Fria is a privacy advocate and synthwave enthusiast who has been volunteering with Privacy Guides since 2023. They are an unapologetic tech optimist, and believes with the right technology we can solve any problem.
The fingerprinting company fingerprint.com discovered a vulnerability affecting “all Firefox-based browsers” that would allow a “stable process-lifetime identifier” during a browsing session, including after pressing the “New Identity“ button in Tor browser.
Apple has released iOS 26.4.2, which fixes the notification bug that allowed the FBI to extract Signal messages from a defendant’s iPhone.
According to WIRED, Madison Square Garden’s incredibly invasive facial recognition system has been used to ban critics of the stadium and even track a trans woman around who did nothing wrong.
Reuters reports that the Indian government has decided it won’t go through with a proposal to require operating systems to preinstall the biometric ID app Aadhaar.
A security researcher on Hacker News claims that sensitive documents like tax forms shared between Fiverr users in private messages ended up publicly indexed by search engines like Google.
Mastodon announced they were awarded a €614k service agreement by the Sovereign Tech Fund to fund the development of new features and improvements, including end-to-end encrypted private messages.
Google announced on their security blog that Device Bound Session Credentials (DBSC), a protection against session theft, are shipping for Windows users on Chrome 146.
The Coalition of Alberta Public Libraries issued a letter raising privacy concerns over Bill 28, or the Municipal Affairs and Housing Statues Amendment Act, in Alberta, which requires age restrictions on library materials.
The FTC has determined that OkCupid and their owner Match Group don’t have to pay a fine after settling a case in which they shared 3 million user photos and location information to a facial recognition firm.
macOS 26.4 is now out, and with it comes a new feature in the Terminal app to help prevent malicious commands pasted into the terminal from running.
Angela Lipps, an innocent, 50-year-old grandma who was arrested after wrongfully being identified by facial recognition software, has finally been released.
Cross-platform end-to-end encryption in RCS may finally be coming to iOS, as the new iOS 26.5 beta released by Apple has end-to-end encryption support.
After being bought out by Walmart in 2024, “select new Vizio OS TVs“ will require a Walmart account to function properly, a representative told Ars Technica.
Following their shortening of the deadline to implement post-quantum encryption to 2029, Google today announced the “first phase” of its post-quantum transition.
French newspaper Le Monde was able to locate a French aircraft carrier in real time using publicly available profile information of a French Navy officer on the fitness app Strava.
The security and privacy-focused GrapheneOS stated in an X post that they will “remain usable by anyone around the world without requiring personal information, identification or an account.”
The Information reports that a cybersecurity incident classified as the second-highest severity level Sev 1 occurred due to an AI agent similar to OpenClaw.
Eleven companies have signed an accord to address the growing issue of “online scams and fraud,” with the notable exclusion of Apple.
Steam was used to spread malware via several games, and the FBI Seattle division has announced that they’re seeking information from those affected.
The Black Lotus Team at Lumen has discovered a new malware strain called KadNap that has been creating a botnet of Asus routers since at least August 2025.
Niantic spinoff, Niantic Spatial, used over 30 billion images taken by users of Pokemon Go to train its “visual positioning” system to help robots navigate the world.