This page collects WhisperX intelligence signals tagged #data privacy. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
A significant data breach affecting a major telecommunications provider in Malaysia has reportedly exposed the personal information of millions of subscribers. Leaked data, circulating on dark web forums and confirmed by cybersecurity researchers, includes names, NRIC numbers (Malaysian national identity card), address...
Recent internal directives from Vietnamese government agencies, shared by cybersecurity professionals via industry forums, indicate a significant expansion of data collection mandates under the guise of national security and cybercrime prevention. The intelligence points to a new policy requiring major e-commerce platf...
A recent internal leak from Meta's AI division exposed a proprietary tool, codenamed 'LlamaGuard,' designed to filter harmful content. While intended for safety, the leaked documents reveal the tool inadvertently processed and logged vast amounts of sensitive user data, including private messages and personal identifia...
Leaked internal documents from Meta (Facebook) expose a sophisticated, yet largely undisclosed, system for harvesting and processing user data using advanced AI. While Meta publicly emphasizes privacy controls, these documents detail how the company's AI models are trained on vast datasets, often including sensitive u...
WhisperX sources within a prominent European AdTech firm indicate a systematic cover-up of significant GDPR violations related to user tracking and data profiling. Internal communications reveal that the company intentionally obscured the extent of its data collection practices from regulatory bodies, particularly conc...
This podcast episode covers three distinct intelligence items. First, it details how prediction markets Polymarket and Kalshi are facilitating what the hosts term the 'depravity economy,' allowing users to place bets and potentially profit from geopolitical violence, specifically the U.S.-Israel strikes against Iran. T...
Meta Platforms is on track for a punishing weekly decline of over 12%, a sharp market reaction driven by a confluence of significant legal setbacks and the immense financial pressure of its aggressive artificial intelligence investments. This drop reflects a critical moment of investor scrutiny, where the company's lon...
GitHub is automatically enrolling users into a program that will use their private repositories to train its AI models, with a hard deadline of April 24 to opt out. The move, which has sparked immediate backlash, shifts the burden of consent onto developers, requiring them to actively navigate to their settings to prev...
The dating app OkCupid has settled with the Federal Trade Commission over allegations it secretly shared millions of user photos with a third-party facial recognition company. The FTC complaint claims OkCupid provided facial recognition firm Clarifai access to nearly three million user photos, alongside demographic and...
The Federal Trade Commission (FTC) has revealed that the popular dating platform OkCupid provided a facial recognition company with a dataset of approximately 3 million user photos. This disclosure highlights a significant data-sharing arrangement that occurred without explicit user consent for such a specific, biometr...
An analysis of leaked source code for Anthropic's Claude Code reveals the AI agent can exercise far more control over user systems and retains significantly more data than its contractual terms suggest. The tool lacks the persistent kernel access of a rootkit, but its capabilities extend well beyond what a typical user...
Ethereum co-founder Vitalik Buterin has detailed a highly customized, security-focused personal AI setup, emphasizing local processing and human-in-the-loop controls. In a new blog post, Buterin outlined his "local-first" AI stack, which is designed to minimize reliance on external cloud services and maintain greater d...
A lawsuit has leveled a direct and damaging allegation against Perplexity AI: its so-called 'Incognito Mode' is a 'sham.' The core claim is that the AI search engine, which encourages users to engage in detailed chat sessions, systematically shares the entirety of those conversations with third parties like Google and ...
A critical security vulnerability has been exposed in a codebase, allowing any authenticated user to access, modify, or delete the bank accounts of any other user. The flaw is a classic Insecure Direct Object Reference (IDOR) vulnerability, classified as CWE-639 (Authorization Bypass Through User-Controlled Key). The e...
Colorado is compelling private attorneys to sign a legally binding pledge, under penalty of perjury, that they will not use non-public court data to assist federal immigration authorities. The mandate, set to take effect March 30, 2026, ties access to the state's official Courts E-Filing system (CCE) directly to this c...
A low-severity but critical compliance vulnerability has been identified in a production codebase, where user email addresses are being logged in plaintext. The exposure occurs within the authentication flow, specifically in the `src/app/actions/auth.ts` file. Every failed login attempt triggers a console warning that ...
A federal court has dismissed a proposed class-action lawsuit accusing Popeyes Louisiana Kitchen of violating Illinois' stringent Biometric Information Privacy Act (BIPA) through employee fingerprint scans. The dismissal, however, is not a final victory for the fast-food giant. The court explicitly left the door open f...
For months, the developers of Quittr, an anti-pornography app designed to help users stop masturbating, ignored repeated warnings from multiple independent security researchers about a critical security vulnerability. The app's creators only moved to fix the flaw weeks after 404 Media initiated multiple inquiries for c...
LinkedIn is now facing two separate class-action lawsuits in California over its practice of scanning users' web browsers to detect which extensions they have installed. The complaints, filed Monday in the US District Court for the Northern District of California, allege the platform's data collection is invasive and u...
The digital conveniences of modern life—from Google Maps and fitness trackers to smart home cameras and voice assistants—are generating a vast, daily stream of personal data. According to legal expert Andrew Guthrie Ferguson, this data is creating a new, legally ambiguous frontier where law enforcement can potentially ...