Signal President Meredith Whittaker warns AI agents embedded in OSes are eroding end-to-end encryption's real-world security, despite its mathematical soundness. With root-like access to messages & data, they bypass E2EE isolation—urgent rethink needed! 🔒🤖❌
https://cyberinsider.com/signal-president-warns-ai-agents-are-making-encryption-irrelevant/

#AI #Privacy #Cybersecurity #Newz #Signal

Een goede oproep en brief van de AP.
https://www.autoriteitpersoonsgegevens.nl/documenten/brief-aan-minister-ez-over-digitale-soevereiniteit
#AP #digitalesoevereiniteit #ICT #overheid #cybersecurity #privacy

Today marks Data Privacy Day.
True data resilience starts with trust and control.

Privacy laws are rising as personal data volumes grow.

Without knowing what data you hold, where it lives, and why it exists, risk management becomes guesswork.

People understand mistakes happen - what matters is transparency, thoughtfulness, and ownership.

#DataPrivacyDay #PrivacyByDesign #Cybersecurity #DataGovernance #IdentitySecurity

Alt...

Today marks Data Privacy Day.

Daily Digest | Jan 28, 2026

Your daily dose of Privacy, Data Protection, AI & Cybersecurity news.

5 stories you should not miss.

Read more: https://www.nicfab.eu/daily-digest

#Privacy #AI #GDPR #Cybersecurity #TechLaw

WinRAR Path Traversal Bug Actively Exploited in New Campaign

Hackers are once again using a WinRAR flaw (CVE-2025-8088) to drop malware into Windows Startup folders for persistent access. This bug affects government, military, and financial sectors worldwide as attackers exploit unpatched software.

**This is important and urgent! If you use WinRAR, update it to version 7.13 or later from the official WinRAR, because hackers are sending malicious archive attachments and if you open them you are hacked. Also, be very careful with any RAR file attachments in emails, especially unexpected ones.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/winrar-path-traversal-bug-actively-exploited-in-new-campaign-c-7-n-b-8/gD2P6Ple2L

Critical Sandbox Escape in vm2 Library Allows Remote Code Execution

A critical sandbox escape vulnerability in the vm2 Node.js library (CVE-2026-22709) allows attackers to bypass Promise sanitization and execute arbitrary system commands on the host server.

**If you're using the vm2 library for Node.js, immediately update to version 3.10.3 to fix CVE-2026-22709 - version 3.10.1 is NOT safe. If you can't update right away, stop running any untrusted code through vm2 or switch to stronger isolation methods like containers.**
#cybersecurity #infosec #advisory #vulnerability
https://beyondmachines.net/event_details/critical-sandbox-escape-in-vm2-library-allows-remote-code-execution-k-0-8-e-l/gD2P6Ple2L

Happy Data Protection Day!

20th anniversary online event: https://www.coe.int/web/data-protection/data-protection-day

#Data #DataProtection #DataPrivacy #Privacy #InfoSec #InformationSecurity #CyberSecurity #Encryption #E2EE #Security #PasswordManager #SelfHost #SelfHosted #SelfHosting #Linux #DataSovereignty #CouncilOfEurope #CoE #EDPS #EuropeanDataProtectionSupervisor #DPD #DPD2026 #OpenPGP #PGP #GnuPG #GPG #VeraCrypt #Tomb #LUKS #AES #P2P #VPN #LetsEncrypt #Argon2 #Tor #XMPP #OMEMO #TorBrowser #Tails #PrivacyBadger #JShelter

Alt...

Data Protection Day banner.

Call your Florida lawmakers and tell them you oppose SB 1722, the Florida App Store Accountability Act!

https://www.miamitech.club/oppose-the-florida-app-store-accountability-act/

#Florida #Privacy #Cybersecurity #AgeVerification #DigitalRights #Tech #Apple #Google

RE: https://mastodon.social/@lfeurope/115961339791281533

Open source sustainability takes more than discussion—it takes coordinated action.

In 2025, Linux Foundation Europe advanced CRA readiness, cybersecurity baselines, digital sovereignty, and the open source commons as shared infrastructure.

Read more: https://linuxfoundation.eu/newsroom/linux-foundation-europe-2025-milestones-momentum-and-whats-next

#OpenSource #DigitalSovereignty #Cybersecurity

📰 Daily Digest | Jan 27, 2026

Your daily dose of Privacy, Data Protection, AI & Cybersecurity news.

5 stories you shouldn't miss.

