The realm of privacy and security has been particularly active over the past month, with governments, corporations, and hackers all making moves that affect how personal data is handled. From the Department of Justice asking Apple and Google for data on 100,000 users of a car app, to the EU calling VPNs a loophole that needs closing, these stories highlight the ongoing tension between security measures and individual privacy rights. Below is a detailed breakdown of the most significant developments reported on the Privacy & Security beat.
DOJ Seeks Data on 100,000 Users of a Car App
On May 15, 2026, it was reported that the Department of Justice is requesting Apple and Google to hand over data on approximately 100,000 users of the EZ Lynk app. The requests are tied to a lawsuit alleging that EZ Lynk helped users bypass their cars' emissions controls. This massive data demand raises questions about the scope of government surveillance and the extent to which tech companies are compelled to cooperate with law enforcement.
Venmo Finally Fixes Its Most Glaring Privacy Issue
Journalists and privacy advocates have long criticized Venmo for exposing transaction details by default. On May 13, 2026, the app announced that it will soon make hidden transactions an onboarding option, addressing a major privacy flaw. This change allows users to opt-in to private transactions from the start, rather than having to manually adjust settings later.
Trump's Golden Dome Projected at $1.2 Trillion
Although categorized under Politics, the Trump administration's proposed Golden Dome missile defense system has privacy and security implications due to its massive data collection requirements. Congress has allocated only $24 billion so far, leaving a staggering funding gap. The system would rely on extensive sensors and data sharing across government agencies.
OpenAI's 'Daybreak' Launches, Rivaling Anthropic's Project Glasswing
On May 12, 2026, OpenAI unveiled 'Daybreak,' an AI system designed to be less intimidating than Anthropic's Project Glasswing. This launch signals the ongoing competition in the AI space, where privacy and security concerns around model transparency and data usage continue to grow.
Government Page on AI Vetting Deals with Big Tech Missing
A government website page detailing AI vetting agreements with Google, xAI, and Microsoft has mysteriously disappeared. The page originally stated that 'these agreements support information-sharing,' but its removal raises concerns about lack of transparency in how AI systems are being evaluated for security.
FCC's Robocall Solution Could Create a Bigger Privacy Problem
The FCC has proposed new rules to combat robocalls, but critics warn that the measures could compromise privacy by requiring carriers to collect and share more personal data. The move could also effectively kill burner phones, as stricter identification requirements are enforced.
EU Calls VPNs a 'Loophole' in Age Verification Laws
On May 8, 2026, the European Union labeled VPNs as a loophole that 'needs closing' in age verification legislation. This stance signals a growing push to restrict tools that can bypass geo-restrictions and age checks, potentially leading to broader surveillance of internet traffic.
Pentagon Releases New UFO Videos
The Trump administration released several Pentagon videos featuring unidentified flying objects. While not directly a privacy story, the videos were categorized under Privacy & Security on the portal, likely due to the secrecy and transparency issues surrounding government data.
Canvas Hacked During Finals Week
The educational platform Canvas was hacked by the notorious group ShinyHunters during finals week, affecting over 9,000 schools. Students experienced disruptions and data exposure, highlighting the vulnerability of edtech systems and the need for stronger security protocols.
Flipper Zero App Fights Surveillance Pricing
A developer built an app that uses a Flipper Zero device to detect and counteract surveillance pricing in stores. Electronic shelf labels were found to be surprisingly easy to hack, offering consumers a way to fight back against dynamic pricing based on personal data.
Pornhub Expands UK Access via Apple's Age Verification
Pornhub announced that it will once again allow new users in the UK to access its content, thanks to Apple's new age verification system. This development shows how private companies are stepping in to provide age verification while also raising data collection concerns.
Utah's New Age Verification Law Targets VPNs
Utah's law requiring age verification for online services targets the use of VPNs to bypass such checks. Privacy advocates warn that the law sets an unworkable precedent, as it forces companies to collect more personal information to verify users' locations.
Meta and TikTok Get Data from State Healthcare Sites
A report revealed that Meta and TikTok are receiving user data from state healthcare websites through tracking pixels. This practice raises serious health privacy issues, as sensitive medical information could be shared without explicit consent.
Con Artists Pose as ICE Agents on WhatsApp
Scammers are impersonating ICE agents and using WhatsApp to trick vulnerable people into sending money. As mass deportations continue, these scams have become more frequent, exploiting fear and lack of digital literacy.
Trump Administration Closes WhatsApp Backdoor Investigation
An investigation into an alleged backdoor in WhatsApp was closed by the Trump administration. Meta denies that content moderators can read encrypted messages, but the closure raises questions about the government's commitment to encryption security.
Three Men Arrested in SMS Blaster Scam
Authorities arrested three men behind an SMS Blaster scam that hijacked thousands of phones. The device could disrupt network connections and even block 911 calls, demonstrating the physical dangers of cybercrime.
X Money Rollout Expected Soon
Elon Musk's X platform is reportedly accelerating its 'everything app' vision with the launch of X Money. Financial transactions integrated into a social platform introduce new privacy and security challenges regarding payment data and fraud protection.
Palantir Debuts Chore Coat Merch
Palantir introduced a 'chic chore coat' as merchandise, with the company stating 'We want millions of people wearing Palantir merch around the world.' While a branding stunt, it reflects the increasing normalization of surveillance companies in popular culture.
JetBlue Sued for Surveillance Pricing
JetBlue is facing a lawsuit alleging that it increases ticket prices based on personal data collected from customers. The airline denies using surveillance pricing, but the case highlights the growing concern over how travel companies monetize user information.
Ransomware Negotiator Pleads Guilty to Working Both Sides
A Florida-based ransomware negotiator pleaded guilty to being a double agent, helping the BlackCat/ALPHV group maximize payouts while pretending to help victims. This case underscores the ethical complexities in the cybersecurity industry.
These stories, spanning a few weeks in 2026, illustrate the constant evolution of the privacy and security landscape. From government overreach to corporate data practices, each development reinforces the need for vigilance and informed consent in the digital age.
Source: Gizmodo News