Weekly

AI-driven identity solutions improve access control but raise compliance, privacy, and ethical concerns that organizations must address.

Compliance startup Delve removed from Y Combinator portfolio after anonymous whistleblower posts spark investor exodus - Silicon Canals

Delve has been removed from Y Combinator's portfolio due to serious allegations regarding its business practices and compliance misrepresentation.

#data-privacy

fromBrooklyn Eagle

Brooklyn

PREMIUM Is Your Phone Spying on You? Nah. It Doesn't Have To.

fromAdExchanger

Data Privacy At The Kitchen Table | AdExchanger

Data privacy has become a significant concern for lawmakers and constituents, evolving into a key topic of discussion.

fromenglish.elpais.com

This is how the illegal market for buying and selling personal data on Telegram works

Illicit data markets on Telegram in Latin America expose personal data, contributing to gender-based violence and highlighting vulnerabilities in government data management.

fromBrooklyn Eagle

Brooklyn

PREMIUM Is Your Phone Spying on You? Nah. It Doesn't Have To.

fromAdExchanger

Data Privacy At The Kitchen Table | AdExchanger

Data privacy has become a significant concern for lawmakers and constituents, evolving into a key topic of discussion.

fromenglish.elpais.com

This is how the illegal market for buying and selling personal data on Telegram works

Illicit data markets on Telegram in Latin America expose personal data, contributing to gender-based violence and highlighting vulnerabilities in government data management.

Understanding the risks of OpenClaw

OpenClaw is an orchestration layer that requires external services to function effectively, rather than being a standalone cloud platform.

OpenClaw gives users yet another reason to be freaked out about security

OpenClaw's vulnerabilities pose severe security risks, allowing attackers to gain administrative access with minimal permissions.

DevOps

fromInfoWorld

Understanding the risks of OpenClaw

OpenClaw is an orchestration layer that requires external services to function effectively, rather than being a standalone cloud platform.

OpenClaw gives users yet another reason to be freaked out about security

OpenClaw's vulnerabilities pose severe security risks, allowing attackers to gain administrative access with minimal permissions.

Regulating Social Media: Where do we go from here?

Social media platforms are designed for addiction, prompting global legislative actions to restrict children's access.

Remote teams

Security contractor blew the whistle on shabby support crew

Brad, a security contractor, faced challenges with antivirus alerts while working in a labor hire company's office without proper IT support.

#data-breach

2 hours ago

Wynn Resorts Says 21,000 Employees Affected by ShinyHunters Hack

Wynn Resorts confirmed a data breach affecting over 21,000 individuals, with hackers stealing employee data and likely receiving ransom payment.

A fintech app asked users for their passports - then left 360,000 files unprotected for five years - Silicon Canals

A money transfer app exposed over 360,000 sensitive files on a public server for nearly five years, including unencrypted personal documents.

The company's biggest security hole lived in the breakroom

An internet-connected coffee machine caused a major data breach by exploiting security vulnerabilities in a corporate network.

2 hours ago

Wynn Resorts Says 21,000 Employees Affected by ShinyHunters Hack

Wynn Resorts confirmed a data breach affecting over 21,000 individuals, with hackers stealing employee data and likely receiving ransom payment.

A fintech app asked users for their passports - then left 360,000 files unprotected for five years - Silicon Canals

A money transfer app exposed over 360,000 sensitive files on a public server for nearly five years, including unencrypted personal documents.

The company's biggest security hole lived in the breakroom

An internet-connected coffee machine caused a major data breach by exploiting security vulnerabilities in a corporate network.

more#data-breach

#meta

fromPsychology Today

Social Media Companies Fined for Harming User

Meta and YouTube were ordered to pay $6 million for creating addictive products that caused psychological harm to a user.

Law

Meta was finally held accountable for harming teens. Now what? | TechCrunch

fromWIRED

Information security

Meta Pauses Work With Mercor After Data Breach Puts AI Industry Secrets at Risk

Privacy professionals

Meta paused its work with AI training startup Mercor after a data breach

Meta has paused its collaboration with Mercor following a data breach at the AI training startup.

Privacy professionals

Weakening Speech Protections Will Punish All of Us-Not Just Meta

Meta and YouTube face legal challenges, but lowering First Amendment protections could harm user speech rights.

fromPsychology Today

Social Media Companies Fined for Harming User

Meta and YouTube were ordered to pay $6 million for creating addictive products that caused psychological harm to a user.

Law

Meta was finally held accountable for harming teens. Now what? | TechCrunch

Meta has been held liable for endangering child safety and designing addictive apps, leading to significant legal consequences.

fromWIRED

Meta Pauses Work With Mercor After Data Breach Puts AI Industry Secrets at Risk

Meta has paused work with Mercor due to a major security breach affecting data used for AI training.

