Skip to main content

Privacy

See All Stories

Privacy is a growing concern in today’s world. Follow along with all our coverage related to privacy, security, what Apple and other companies are doing to keep your information safe, and what steps you can take to keep your information private.

TikTok algorithm

TikTok algorithm could be shared with US, as company fights growing bans

The infamous TikTok algorithm, which has been accused of taking users into dangerous rabbit holes, could be shared with US officials, says the company. TikTok owner ByteDance is hoping that the offer of transparency will fend off further bans of the Chinese video sharing app.

Not everyone is convinced that the offer goes far enough, however …

Expand Expanding Close

State of the Union address calls for Congress to pass antitrust and data privacy legislation

State of the Union address

President Biden’s second State of the Union address called on Congress to pass bipartisan legislation on both antitrust and data privacy issues.

His comments on the antitrust issue specifically referenced the need to prevent tech companies favoring their own products, an accusation frequently levelled at Apple

Expand Expanding Close

Apple highlights 8 ways to keep kids safer online with iPhone and iPad

In honor of Safer Internet Day, Apple has shared a list of features and tips to provide a more secure and private experience for kids on devices like iPhone and iPad. Along with 8 ways to stay safer, Apple has highlighted its dedicated educational hub for parents and families plus a new free Today at Apple session called “Your Kids and Their Devices.”

Expand Expanding Close

Pegasus spyware journalists had to take extreme measures to avoid becoming victims

Pegasus spyware journalists | Abstract image

Pegasus spyware journalists Laurent Richard and Sandrine Rigaud were the first to discover an extensive list of specific people being targeted by NSO’s clients. In working on the story, they said they had to take extreme privacy precautions to avoid their own devices being compromised.

One of the major uses of Pegasus has been to silence journalists working on revealing abuses by tyrannical governments, so the risk of their own devices being hacked without their knowledge was very real …

Expand Expanding Close

Anker admits to lying about Eufy security camera encryption; describes future plans

Eufy security camera encryption | Starlight camera shown

Anker has admitted that its statements about Eufy security camera encryption were not accurate. The smart home brand had previously stated that all video footage is end-to-end encrypted, but has now admitted there was an exception to this (which it has now fixed).

The company only finally came clean about the privacy breach after The Verge threatened to post a story about the company’s failure to answer its questions …

Expand Expanding Close

Pegasus spyware defended by NSO’s CEO, as researcher compares it to a nuclear weapon

Pegasus spyware | Nuclear explosion

Pegasus spyware – a zero-click way of remotely hacking an iPhone, and gaining access to all the personal data stored on it – has been defended by the company’s CEO. NSO chief exec said that the company had made “mistakes” in selling it to repressive governments, but claimed that it now sells Pegasus only to countries to whom the US sells weapons.

A security researcher said that the comparison was bogus, stating that a more reasonable comparison would be selling long-range nuclear missiles …

Expand Expanding Close

GoTo hack sees attackers get encrypted customer backups, and encryption key

GoTo hack | HTML for login

A GoTo hack related to the LastPass security breach was far worse than initially disclosed. The company, formerly known as LogMeIn, has revealed that attackers obtained not only encrypted backups of customer data, but also an encryption key for at least some of that data.

It’s a similar tale to the LastPass hack, which followed a similar path from low-key initial announcement to revelations that it was significantly worse than initially feared …

Expand Expanding Close

Class action privacy lawsuit #3 for Apple over iPhone data collection

Apple privacy ios 17 iphone

Apple is facing a third class action privacy lawsuit, after the company was found to be collecting analytics data from iPhone users even after they refused permission.

Apple insists that all developers ask permission to collect analytics data, but security researcher Tommy Mysk discovered last year that the company wasn’t playing by its own rules …

Expand Expanding Close

Apple account recovery needs an overhaul: Here’s a simple suggestion

Apple account recovery | Keyboard with Touch ID shown

There have been numerous examples of people losing a lifetime’s worth of photos after being locked out of their iCloud account. The Apple account recovery process often proves impossible, especially in cases where an iPhone has been stolen and its owner forced to unlock it.

Just yesterday there was a fresh example, where an unlocked iPhone was stolen at gunpoint by seemingly tech-savvy thieves …

Expand Expanding Close

Cambridge Analytica lawsuit settled for $725M; largest ever privacy class action

Cambridge Analytica lawsuit settled | Large office block

The long-running Cambridge Analytica lawsuit against Facebook parent company Meta has finally been settled. The social media company agreed to pay Facebook users a combined total of $725M for sharing their personal data with the now-bankrupt political consultancy.

The lawyers behind the case described the victory as a “historic” one, saying that it was the largest ever payout in a US privacy case …

Expand Expanding Close

Eufy camera security breach admission leaves many questions unanswered

Eufy camera security breach | Dual-camera doorbell cam

Brand owner Anker has finally responded to proof of a major Eufy camera security breach, but its official statement still leaves a great many questions unanswered.

The company has now admitted that it lied to users about all footage and images being stored locally, and never sent to the cloud, after a security researcher proved that this was not true …

Expand Expanding Close

Advanced Data Protection is a win for Apple and users alike [Comment]

Advanced Data Protection | Data center

One of the ironies of Apple’s long-running battle with the FBI over the agency’s desire for a security backdoor into iPhones is that it could have taken advantage of one which already existed: The fact that iCloud backups of iPhones didn’t use end-to-end encryption. Apple has now finally fixed this with Advanced Data Protection (ADP).

ADP not only closes a privacy hole which should have been closed a long time ago, but will also relieve Apple of the need to engage in any similar legal battles in future …

Expand Expanding Close

Apple SVP of Software Craig Federighi talks about latest iCloud security features in interview [video]

Apple SVP of Software Craig Federighi talks about latest iCloud security features in interview

Apple on Wednesday announced new iCloud security features to strengthen users’ privacy. This includes Advanced Data Protection with end-to-end encryption for all data saved in the cloud, as well as support for physical security keys. In an interview with WSJ’s Joanna Stern, Apple’s SVP of software, Craig Federighi, shared some details about what led the company to introduce such features to iCloud.

Expand Expanding Close

LastPass security breach did allow access to customer data after all, reveals company

LastPass security breach | Promo image

The LastPass security breach that occurred back in August did allow attackers to access customer data, says the company. It had previously said that no customer data was compromised.

LastPass owner LogMeIn stresses that customer passwords have not been compromised, as the company uses end-to-end encryption so that only the subscriber has the decryption key …

Expand Expanding Close

Twitter encrypted DMs will adopt open-source Signal protocol, suggests iOS code

Twitter encrypted DMs | Code spotted in iOS app

Elon Musk recently hinted that Twitter encrypted DMs were on the way, using full end-to-end encryption – and code spotted in the iOS app suggests that it will use the same E2E encryption standard as Signal.

Plans for E2E encryption of Twitter direct messages date back to at least 2018, and it appears that the company has resuscitated code written back then …

Expand Expanding Close

Massive Twitter data breach was far worse than reported, reveal security researchers

Massive Twitter data breach | Conceptual image of man with laptop in data center

A massive Twitter data breach last year, exposing more than five million phone numbers and email addresses, was worse than initially reported. We’ve been shown evidence that the same security vulnerability was exploited by multiple bad actors, and the hacked data has been offered for sale on the dark web by several sources.

It had previously been thought that only one hacker gained access to the data, and Twitter’s belated admission reinforced this impression …

Expand Expanding Close