The United States and Five Eyes partners issued a rare joint warning that China is using LinkedIn and other job platforms to pry secret information from security professionals worldwide, including via fake profiles and targeted offers designed to recruit individuals with access to classified data.
In Troy, New York, residents and city leaders are locked in a heated dispute over AI-assisted license-plate readers from Flock Safety, raising privacy concerns and triggering protests. The confrontation between the mayor and the council escalated to a state of emergency to manage the cameras, highlighting a broader national debate over surveillance versus public safety.
President Trump urged extending the foreign surveillance program (Section 702) as bipartisan privacy concerns loom. Some lawmakers seek stronger warrants and oversight, while others, including House Republicans like Rep. Crawford, back an 18‑month renewal to empower intelligence agencies. With Monday’s expiration looming, the House is viewed as pivotal for any reforms, and Trump’s backing may make cross‑party changes harder to achieve as civil liberties advocates warn Americans could be swept up in surveillance.
The FBI searched Washington Post reporter Hannah Natanson’s home and seized devices in a case tied to a government contractor, triggering immediate newsroom responses as journalists bolster security measures, reassess how they safeguard confidential sources, and call for stronger journalistic protections amid concerns that the move signals an alarming expansion of government intrusion into reporting.
The article discusses concerns and debates around the introduction of a Digital ID in the UK, highlighting fears of increased government authority, privacy issues, and comparisons with digital ID systems in Estonia and Scandinavia. It emphasizes mistrust in government motives, potential for abuse, and the importance of trust and security in digital identity systems.
Palantir's CEO Alexander Karp and Nicholas Zamiska call on Silicon Valley to find its moral purpose, criticizing the focus on consumer products and urging tech firms to collaborate more with government on national challenges, while reflecting on the ethical dilemmas of their work in surveillance and power. They advocate for a 'technological republic' driven by strong public-private partnerships and a shared national purpose, but their ideas face skepticism about reliance on voluntary virtue and the need for regulation.
Major US airlines including Delta, American, and United sold passenger flight data through their owned broker ARC to government agencies like CBP and ICE, raising concerns over privacy and oversight as sensitive travel information is shared without clear legal safeguards.
Spyware makers are reportedly using online ads to infect specific targets with spyware, allowing governments to conduct surveillance. Companies like Intellexa and Insanet have developed ad-based spyware infection systems capable of locating and infecting individuals through online ads. Ad blockers can be an effective defense against malvertising and ad-based malware, preventing the ads from loading in web browsers and enhancing privacy by blocking tracking code. Security experts recommend using ad blockers as a safety precaution against government spyware and malvertising attacks.
House Minority Leader Hakeem Jeffries stated that Democrats will not assist GOP leaders in advancing legislation extending the government’s surveillance powers, effectively blocking the FISA bill from receiving a floor vote. Speaker Mike Johnson is exploring options to break the impasse, including potentially shrinking the Section 702 reauthorization window from five years to two to appease hard-line critics.
Conservative House Republicans are threatening to derail the renewal of the FISA Section 702 surveillance program over opposition to additional warrant requirements for collecting data of American citizens, posing a major test for House Speaker Mike Johnson's slim majority. The fight highlights divisions within the GOP, with some lawmakers expressing concerns about potential abuse of Americans' private communications. The House is set to consider a compromise bill aimed at curbing abuse of Section 702-collected data, but conservative opposition to the bill's scope and safeguards could jeopardize its passage.
The price of zero-day exploits, which are hacking tools that exploit unknown vulnerabilities in software, has skyrocketed in recent years as companies like Apple, Google, and Microsoft make it harder to hack their devices and apps. Crowdfense, a startup, is now offering millions of dollars for zero-days to break into iPhones, Android phones, Chrome, Safari, WhatsApp, and iMessage. This increase in prices reflects the growing difficulty in exploiting vulnerabilities, with experts noting that it now requires a team of researchers. The use of zero-days in law enforcement operations and alleged targeting of human rights dissidents and journalists has raised concerns, leading some companies to pledge to respect export controls to limit potential abuses from their customers.
Leaked documents from a Chinese firm, iSoon, reveal extensive cyber intrusions by Beijing's intelligence and military groups targeting foreign governments, companies, and infrastructure, exploiting vulnerabilities in U.S. software. The cache includes contracts to extract foreign data over eight years, detailing targets in at least 20 foreign governments and territories. The leaked files offer insight into China's national security data-gathering industry, revealing the intense competition among firms vying for lucrative government contracts. The documents also shed light on the scale and persistence of Chinese hacking operations, as well as the dissatisfaction and infighting within the network of patriotic Chinese hackers.
Newly released documents show that the National Security Agency (NSA) has been purchasing Americans' web browsing data from commercial data brokers without warrants, including information about the websites visited and apps used. This practice has raised concerns about privacy violations and legality, prompting Senator Ron Wyden to push for an end to warrantless surveillance of Americans through internet data purchases. The NSA claims the data is used for cybersecurity and foreign intelligence missions, but Wyden and privacy advocates argue that the government should not be funding and legitimizing a practice that violates Americans' privacy.
Apple has updated its "Legal Process Guidelines" to acknowledge that government and law enforcement agencies can request push notification information. Previously, Apple and Google were unable to disclose this due to restrictions by the US government. However, a restriction was recently removed, allowing Apple to include this data in its transparency report. The next report, covering the second half of 2022, will provide details on government requests for customer data.
Unspecified governments have been requesting mobile push notification records from Apple and Google users, potentially allowing them to spy on individuals of interest, according to U.S. Senator Ron Wyden. Push notifications pass through the infrastructure of Apple and Google, giving the companies visibility into how their customers use apps and the ability to provide this information to governments. Both Apple and Google have confirmed receiving such requests, but the information about these practices is restricted from public release by the U.S. government, raising concerns about transparency. The U.S. is among the governments seeking notification data, and Apple and Google have been urged to disclose whether they facilitate this practice, publish aggregate statistics about demands received, and notify specific customers about data requests.