Did Apple Add A Keylogger to the App Store?

Our top stories this week:

  • Apple adds keylogger to iOS App Store for targeted advertising: tied to your account and unencrypted
  • A Third Party Breached The Intercept’s Signal Tip Line and Has Been Soliciting Whistleblowers
  • Footage Shows Cop Stalking Woman He Met on a TV Set After Surveilling Her With a License Plate Reader
  • ICE’s Internal Watchdog Is Now Investigating Online Critics
  • All Cars Sold in the EU Now Require a Camera Aimed at Your Face. It’s Still Not Clear Where That Data Goes

TWIP Live 🔴


Updates from the Team

News Briefs

Our staff writer Fria is continuing to keep readers updated with all the latest important headlines - including ones we don't have time for on the podcast - like a 15-year-old Linux Kernel vulnerability allowing full system takeover that was discovered or how the FBI worked with Google to shut down a malicious residential proxy network installed on millions of IoT devices.

Privacy & Security News
The latest news in data privacy, cybersecurity, and consumer rights brought to you by Privacy Guides.

Sources

Apple adds keylogger to iOS App Store for targeted advertising: tied to your account and unencrypted

According to cybersecurity researcher Mysk, Apple has recently added a keylogger to the iOS App Store to gather more information on users for advertising purposes. Additionally, this data is sent unencrypted and tied to your user account. While this targeted advertising is - as far as we know - limited to the App Store (for now), it's still not a good look from a company that markets itself a private.

Apple adds keylogger to iOS App Store for targeted advertising: tied to your account and unencrypted – OSnews

A Third Party Breached The Intercept’s Signal Tip Line and Has Been Soliciting Whistleblowers

Somehow, The Intercept's Signal tip line has been hijacked by an unknown third party. The Intercept has moved to a new username, but has failed to explicitly inform their audience of the situation, instead offering vague statements about "best practices." Meanwhile, whoever controls the existing username claims they are an employee at The Intercept and are still accepting tips.

A Third Party Breached The Intercept’s Signal Tip Line and Has Been Soliciting Whistleblowers
The news outlet changed its tip line this week, but has not informed potential sources or the public of the breach.

Footage Shows Cop Stalking Woman He Met on a TV Set After Surveilling Her With a License Plate Reader

Florida officer Lamar Roman met a woman on the set of a TV show. After apparently being turned down flirting with her, he developed an obsession with her and abused his access to police surveillance tools - like ALPRs, DMV data, law enforcement databases, and even Instagram - to track her down and harass her further.

Footage Shows Cop Stalking Woman He Met on a TV Set After Surveilling Her With a License Plate Reader
A Florida police officer met a woman on a TV set, surveilled her for weeks, stalked her, and nearly caused a head-on collision while chasing her to pull her over.

ICE’s Internal Watchdog Is Now Investigating Online Critics

The Office of Professional Responsibility has been investigating people criticizing ICE online, including things that would normally fall under free speech laws like calling for an indictment of an officer. There have been 131 cases open in 15 months - a case every 3.5 days roughly. So far only one criminal case has been linked to these investigations.

ICE’s Internal Watchdog Is Now Investigating Online Critics
The Office of Professional Responsibility has opened more than 100 cases over what ICE officials call “incidents of doxing and threats” against ICE employees.

All Cars Sold in the EU Now Require a Camera Aimed at Your Face. It’s Still Not Clear Where That Data Goes

As of July 7, 2026 every new car sold in the EU must include a "driver monitoring camera" aimed at the driver's face - Advanced Driver Distraction Warning (ADDW). The camera beeps if it detects distracted drivers. While the system is required to be mostly on-device and not biometrics-based, there is little oversight in the form of audits, data retention requirements, and other such privacy concerns.

https://allaboutcookies.org/eu-mandatory-distracted-driver-system


Forum Updates

Microsoft telemetry details in the Scattered Spider complaint
The Scattered Spider complaint includes some pretty striking details about Microsoft telemetry. The DOJ affidavit describes a GDID (Global Device Identifier) tied to a specific Windows installation, acting as a persistent identifier unless the OS is fully wiped. Microsoft telemetry linked to this GDID reportedly included visited websites, changing IP addresses over time, and other internet activity signals collected in the background. According to the filing, Microsoft was able to correlate th…
EU Presidency led initiative to revive Chat Control 1.0: Reinstated again until 2028, people’s efforts still showed noticeable effect
Final Update: Chat Control passes again, as simple majority votes in favor (absolute majority opposed would have been needed). I left some closing words and more information in a comment. I will no longer maintain this post. Further development and additional information may now be in the more recent comments. Also, here’s the comment with a detailed results link, currently not particularly clear because results presumably have to be read inversely, see comment on alleged gambit. Another on…