👉 t.me/nicfabnews
👉 matrix.to/#/#nicfabnews:matrix.org

#Privacy #AI #GDPR #Cybersecurity #TechLaw

Microsoft gave the FBI BitLocker recovery keys to unlock encrypted Windows PCs 🔑
The company says it complies with valid warrants — but unlike Apple or Meta, it can access stored keys 🧩
Raises major privacy & trust concerns over default cloud key storage ⚖️

🔗 https://www.forbes.com/sites/thomasbrewster/2026/01/22/microsoft-gave-fbi-keys-to-unlock-bitlocker-encrypted-data/

#TechNews #Cybersecurity #Privacy #Encryption #DataSecurity #Surveillance #Microsoft #FBI #Infosec #DigitalRights #Transparency #Cloud #BigTech #Security #CivilLiberties #Windows #Bitlocker #Apple #Meta #Google

Ireland drafts new surveillance bill expanding police powers to intercept encrypted messages 🔐
Includes legal basis for spyware use & device scanning tech 🕵️‍♀️
Civil rights groups warn of normalization of extraordinary powers ⚖️

🔗 https://www.theregister.com/2026/01/21/ireland_wants_to_give_police/

#TechNews #Privacy #Surveillance #Spyware #Encryption #HumanRights #Law #Cybersecurity #PoliceTech #CivilLiberties #EU #Government #DataProtection #Security #DigitalRights #Ireland #Irish

Released v1.3.3. of #Yaralyzer, my surprisingly popular tool for visualizing YARA rule matches with colors (a lot of colors).

1. --export-png images lets you export images of the analysis

2. almost all command line options (including multi argument ones like --yara-rules-dir) can be permanently set via environment variables or .yaralyzer file

3. couple of small bug fixes and debugging related command line options

You can try it on the web here: https://yaratoolkit.securitybreak.io/
(I didn't build this website, Thomas Roccia from Microsoft just integrated Yaralyzer into his existing site)

- Github: https://github.com/michelcrypt4d4mus/yaralyzer
- Pypi: https://pypi.org/project/yaralyzer/
- on macOS you can also get it with #Homebrew by installing Pdfalyzer: brew install pdfalyzer

#ascii #asciiArt #blueteam #cybersecurity #detectionEngineering #DFIR #forensics #FOSS #GPL #hacking #infosec #KaliLinux #maldoc #malware #malwareAnalysis #malwareDetection #openSource #pypi #python #redteam #reverseEngineering #reversing #Threatassessment #threathunting #YARA #YARArule #YARArules

Alt...

screenshot of yaralyzer output

🚨 Important privacy & security update — New developments highlighted in our latest report may impact user safety, data protection, or system behavior. Staying informed is essential to reduce risk and avoid potential issues.

If you care about digital privacy, security, and transparency, don’t miss this.

👉 https://digital-escape-tools-phi.vercel.app/2026/01/news22.html

#TechNews #CyberSecurity #Privacy #DigitalSafety #OpenSource #SecurityUpdates

RE: https://mastodon.social/@FirewallDragons/115962131540094840

Thank you to @FirewallDragons for covering the AI age verification bill being considered in the Florida Legislature! Between this and the Florida App Stores Accountability Act, we have our work cut out for us.

If you live in Florida, please call your state legislators and tell them you oppose these age verification bills!

#Florida #Privacy #Cybersecurity #AgeVerification #InfoSec #DigitalRights #Miami

Thank you to @techlore for covering the extremely concerning age verification bills being considered in Florida. We have 47 days to stop this. Call your state legislators and tell them you oppose these bills!

https://www.youtube.com/watch?v=m__kJCz2oS0

#Techlore #Privacy #Florida #Miami #Cybersecurity #Tech #AgeVerification #DigitalRights #InfoSec

Microsoft handed the government encryption keys for customer data

https://www.theverge.com/news/867244/microsoft-bitlocker-privacy-fbi

#tech #technology #security #cybersecurity #privacy #Microsoft #FBI #bitlocker

"Early last year, the FBI served Microsoft with a search warrant, asking it to provide recovery keys to unlock encrypted data stored on three laptops. Federal investigators in Guam believed the devices held evidence that would help prove individuals handling the island’s Covid unemployment assistance program were part of a plot to steal funds.

The data was protected with BitLocker, software that’s automatically enabled on many modern Windows PCs to safeguard all the data on the computer’s hard drive. BitLocker scrambles the data so that only those with a key can decode it.

It’s possible for users to store those keys on a device they own, but Microsoft also recommends BitLocker users store their keys on its servers for convenience. While that means someone can access their data if they forget their password, or if repeated failed attempts to login lock the device, it also makes them vulnerable to law enforcement subpoenas and warrants.

