Apple’s Unpatched ‘Hide My Email’ Flaw Has Exposed User Identities for Over a Year
An unpatched vulnerability in Apple's Hide My Email feature can expose users' real email addresses behind their iCloud+ anonymization aliases, researcher Tyler Murphy and 404 Media have confirmed....
Instagram Logic Bug Exposed Unredacted Emails and Phone Numbers for Any Account — Including Mark Zuckerberg’s
A critical logic flaw in Instagram's web-based password reset flow exposed fully unredacted email addresses and phone numbers for any account by username, including high-profile accounts. Meta patched...
Android 16 ‘Tiny UDP Cannon’ Flaw Lets Malicious Apps Bypass VPN and Expose Your Real IP Address
A newly disclosed Android 16 design flaw dubbed 'Tiny UDP Cannon' allows any app with basic permissions to bypass VPN lockdown mode and reveal the device's real IP...
Apple Patches iOS Notification Flaw (CVE-2026-28950) That Let the FBI Read Deleted Signal Messages
Apple has shipped iOS 26.4.2 to fix CVE-2026-28950, a notification-logging flaw that let forensic investigators recover Signal message previews long after the app was uninstalled. Signal has praised...
Meta’s recent disclosure on ZeroClick WhatsApp spyware campaign
Meta-owned WhatsApp confirmed the disruption of a sophisticated spyware campaign targeting journalists and civil society members. This revelation underscores the ongoing challenges in cybersecurity and the misuse of...
WhatsApp Introduces Secret Code Feature for Enhanced User Privacy
Explore WhatsApp's latest privacy feature, Secret Code, offering users an additional layer of protection for sensitive conversations. Learn how this feature, coupled with Chat Lock, enhances privacy by...
The Use of Invasive Spyware to Suppress Civil Society: A Recent Incident in Serbia
Learn about the use of invasive spyware in Serbia and its impact on civil society. Discover the work of organizations like Access Now, SHARE Foundation, and the Citizen...