Skip to main content

Privacy

See All Stories

Privacy is a growing concern in today’s world. Follow along with all our coverage related to privacy, security, what Apple and other companies are doing to keep your information safe, and what steps you can take to keep your information private.

Future of iMessage safe in the UK, as government backs down on encryption

Future of iMessage safe in the UK | iPhone users exchanging iMessages

The future of iMessage in the UK had seemed in doubt, as the British government was demanding that the company break end-to-end encryption to allow messages to be scanned. Apple had said that it would withdraw iMessage from the UK rather than compromise user privacy.

WhatsApp and Signal had similarly threatened to withdraw their messaging apps from the UK, but the government has now done a U-turn, while issuing a meaningless, face-saving statement …

Expand Expanding Close

NYC subway security flaw seemingly exposes ‘impossible’ Apple Pay vulnerability [U]

NYC subway security flaw | Apple Pay Express Transit promo image

Update: The MTA flaw has been eliminated, but the Apple Pay question remains. See the end of the piece.

An inexcusable NYC subway security flaw has been revealed, allowing anyone with knowledge of a user’s credit card number and expiry date to track all journeys made within the past seven days.

But what’s far more concerning is that the vulnerability applies to journeys where Apple Pay was used to tap into stations, despite the fact that this should be completely impossible …

Expand Expanding Close

Investigatory Powers Act a serious threat to global privacy, says Apple

Site default logo image

Apple says that plans to increase the scope and powers of the UK’s Investigatory Powers Act is “a serious and direct threat to data security and information privacy” – not just to British citizens, but to all tech users worldwide.

The company says that the British government is trying to make itself “the de facto global arbiter of what level of data security and encryption are permissible” after a report last week noted that companies like Apple could be banned from issuing security updates without permission …

Expand Expanding Close

Saturn says only students can see user data, but anyone can join the iPhone app for teens [U]

8/14: Saturn has submitted an update to the App Store that could address the most obvious privacy concerns. As you’ll read below, however, we’ll need to compare the words on their blog with how the app actually works.


What if I told you there was a new app that let anyone easily look up names and social media accounts for local teenagers? Creepy much? That’s exactly what a new app called Saturn does. It’s also currently one of the top 15 iPhone apps on the App Store.

Expand Expanding Close

Hidden VNC tool gives attackers full access to Macs; comes with $100K guarantee

Hidden VNC | Close-up of Mac keyboard and screen

Cybersecurity firm Guardz has found Russian hackers offering for sale a Hidden VNC tool specifically designed to give attackers full access to Macs. It follows a similar tool for accessing Windows PCs, and is geared to stealing personal data and logins.

The HVNC (Hidden Virtual Network Computer) is being sold on the dark web, and as a sign of good faith that the tool works as claimed, the hackers have deposited $100K in an escrow account …

Expand Expanding Close
Data breaches | Anonymous masks

Data breaches must be reported within 4 days, says SEC

There have been many cases of US companies covering up serious personal data breaches for months at a time – often only admitting to them when an outside source learns of it.

This isn’t possible in Europe, where the law requires unauthorized access to personal data to be reported to regulators within three days, and now the US is finally adopting a similar requirement – even if it’s not for your benefit …

Expand Expanding Close

ShadowVault macOS Stealer surfaces as the newest sophisticated Mac malware

ShadowVault macOS Stealer

Earlier this year, we saw a new malware designed for Macs called MacStealer that can compromise passwords, credit card numbers, crypto wallets, and more. After a second version of that popped up in April, a third advanced Mac malware called ShadowVault macOS Stealer has surfaced. Here’s what it can do and how to protect your Mac.

Expand Expanding Close

Why tips like ‘turn off your iPhone for five minutes’ don’t actually help users

Last week, Australia’s prime minister offered some security advice for iPhone users, suggesting that everyone should turn off their iPhone for five minutes every night. On the surface, this may seem like harmless advice for iPhone users, but the reality is quite a bit more nuanced.

In fact, such broad and generalized statements like this one can do a disservice to most people. Here’s why.

Expand Expanding Close

Turn off your iPhone for five minutes – Australian PM echoes cybersecurity advice

Turn off your iPhone | Low-key photo of older iPhone

Australia’s prime minister has echoed the advice of cybersecurity professionals, in recommending that you turn off your iPhone for five minutes every night.

No, it’s not so you can reduce your daily Screen Time to 23 hours and 55 minutes, but to stop any spyware that may be running in the background on your device …

Expand Expanding Close

Ring camera privacy breaches see Amazon fined – but only $6M

Ring doorbell | Apple

Ring camera privacy has been under fire since 2019, with two separate issues leading to a formal complaint to the Federal Trade Commission (FTC). That has now resulted in Ring owner Amazon being fined – but only $5.8M.

The company was also fined $25M for using Alexa data from children to train its algorithms, something the FTC said was clearly illegal …

Expand Expanding Close

US govt banned NSO’s Pegasus, but said to buy rival spyware Paragon Graphite

Site default logo image

The US government banned the use of NSO’s Pegasus spyware 18 months ago, but a new report today says that at least one government agency is using very similar malware from a rival company: Paragon Graphite.

Graphite reportedly has the same capabilities as Pegasus, and the US Drug Enforcement Administration (DEA) is said to be using it …

Expand Expanding Close

Apple alerted Pegasus spyware victims during first known use in a military conflict

Apple alerted Pegasus spyware victims | Photo of razor wire

Security researchers have documented the first known case of NSO’s Pegasus spyware being used in a military conflict. The hacks relate to the long-running military conflict between Armenia and Azerbaijan, over a region claimed by both countries.

The victims – who included a United Nations official, journalists, human rights advocates, and a former government minister – received alerts from Apple that their iPhones had been hacked …

Expand Expanding Close