Meta paused its work with AI training startup Mercor after a data breach

Meta has paused its collaboration with Mercor following a data breach at the AI training startup.

Weakening Speech Protections Will Punish All of Us-Not Just Meta

Meta and YouTube face legal challenges, but lowering First Amendment protections could harm user speech rights.

CBP facility codes sure seem to have leaked via online flashcards

Immigration offenses and internal systems of CBP are detailed in flashcards, highlighting procedures and responsibilities of agents.

fromwww.scientificamerican.com

Anthropic leak reveals Claude Code tracking user frustration and raises new questions about AI privacy

Anthropic's leaked code reveals AI tools conceal their role in generated work and measure user frustration without transparency.

Marketing tech

fromExchangewire

The Stack: AI Surges while Social Platforms Face Scrutiny

AI is growing rapidly, streaming models are evolving, and regulatory pressures on platforms are increasing globally.

Mental health

Unregulated chatbots are putting lives at risk | Letters

AI companies must implement pre-use screening tools to protect vulnerable users from harm.

#privacy

Privacy technologies

Double Shot of Privacy's Defender in D.C.

fromFortune

Privacy technologies

Your neighbor just got a home security system, but should you be worried? 'It's inherently a little creepy' says surveillance expert | Fortune

Privacy technologies

Triple Header for Privacy's Defender in New York

Cindy Cohn's new book, Privacy's Defender, details her 30-year fight against digital surveillance and promotes data security and digital rights.

Perplexity's "Incognito Mode" is a "sham," lawsuit says

Perplexity's AI allegedly shares sensitive user chats with Google and Meta without consent, raising significant privacy concerns.

Privacy technologies

Double Shot of Privacy's Defender in D.C.

fromFortune

Your neighbor just got a home security system, but should you be worried? 'It's inherently a little creepy' says surveillance expert | Fortune

Consumers are increasingly concerned about privacy and data control regarding home surveillance technology.

Triple Header for Privacy's Defender in New York

Cindy Cohn's new book, Privacy's Defender, details her 30-year fight against digital surveillance and promotes data security and digital rights.

Perplexity's "Incognito Mode" is a "sham," lawsuit says

Perplexity's AI allegedly shares sensitive user chats with Google and Meta without consent, raising significant privacy concerns.

more#privacy

fromBGR

Instagram Finally Found A Premium Feature You Might Want - And It's A Little Creepy - BGR

Instagram is a major revenue source for Meta, generating $71 billion by 2025, and is testing a subscription service with new features.

fromwww.npr.org

As DOJ prepares to share state voter data with DHS, a key privacy officer resigns

The DOJ is acquiring sensitive voter registration data, raising privacy concerns, as a key privacy officer resigns amid ongoing legal challenges.

fromAdExchanger

What Regulators Talk About When They Talk About Ad Tech | AdExchanger

Privacy regulators emphasize protecting children, honoring opt-outs, and ensuring companies are transparent about data collection practices.

Don't glamorize cybercrims, roast them instead

Cybercrime groups should not be glamorized; they are ordinary individuals using computers for theft, not mythical entities.

fromFast Company

Why AI-powered city cameras are sounding new privacy alarms

The expansion of automatic license plate readers as a source of deep concern is evident as government authorities seek ways to target immigrant and transgender communities.

Privacy technologies

NHS staff resist using Palantir software

One official reportedly described Palantir as 'ethically bankrupt' in justifying his refusal to use the software, and noted that he knows of coworkers who deliberately slow their work pace when forced to use the system.

EU data protection

21 hours ago

Creepy surveillance': why some cities are shutting down Flock cameras amid privacy concerns

Residents of Dunwoody, Georgia, are protesting the city's contract with Flock Safety over privacy concerns and data ownership issues.

fromPCMAG

Use Perplexity? Lawsuit Accuses It of Sharing Personal Data With Google and Meta Without Permission

Perplexity faces a lawsuit for allegedly sharing user data with Google and Meta without consent, violating privacy rights.

fromFuturism

China Cracking Down on the Types of AI That Are Tearing America Apart

China is implementing strict regulations on AI personalities to protect children and prevent addiction.

fromComputerWeekly.com

EU Parliament rejects Chat Control message scanning | Computer Weekly

The European Parliament rejected proposals allowing tech companies to scan private messages for illegal content, ending attempts to introduce Chat Control legislation.

fromThe Verge

Pinterest said he violated laid-off colleagues' privacy. Now he's going public

A former Pinterest engineer claims he was unjustly fired for sharing a tool that revealed employee layoffs.

fromZDNET

The best way to protect your phone from a warrantless search in 2026

US authorities are increasingly aggressive in detaining and seizing devices, with biometrics remaining vulnerable.

fromnews.bitcoin.com

The Retroactive Decryption Trap: Why Post-Quantum Upgrades Can't Save Your Past Privacy

Guy Zyskind emphasized that the whitepaper reframes the conversation around quantum threats, stating that the traditional 10-year migration window now seems dangerously optimistic given Google's findings.

