Tag

Data Protection

All articles tagged with #data protection

technology17 days ago•3 min saved

Chrome Under Fire for Secret 4GB On-Device AI Install Without Consent

Security researcher Alexander Hanff revealed that Chrome quietly installs a 4GB weights.bin file for Gemini Nano's on-device AI whenever default AI features are enabled, re-downloading it if the user tries to delete it and offering no consent or transparency. The move has sparked privacy and data-regulation concerns (GDPR), potential environmental impact from emissions tied to widespread device usage, and broad backlash, with Mozilla promising a kill switch and Vivaldi calling for user autonomy while Google remains silent.

via Futurism|

#ai-on-device #data-protection #environmental-impact

technology1 month ago•4 min saved

Microsoft rolls emergency patch to fix macOS/Linux ASP.NET Core privilege escalation

Microsoft issued an emergency update for ASP.NET Core's DataProtection package (versions 10.0.0–10.0.6) to fix a high-severity flaw (CVE-2026-40372) that allowed unauthenticated attackers on macOS and Linux to forge authentication tokens and gain SYSTEM privileges; upgrade to 10.0.7 immediately, and rotate the DataProtection key ring and audit long-lived artifacts since forged tokens could remain valid after patching.

via Ars Technica|

#aspnet-core #cve-2026-40372 #data-protection

security1 month ago•3 min saved

Microsoft patches critical ASP.NET Core data-protection flaw to curb cookie forgery

Microsoft released out-of-band security updates for a critical ASP.NET Core Data Protection vulnerability (CVE-2026-40372) that could let unauthenticated attackers forge authentication cookies and gain SYSTEM privileges. The flaw comes from a regression in the 10.0.0–10.0.6 NuGet packages, which could cause forged payloads to bypass authenticity checks; upgrading to 10.0.7 and redeploying with a rotated DataProtection key ring fixes the issue. This follows April’s Patch Tuesday and includes additional out-of-band Windows Server fixes. No service disruption is reported, but applications using DataProtection should update promptly to prevent token forgery and data exposure.

via BleepingComputer|

#aspnet-core #cve-2026-40372 #data-protection

world3 months ago•8 min saved

Gaza aid groups push back on Israeli data demands, eyeing GDPR safeguards

International aid groups operating in Gaza warn they face a choice between complying with Israel’s new data‑sharing rules or losing access to Gaza and the West Bank; the rules would force registration and broad disclosure of staff and donor information, potentially endangering personnel. NGOs argue the demands conflict with EU GDPR protections, prompting a High Court challenge and urgent EU engagement to suspend the measures. The EU Commission says it’s monitoring the situation and aims to facilitate privacy‑respecting solutions, warning that blocking aid could jeopardize life-saving relief.

via politico.eu|

#data-protection #eu-gdpr #gaza

technology3 months ago•2 min saved

Jersey warns of AI deepfake surge and calls for safeguards

Officials in Jersey (Information Commissioner Paul Vane) and Guernsey have joined a broad coalition of jurisdictions warning that AI-generated images and videos can harm real people, urging tighter oversight. They issued guidance on steps individuals can take to protect themselves, such as limiting what you share online, being cautious with AI platforms, and talking to children about AI use. The warning follows a recent incident where a deepfake targeting school staff prompted a police investigation.

via BBC|

#ai #data-protection #deepfake

technology3 months ago•14 min saved

EU launches cross-border privacy probe into Grok over sexualized deepfakes

Ireland's data protection regulator is leading an EU-wide investigation into Elon Musk's Grok chatbot after reports of sexualized deepfake images, examining how the AI collects and handles data across EU countries.

via AP News|

#data-protection #deepfake #eu

technology3 months ago•4 min saved

EU Regulators Open Probe Into X Over Sexualised AI Imagery

European data privacy authorities have opened a formal probe into X, Elon Musk’s platform, over sexualised AI-generated imagery and how it is handled under EU privacy rules, potentially leading to enforcement if rules are found to have been violated.

via Financial Times|

#ai-generated-images #data-protection #eu-privacy-watchdog

world3 months ago•3 min saved

Oxfam refuses to share Palestinian staff data with Israel amid Gaza aid crackdown

Oxfam refuses to disclose Palestinian staff details to Israel amid a Gaza aid crackdown, arguing that sharing sensitive data would threaten staff safety and breach humanitarian principles; Israel has deregistered dozens of NGOs and demanded extensive staff information, while MSF offered a limited, safeguarded list and PNGO warned the move jeopardizes aid work.

via Al Jazeera|

#data-protection #gaza #humanitarian-aid

world4 months ago•4 min saved

MSF agrees to share staff data under Israeli security rules, drawing concern

Doctors Without Borders (MSF) says it will provide a defined list of Palestinian and international staff to Israeli authorities under new security requirements, calling it an exceptional measure to safeguard operations. Critics warn the move could endanger aid workers in Gaza and the West Bank. Israel says dozens of NGOs have complied or are weighing the rules, and MSF notes that international staff arrivals into Gaza have been blocked since Jan 1, 2026, highlighting a deteriorating humanitarian situation.

via Al Jazeera|

#data-protection #gaza #israel

business4 months ago•2 min saved

Disney to Pay $10 Million to Settle Children's Privacy Law Violations

Disney will pay $10 million to settle allegations of violating children's privacy laws by failing to properly label YouTube videos as made for children, leading to targeted advertising and data collection without parental consent. The settlement follows an FTC inquiry and requires Disney to improve compliance with children's data protection laws, specifically under COPPA.

via BBC|

#business #childrens-privacy #data-protection

technology9 months ago•4 min saved

Top Password Managers and Tips for Enhanced Digital Security

Due to security vulnerabilities and data leaks, LastPass is no longer recommended; instead, five better password managers are suggested, including Bitwarden, 1Password, Dashlane, Proton Pass, and Enpass, each offering various features, security, and affordability to enhance user safety and convenience.

via Android Authority|

#data-protection #lastpass-alternatives #password-managers

technology10 months ago•2 min saved

WeTransfer Reaffirms It Won't Use User Files for AI Training

WeTransfer clarified that it does not use uploaded files to train AI models after customer backlash over ambiguous terms, updating its policies to prevent confusion and reassure users about data privacy.

via BBC|

#ai-training #data-protection #privacy

technology11 months ago•1 min saved

Samsung to Delete Inactive Accounts This July—Act Now to Save Yours

Samsung will delete accounts inactive for 24 months starting July 31, 2025, to protect user data. Users are advised to log in before then to retain their accounts, as deletion is irreversible and accounts cannot be restored once deleted.

via SamMobile|

#account-deletion #data-protection #inactive-accounts

business1 year ago•1 min saved

Career Missteps: Goldman VP's Holiday Blunder & Citi's Bold Promotions

eFinancialCareers has temporarily blocked access from mainland China to comply with the new Personal Information Protection Law (PIPL) that came into effect on November 1st. The company is assessing the law's implications on its business and is committed to adhering to privacy regulations in its operating regions. For inquiries, users are encouraged to contact eFinancialCareers support.

via eFinancialCareers|

#business #china #data-protection

technology1 year ago•1 min saved

NHS Limits Mounjaro Weight-Loss Jab to 220,000 Patients in Initial Rollout

Yahoo, as part of its family of brands, uses cookies to provide services, authenticate users, and measure site usage. By accepting cookies, users consent to Yahoo and its partners accessing device information and personal data for personalized advertising and content. Users can manage their privacy settings to control data usage and can change their preferences at any time through Yahoo's privacy settings.

via Yahoo Lifestyle UK|

#advertising #cookies #data-protection