Privacy

The vulnerability stemmed from the behavior of IndexedDB, a browser database used for storing large amounts of data.

The Citizen Lab's report details how surveillance vendors, operating as covert entities, piggybacked on legitimate cellular providers to access and exploit network weaknesses.

The discovery was revealed by UK technology minister Ian Murray in the House of Commons on Thursday, coinciding with Biobank's own confirmation of the data issue.

CyberScoop reports that House Republicans have introduced a draft national digital privacy bill aimed at establishing business and consumer data protections against exploitation for advertising and other purposes.

California-based marijuana delivery service Three Trees had data from at least 40,000 individuals leaked as a result of a misconfigured MongoDB database, Cybernews reports.

Chronicle functions by taking screenshots of the user's screen and feeding them to OpenAI's Codex agent to augment its memory with contextual data.

The UK National Cyber Security Centre's report highlights an increase to 100 nations having access to these hacking tools, up from 80 countries estimated last year.

The vulnerability, identified as CVE-2026-28950, was patched on April 22, 2026, in iOS 26.4.2 and iPadOS 26.4.2, as well as in iOS 18.7.8 and iPadOS 18.7.8.