In the Guam case, it handed over the encryption keys to investigators."

https://www.forbes.com/sites/thomasbrewster/2026/01/22/microsoft-gave-fbi-keys-to-unlock-bitlocker-encrypted-data/

#CyberSecurity #Encryption #Microsoft #FBI #Privacy #BitLocker

Forbes: Microsoft Gave FBI Keys To Unlock Encrypted Data, Exposing Major Privacy Flaw

The tech giant said it receives around 20 requests for BitLocker keys a year and will provide them to governments in response to valid court orders. But companies like Apple and Meta set up their systems so such a privacy violation isn’t possible.

https://www.forbes.com/sites/thomasbrewster/2026/01/22/microsoft-gave-fbi-keys-to-unlock-bitlocker-encrypted-data/

#privacy #cybersecurity #microsoft #bitlocker

Alt...

Microsoft Gave FBI Keys To Unlock Encrypted Data, Exposing Major Privacy Flaw The tech giant said it receives around 20 requests for BitLocker keys a year and will provide them to governments in response to valid court orders. But companies like Apple and Meta set up their systems so such a privacy violation isn’t possible.

https://winbuzzer.com/2026/01/23/microsoft-gave-fbi-bitlocker-keys-breaking-apple-privacy-stance-xcxwbn/

Microsoft Gave FBI BitLocker Keys, Breaking from Apple Privacy Stance

#BitLocker #Microsoft #Security #Encryption #Privacy #Cybersecurity #DataPrivacy #EndToEndEncryption #Law #Windows #UserPrivacy #NationalSecurity #PrivacyProtection

Microsoft reportedly gave the FBI BitLocker recovery keys to unlock encrypted laptops in a Guam fraud probe. 🔐

I’m genuinely stunned. 🤯 Encryption should protect users — not defer to cloud-stored keys that can be handed over on demand. ⚠️

This raises deep concerns about trust, what “secure by default” means. 🧩

🔗 https://techcrunch.com/2026/01/23/microsoft-gave-fbi-a-set-of-bitlocker-encryption-keys-to-unlock-suspects-laptops-reports/

#TechNews #Microsoft #FBI #Privacy #Encryption #BitLocker #Cybersecurity #DataSecurity #DigitalRights #BigTech #UserControl #Cloud #Security #Surveillance

🌀 Tor Browser 15.0.3 released with key security and privacy updates. 🔒
NoScript updates are now hosted directly on Tor’s infrastructure, improving update reliability and autonomy. 🧩
Enhanced protections reduce fingerprinting risks and tighten extension control. 🕵️

@torproject

🔗 https://blog.torproject.org/new-release-tor-browser-1503/

#TechNews #Privacy #Security #OpenSource #DataProtection #Encryption #Cybersecurity #Anonymity #Transparency #Accountability #WebSafety #Internet #Linux #Software #Mozilla #Tor #Browser #Firefox

Cybersecurity regulation is changing open source.
The 2026 Cyber Resilience Survey explores awareness and readiness around the Cyber Resilience Act (CRA).

👉 Take the 10-minute survey: https://www.research.net/r/ZSXDYN7

#CyberResilienceAct #OpenSource #CyberSecurity

🚨 A new privacy & security–related development is raising concerns for users and administrators, highlighting once again how fast-moving changes in tech can introduce unexpected risks.

Staying informed and cautious is key as the situation evolves.
👉 https://digital-escape-tools-phi.vercel.app/2026/01/news19.html

#TechNews #Privacy #CyberSecurity #DigitalRights #SecurityAwareness

One year since DocumentDB opened its codebase! In its time as a Linux Foundation project, the community has driven new features, integrations and adoption across industries. Excited for what the next year of open development brings.

Contribute here: https://github.com/documentdb/documentdb

#OpenSource #DocumentDB
Strategy #Cybersecurity

France’s top court orders VPNs like NordVPN, Surfshark & ProtonVPN to block pirate streaming sites. ⚖️
Ruling treats VPNs as “technical intermediaries,” expanding EU anti-piracy powers. 🔒
Raises debate on privacy vs. rights enforcement. 🌍

🔗 https://troypoint.com/france-orders-popular-vpns-to-block-pirate-sites/

#TechNews #VPN #Privacy #Censorship #Cybersecurity #France #EU #Regulation #Streaming #DataProtection #OpenInternet #Policy #Innovation #Rights #Digital

Signal founder Moxie Marlinspike launches Confer, an end-to-end encrypted AI assistant. 🔒
Cloud-based models ensure only users access unscrambled data, blocking corporate surveillance of prompts and chats. ⚖️

This counters Big Tech's data extraction for ads and training, bolstering user rights. 📊

@signalapp

🔗 https://time.com/7346534/signal-confer-ai-moxie-marlinspike/

#TechNews #AI #Privacy #Encryption #Security #BigTech #Data #UserRights #AIethics #Cybersecurity #Innovation #Freedom #DigitalRights #OnlineSafety

