Google Chrome Adding Protection Against Cookie-Stealing Malware
Google announced on their security blog that Device Bound Session Credentials (DBSC), a protection against session theft, are shipping for Windows users on Chrome 146.
Fria Reyes
Fria is a privacy advocate and synthwave enthusiast who has been volunteering with Privacy Guides since 2023. They are an unapologetic tech optimist, and believes with the right technology we can solve any problem.
Librarians Raise Privacy Concerns Over Age Verification Bill
The Coalition of Alberta Public Libraries issued a letter raising privacy concerns over Bill 28, or the Municipal Affairs and Housing Statues Amendment Act, in Alberta, which requires age restrictions on library materials.
OkCupid Settles After Selling 3 Million Photos to a Facial Recognition Company
The FTC has determined that OkCupid and their owner Match Group don’t have to pay a fine after settling a case in which they shared 3 million user photos and location information to a facial recognition firm.
macOS 26.4 Brings New Terminal Security Feature to Stop Malicious Commands
macOS 26.4 is now out, and with it comes a new feature in the Terminal app to help prevent malicious commands pasted into the terminal from running.
Grandma Wrongly Arrested Due to Facial Recognition Software Finally Released After Months in Jail
Angela Lipps, an innocent, 50-year-old grandma who was arrested after wrongfully being identified by facial recognition software, has finally been released.
iOS 26.5 Beta Supports RCS End-to-End Encryption
Cross-platform end-to-end encryption in RCS may finally be coming to iOS, as the new iOS 26.5 beta released by Apple has end-to-end encryption support.
Vizio TVs Will Now Require a Walmart Account
After being bought out by Walmart in 2024, “select new Vizio OS TVs“ will require a Walmart account to function properly, a representative told Ars Technica.
Android 17 is Getting a Post Quantum Cryptography Upgrade
Following their shortening of the deadline to implement post-quantum encryption to 2029, Google today announced the “first phase” of its post-quantum transition.
French Aircraft Carrier Located in Real Time Via Fitness App
French newspaper Le Monde was able to locate a French aircraft carrier in real time using publicly available profile information of a French Navy officer on the fitness app Strava.
GrapheneOS Won’t Implement Age Verification
The security and privacy-focused GrapheneOS stated in an X post that they will “remain usable by anyone around the world without requiring personal information, identification or an account.”
Severe Meta Cybersecurity Incident Caused by AI Agent
The Information reports that a cybersecurity incident classified as the second-highest severity level Sev 1 occurred due to an AI agent similar to OpenClaw.
Big Tech Creates “Accord Against Online Scams & Fraud”
Eleven companies have signed an accord to address the growing issue of “online scams and fraud,” with the notable exclusion of Apple.
FBI Seeks Info from Gamers Who Installed Malware from Steam
Steam was used to spread malware via several games, and the FBI Seattle division has announced that they’re seeking information from those affected.
KadNap Botnet Hijacks Asus Routers
The Black Lotus Team at Lumen has discovered a new malware strain called KadNap that has been creating a botnet of Asus routers since at least August 2025.
Pokémon Go Players’ Data Used to Train “Visual Positioning” AI
Niantic spinoff, Niantic Spatial, used over 30 billion images taken by users of Pokemon Go to train its “visual positioning” system to help robots navigate the world.
Intel’s Fully Homomorphic Encryption Chip Could Revolutionize Privacy
Intel’s hardware-accelerated Fully-Homomorphic Encryption chip, Heracles, could bring fully E2EE server-side processing into viability.
UK Corporate Registry Exposes Personal Information of Employees
The UK’s Companies House alerted the public of a security issue that allowed other users to access “dates of birth, residential addresses and company email addresses.”
Instagram Ending E2EE Support
Instagram has notified its users that it will no longer support E2EE after May 8, 2026, according to the support page for the feature.
AI Agents Beginning to Help Attackers Accelerate Stealing Your Data
While generation of malicious code, media, and phishing material are already making heavy use of AI, threat actors are “experimenting” with AI agents to automate decision making.
Coruna Malware Targeting iOS Spotted by Google Threat Intelligence
Google Threat Intelligence Group has identified a “powerful exploit kit” targeting iPhones running iOS 13.0 to 17.2.1 used by a surveillance company and crypto-stealing sites.
New JVG Quantum Decryption Algorithm Could Pose Risk to Classical Encryption
A new quantum decryption algorithm called JVG could significantly reduce the amount of resources needed to decrypt classical RSA encryption that we’ve been relying on for decades.