Israel bans Android phones for senior officers, mandating iPhones for security
The IDF has banned the use of Android phones by senior officers to prevent social engineering attacks.
Privacy & Security News
RSS Feed • Follow @PrivacyNews@mstdn.plus on Mastodon • Find more news on the forum
Session messenger adds PFS, PQE, and other improvements
Session, a popular encrypted messenger app in the privacy community, today announced several major updates, including one correcting one of their most common and serious criticisms.
Android Authority: “Aluminium” will be code name for merger of Android and ChromeOS
According to Android Authority, the operating system that’s meant to merge Android and ChromeOS into one, unified OS is called “Aluminium OS.”
IVPN announces V2Ray obfuscation on Android
IVPN recently announced that they now support V2Ray obfuscation on their Android client, meaning they now support it on all platforms where they offer a client.
GSMA Report Warns of “Fragmented Cybersecurity Regulation”
In a new study by the GSMA, they criticize the state of cybersecurity regulation “including fragmented policies and regulatory frameworks, limited institutional capacity to support mobile operators, rigid or prescriptive rules, and a lack of effective platforms for threat intelligence sharing.”
X (Twitter) Now Shows Your Account's Country/Region
Last weekend, X released a new "About This Account" section, accessible by tapping the signup date on a profile, which reveals the location an account is based, among other information.
Plex begins enforcing new restrictions on remote streaming this week
Plex is no longer allowing users to remotely access personal media servers without enrolling into its Plex Pass or Remote Watch Pass subscription plans.
GrapheneOS Now Has Experimental Support for Pixel 10 Series
GrapheneOS announced that they now have experimental support for the Pixel 10, Pixel 10 Pro, Pixel 10 Pro XL and Pixel 10 Pro Fold.
Data Breach Disrupts Emergency Alert Systems
A cyberattack forced Crisis24 to decommission parts of CodeRED, an emergency notification system used widely across the US by governments, police, and fire agencies.
Trail of Bits Adds Constant Time Support to LLVM, Bolstering Encryption Security
Today, Trail of Bits announced they’ve added constant-time coding support for LLVM, “providing developers with compiler-level guarantees that their cryptographic implementations remain secure against branching-related timing attacks.”
Dartmouth College Confirms Data Breach
Dartmouth, a private Ivy League university in New England, has disclosed a data breach.
Malware Delivered Through Blender Downloads on Third-Party Sites
Malicious Blender files uploaded to third-party download sites have turned out to contain infostealer malware.
U.S. National Parks Will Soon Require Proof of Residency or Charge Higher Rates
Today, the United States Department of the Interior announced changes to how national parks are accessed beginning Jan. 1, 2026. The new pricing for an annual pass will be over 3 times higher for non-residents, while remaining the same for residents.
State-sponsored spyware campaign targeting Signal and WhatsApp, CISA warns
The Cybersecurity and Infrastructure Agency (CISA) issued an alert on Monday warning of a state-sponsored spyware campaign targeting Signal and WhatsApp
Malaysia Considers Social Media Ban for Minors
Malaysia might join the ranks of countries banning social media for minors. The country's communication minister has reportedly said to be considering systems that could restrict children under 16 from sites like Facebook and X.
Signal Rolls Out Secure Backups for iOS in Beta
Signal has rolled out secure end-to-end encrypted backups for iOS users, after Android users already got the features months earlier.
Proton Launches Beta Access for Proton Pass CLI
Proton has launched the beta for their command line interface for Proton Pass, Proton’s password manager software.
Harvard University Discloses Second Data Breach
Harvard University disclosed a data breach over the weekend impacting its Alumni Affairs and Development systems.
Iberia Airlines discloses customer data breach
Iberia, Spain's largest airline and part of the International Airlines Group (IAG), has begun notifying customers of a data breach resulting from a third-party vendor.
KeePassXC Awarded ANSSI Security Visa
KeePassXC 2.7.11 has been released with a host of new bug fixes and improvements, plus a First-level Security Certification from ANSSI.
“Trivially Exploitable” Vulnerabilities Left Cloud Environments Vulnerable for Over 8 Years
Researchers at Oligo have found several “trivially exploitable” vulnerabilities in the widely-used Fluent Bit logging software that left users vulnerable for over 8 years.