Information security

fromComputerworld

A core infrastructure engineer pleads guilty to federal charges in insider attack

Rhyne's attack involved unauthorized remote desktop sessions, deletion of network administrator accounts, and changing of passwords, showcasing significant security vulnerabilities.

Information security

Law

fromAbove the Law

1 month ago

Hate To Say I Told You So Again: Your Chats Ain't Private - Above the Law

Communications with GenAI platforms lack attorney-client privilege protection because they occur between a client and a machine, not a lawyer, and are not confidential under platform terms of service.

fromZDNET

I turned to PrivacyBee to clean up my data - here's how it made me disappear

PrivacyBee is preferred for its comprehensive data removal services and user-friendly management tools.

A money-transfer app stored customer passports on an unencrypted, publicly accessible server for nearly five years - Silicon Canals

Fintech companies face regulatory pressure to collect identity documents but lack enforceable obligations to protect them, leading to data breaches.

2 weeks ago

Instagram to remove end-to-end encryption for private messages in May

Instagram will disable end-to-end encryption on direct messages from May 2026, allowing Meta to access all message contents due to low user adoption of the feature.

#whatsapp

WhatsApp notifies hundreds of users who installed a fake app that was actually government spyware | TechCrunch

WhatsApp notified 200 users about a malicious fake app containing spyware created by Italian firm SIO.

WhatsApp's former security chief is 'not done fighting' after his lawsuit got dismissed

A lawsuit by WhatsApp's former chief of security was dismissed for lack of evidence, but plans to refile are underway.

Don't open that WhatsApp message, Microsoft warns

WhatsApp messages are being exploited to deliver malicious files that allow attackers to control victims' machines and access their data.

Privacy technologies

WhatsApp is rolling out a new stricter security setting to protect users from cyber attacts | TechCrunch

WhatsApp notifies hundreds of users who installed a fake app that was actually government spyware | TechCrunch

WhatsApp notified 200 users about a malicious fake app containing spyware created by Italian firm SIO.

WhatsApp's former security chief is 'not done fighting' after his lawsuit got dismissed

A lawsuit by WhatsApp's former chief of security was dismissed for lack of evidence, but plans to refile are underway.

Don't open that WhatsApp message, Microsoft warns

WhatsApp messages are being exploited to deliver malicious files that allow attackers to control victims' machines and access their data.

Privacy technologies

WhatsApp is rolling out a new stricter security setting to protect users from cyber attacts | TechCrunch

Instagram Users Urged to Save Encrypted DMs Before Feature Disappears

Meta will discontinue end-to-end encrypted messaging for Instagram DMs on May 8, 2026, citing low adoption rates and directing users to download conversations beforehand.

The Next Cybersecurity Crisis Isn't Breaches-It's Data You Can't Trust

Data integrity now encompasses data trust, emphasizing the importance of reliable data in AI-driven decision-making.

FBI Warns of Data Security Risks From China-Made Mobile Apps

Foreign-developed mobile applications pose significant data security risks, particularly those from China, according to an FBI alert.

Microsoft: Hackers Are Using WhatsApp to Deliver Malware to Windows PCs

WhatsApp messages are being exploited to deliver malware to Windows users, creating significant security risks.

fromEngadget

3 weeks ago

Meta is killing end-to-end encryption in Instagram DMs

Meta is discontinuing end-to-end encryption in Instagram DMs by May 8, 2026, citing low user adoption of the optional feature.

fromHer Campus

Who's Watching The Watchers? AI, Age Verification, And Online Privacy

Parents are increasingly concerned about children's exposure to harmful online content despite regulations like CIPA and platforms like YouTube Kids.

World news

fromDataBreaches.Net

Under Pressure: Exploring the effect of legal and criminal threats on security researchers and journalists - DataBreaches.Net

Most surveyed journalists and security researchers face legal or criminal threats, yet most do not retract or change their work in response.

Security boffins harvest bumper crop of API keys from web

Almost 2,000 API credentials were found exposed on 10,000 webpages, posing significant security risks to organizations and critical infrastructure.

1 month ago

Exclusive: Hacktivist scrapes over 500,000 stalkerware customers' payment records

More than 536,000 customer payment records from Struktura's stalkerware services were scraped, exposing emails, partial card details, and purchased surveillance app subscriptions.

fromWIRED