Privacy
-
Google expands Android binary transparency to verify apps and modules
Google has expanded Android binary transparency for production apps and Mainline modules released after May 1, 2026, adding a public cryptographic ledger meant to confirm that device software matches what was intended to ship.
-
CloudZ malware used Phone Link to target Windows data, researchers say
Researchers said CloudZ malware used a Pheno plugin to abuse Windows Phone Link on Windows 10 and 11, aiming to steal credentials and one-time passwords in an intrusion active since at least January 2026.
-
FTC to bar Kochava from selling Americans’ location data without consent
The FTC will bar Kochava and its subsidiary from selling precise location data without explicit consent, settling a case over data tied to hundreds of millions of mobile devices and alleged tracking of sensitive places.
-
Vimeo says customer data exposed after Anodot breach
Vimeo said some customer and user data was accessed without authorization after the Anodot breach, including email addresses for some customers, technical data, video titles and metadata. The company said video content and payment data were not exposed.
-
Robinhood fixes account creation flaw used to send phishing emails
Robinhood said attackers abused a flaw in its account creation flow to send phishing emails from a legitimate company address. The company said no customer accounts, personal information or funds were impacted.
-
Medtronic confirms network breach after hackers claim theft of 9 million records
Medtronic said hackers breached corporate IT systems and may have accessed personal data after ShinyHunters claimed theft of more than 9 million records and terabytes of internal data.
-
Rituals discloses data breach affecting My Rituals members
Rituals said attackers stole personal information from its My Rituals membership database, affecting an undisclosed number of customers. The company said passwords and payment information were not accessed and that it has contained the breach.
-
Apple fixes iOS bug that kept deleted notifications on devices
Apple has fixed an iOS and iPadOS bug that could leave deleted notifications on iPhones and iPads, after reports that message copies could be recovered from notification databases in a forensic examination.
-
French government agency confirms data breach after hacker claims 19 million records
France Titres, the French agency that issues identity and registration documents, said a security incident may have exposed account data. A hacker later claimed to be selling up to 19 million records.
-
108 malicious Chrome extensions linked to shared server, data theft
Researchers found 108 malicious Chrome extensions tied to one backend server, with the add-ons used to steal account data, exfiltrate Telegram sessions and inject ads or scripts into visited pages.
