#privacy

Push notifications can reveal sensitive user data to app developers and potentially governments. The article explains how this privacy risk occurs and provides practical steps users can take to protect their information.

A major Australian real estate software company collected sensitive personal data from millions of renters without proper consent. The company gathered information about tenants' rental histories, financial situations, and personal circumstances through its platform. This data collection has been found to violate privacy laws.

Security researchers discovered that the EU's new age-verification app can be hacked in just two minutes using simple methods. The app, designed to verify users' ages online, contains vulnerabilities that allow easy bypass of its security measures. This raises concerns about the effectiveness of the system for protecting minors.

Anthropic's Claude Desktop app allegedly changed browser access settings without user consent, raising spyware concerns. The company says it was a bug and has released a fix. Security researchers discovered the issue while analyzing the application's behavior.

Familiar is an open-source tool that captures screen content every few seconds using OCR and saves it as markdown for local AI agents. It uses Apple's native OCR, deletes screenshots after 48 hours, and redacts sensitive information like passwords and credit card numbers.

Familiar is an open-source tool that captures screen content every 4 seconds using OCR and converts it to markdown for local AI agents. It uses Apple's native OCR, deletes screenshots after 48 hours, and redacts sensitive information like passwords and API tokens. The tool provides context to AI agents for tasks like updating memory systems and assisting with current work.

The article examines how bot operators harvest browser and device fingerprints to bypass security measures. It details the methods used to collect unique identifiers that can be used for tracking and fraud. The research explores the bot ecosystem's techniques for fingerprint harvesting and evasion.

GitHub CLI now collects pseudoanonymous telemetry data by default, which includes command usage frequency and errors. Users can opt out of this data collection through configuration settings.

A legal challenge against the use of facial recognition technology by UK police has failed, paving the way for its nationwide rollout. The High Court ruled that the technology does not breach human rights laws, dismissing a case brought by a civil liberties campaigner.

A company found that most applications send personally identifiable information to large language models. They developed a two-line solution to address this privacy issue.

Meta employees are reportedly unhappy with the company requiring them to install surveillance software on their work PCs, a practice that mirrors the monitoring technologies Meta sells to other businesses.

Firefox has begun bundling Brave's adblock-rust engine, which is a high-performance content-blocking library written in Rust. This integration enhances Firefox's built-in content blocking capabilities while maintaining compatibility with existing filter lists.

OpenAI has introduced a new feature called Chronicle that stores user memories remotely. The system allows AI to remember past conversations and interactions to provide more personalized responses. This differs from local storage approaches used by other companies.

Zoom's privacy is theoretical because its centralized server architecture lets the company access user data. True privacy requires end-to-end encryption where only participants control the keys.

Meta plans to capture employee mouse movements and keystrokes to train AI models. The data collection will be anonymized and aggregated, with employees able to opt out. This initiative aims to improve AI's understanding of human-computer interactions.

Mullvad has released a new feature in its iOS app that forces all app traffic through the VPN tunnel, preventing any data leaks outside the encrypted connection. This setting ensures that if the VPN disconnects, all internet traffic is blocked until the tunnel is reestablished.

Proton VPN has expanded its service to 145 countries while addressing latency challenges across its global infrastructure. The expansion maintains the company's zero-knowledge encryption principles across its diverse geographical footprint.

The developers behind GrapheneOS, a privacy-focused Android operating system, have become embroiled in a bitter public feud. The conflict involves accusations of harassment, doxxing, and disagreements over the project's direction and leadership.

Indeed offers paid subscription plans that allow employers to receive notifications when their current employees apply for jobs on the platform. This feature is part of Indeed's employer services designed to help companies with retention efforts.

Some smart TVs are reportedly capturing screenshots of user screens every 15 seconds, according to a security researcher. This data collection practice raises privacy concerns about what information is being gathered and how it's being used.

Mozilla discusses how AI-powered security tools are helping to identify and address zero-day vulnerabilities more effectively. The article explores how these technologies are changing the cybersecurity landscape and improving threat detection capabilities.

A legal challenge against the Metropolitan Police's use of live facial recognition technology has been dismissed by the High Court. The court ruled that the police's current use of the technology is lawful and complies with human rights and data protection laws.

Google has launched a new update that scans all user photos to identify and organize content. The feature aims to improve search functionality and photo management across Google services.

Privacy concerns raised during a trial of technology to ban teens from social media were reportedly ignored. The trial involved age verification technology that was tested without addressing privacy issues that were brought up by participants.

Meta plans to capture employee mouse movements and keystrokes as training data for its AI systems. The company will collect this data from work computers to improve its artificial intelligence models. This data collection will be implemented across Meta's workforce.

ContextBlur is a browser extension that lets users blur sensitive information like names, emails, or images before sharing their screen or taking screenshots. It helps protect privacy by obscuring selected elements in real time.

The article discusses how AI systems collect and store user data, making truly anonymous conversations impossible. It examines the implications of this data collection for privacy and personal interactions with artificial intelligence.

Meta plans to capture employee mouse movements and keystrokes to gather training data for its artificial intelligence systems. The company will collect this data from employees who volunteer to participate in the program.

Nvidia OpenShell is a secure, private runtime environment designed for autonomous AI agents. It provides isolation and safety features for running AI systems independently while maintaining privacy.

Meta plans to begin collecting employee mouse movements and keystrokes for AI training purposes starting in 2026. The data collection aims to improve AI models by analyzing work patterns and interactions. The company states this will be done with appropriate privacy safeguards in place.