Open Rights Group are supporting Siân Berry's MPs EDM calling on the government to reduce its reliance on US tech companies. If you are in the UK, can you write to your MP asking them to support this EDM. Link is here: https://action.openrightsgroup.org/protect-britain’s-digital-backbone-—-ask-your-mp-act @openrightsgroup #cybersecurity #digitalsoverignity

Hundreds of millions of Bluetooth audio devices need urgent patches ⚙️
Researchers found flaws in Google’s Fast Pair protocol letting attackers link, listen, or track users—even iPhone owners 📡
Highlights tension between seamless UX and user privacy 🔒

🔗 https://www.wired.com/story/google-fast-pair-bluetooth-audio-accessories-vulnerability-patches/

#TechNews #Privacy #CyberSecurity #DataSecurity #Bluetooth #Android #iPhone #Google #Vulnerability #Security #UserRights #Tech #OpenSource #Tracking #SoftwareUpdate #Audio #Music #Musica #Devices #Apple #iPhone

Google’s Gemini A.I. now scans your entire inbox to “help” you summarize, reply & organize. 📬
That’s not assistance — that’s surveillance wrapped in productivity branding. 🔍

If your emails need an opt‑out clause, maybe the feature shouldn’t exist by default. ⚠️

🔗 https://www.nytimes.com/2026/01/15/technology/personaltech/gmail-gemini-ai-email-inbox.html

#TechNews #Privacy #AI #Google #Gmail #Surveillance #Data #Security #UserRights #BigTech #DigitalEthics #OnlinePrivacy #TechPolicy #Accountability #AIethics #Cybersecurity #Gemini #Email

Some of the malware-infested extensions went undetected for the past 6 years. Are you using any of them?

https://www.pcworld.com/article/3037666/840000-users-hit-by-malicious-browser-extensions-uninstall-these-asap.html

#CyberSecurity

The Florida App Store Accountability Act has been introduced to the state legislature. This bill would require age verification to use the app store.

If you care about digital privacy, call your state reps and tell them you oppose SB 1722!

https://reclaimthenet.org/florida-app-store-accountability-act-privacy-first-amendment

#Florida #Privacy #AppStoreAccountabilityAct #Cybersecurity #InfoSec #DigitalRights

The 25th Scrolls newsletter is out! Would have gotten it out last Friday but some holiday stuff got in the way. In any case, it’s here now! Check it out for the usual #indieweb, #fediverse and #infosec / #cybersecurity stuff.

https://shellsharks.com/scrolls/scroll/2026-01-21

Also worth mentioning... I usually publish these announcements from my @shellsharks@malici.ous.computer account but that GtS instance needs to be migrated at the moment so instead I'm posting from here 😁.

RE: https://mastodon.social/@Tutanota/115927789342211046

Super grateful to @Tutanota for sharing our experience of trying to bring digital rights advocacy to a local level!

Tuta Mail has been the secure, reliable foundation from which we could build this group! Important that we started on the right foot.

#Tuta #Florida #Privacy #Cybersecurity #DigitalRights #Tech #Miami

Tuta » 🌐 2026-01-20
@Tutanota@mastodon.social

Age verification laws are being introduced everywhere - including, Florida. 🔞🇺🇸

For Joseph, not knowing his own state had introduced age verification,  was the final push he needed to take action and do something. So he started the Miami Tech Enthusiast Club @mtec

Don't miss this interview with him to find out why he started the club, its aims & goals, & why he chose Tuta Mail. 💪🔐

👉 https://tuta.com/blog/why-mtec-uses-tuta-mail-interview

Alt...

"When age verification went into effect in Florida and I didn't know. That was my point. I could no longer afford to be uninformed about what was happening in my state. Sure it's not going to affect New York or California, but it's already affecting me, and that was what provided the impetus to know that we had to step up our game.” Joseph, Founder of Miami Tech Enthusiast club

📬 NicFab Newsletter #4 is out!
Weekly coverage of Privacy, Data Protection, AI Regulation, Cybersecurity & Tech Law — curated for legal professionals, DPOs and privacy officers.

🔗 Read: https://www.nicfab.eu/en/newsletter/2026-01-20-issue-04/

📩 Subscribe for free: https://www.nicfab.eu/en/pages/newsletter/#subscribe-now

#Privacy #DataProtection #GDPR #AI #artificialintelligence #AIAct #Cybersecurity #AIRegulation #TechLaw

"Less than half of the security teams using AI agents are confident they have appropriate guardrails to deploy them."

What are the security risks of deploying AI agents?
Learn more: https://cacm.acm.org/news/the-security-risks-of-deploying-ai-agents/

#technews #AIagents #cybersecurity