Tag: internet

Largest Data Breach in History: *16 Billion* Login Credentials Exposed in Databases

Security researchers have uncovered potentially the largest data breach in history, comprising an astounding 16 billion login credentials, which include Apple accounts.

9to5Mac reports that a team of security researchers has stumbled upon a massive trove of stolen login credentials, exposing an unprecedented 16 billion records, including Apple accounts. The discovery, which researchers describe as “one of the largest data breaches in history,” has sent shockwaves through the cybersecurity community and raised serious concerns about the potential for widespread account takeovers, identity theft, and highly targeted phishing attacks.

The researchers, from the cybersecurity firm Cybernews, initially found a database containing 184 million records sitting unprotected on a web server last month. However, as they delved deeper, they realized that this was just one of many unsecured databases full of private information. Further investigation revealed an additional 29 datasets, each containing tens of millions to over 3.5 billion records. In total, the researchers uncovered a staggering 16 billion records, making this one of the biggest stolen login discoveries of all time.

What sets this breach apart from others is the freshness and organization of the data. The researchers emphasized that these are not just recycled old breaches, but rather “fresh, weaponizable intelligence at scale.” The neatly structured data, which includes URLs, usernames, and passwords, points to infostealers as the likely source. Infostealers are a type of malware specifically designed to collect login credentials in this exact format.

The implications of this breach are far-reaching and deeply concerning. With access to such a vast number of login credentials, cybercriminals can easily carry out account takeovers, steal identities, and launch highly targeted phishing campaigns. Apple accounts, which are among the exposed credentials, are particularly worrisome, as they can be used to access a wide range of sensitive information and services, including iCloud, Apple Pay, and the App Store. Other logins reportedly included in the massive datasets include Google, Facebook, instagram, Amazon, and many other popular web services.

Keep reading

IDF Mandates Pre-Approval for Reporting Missile Strikes, Including on Social Media and Online Platforms

A new set of censorship rules issued by the Israel Defense Forces is raising alarms over media freedom and public transparency.

Brigadier-General Kobi Mandelblit, Israel’s chief censor, declared on Wednesday a mandate requiring prior approval for any reporting on where missiles or drones have struck, no matter the platform or location of publication.

According to the statement, “any person who prints or publishes printed matter or a publication regarding the location of a strike or hit by enemy war materiel, including missiles of any kind and UAVs, in the media or online (including social media, blogs and chats, etc.)” must now submit that material to the military censor for approval before it is released.

This directive applies to both domestic and international reporting, online and offline.

Keep reading

Musk says he is providing Iran with Starlink as regime restricts internet

Elon Musk signaled late Friday night that he is providing Iranians with Starlink satellite internet after conservative analyst Mark Levin asked him to turn the service on in Iran during Israel‘s conflict with the country.

“The beams are on,” Musk said in a response to Levin’s request on X.

Levin’s initial post argued that if Starlink is turned on in the country, “Musk can put the final nail in the coffin of the Iranian regime.” Starlink is Musk’s satellite internet service.

Iran restricted internet access for millions of people following Israel’s strike on the country. Internet usage in the country heavily declined after the restrictions were issued, according to the internet monitoring group Netblocks. There hasn’t been a complete block of traffic, however, as Levin’s post suggested.

Keep reading

Stripe And Substack Demand Authors’ Financial Details

Financial privacy is a right under the Constitution, as is free speech.  

Under the guise of “credit review,” Stripe is now rolling out a requirement that appears to target conservative or “anti-vax” Substack authors. Stripe is requiring that these authors provide all of their current and historic financial records associated with the bank account into which Stripe deposits Substack subscriber payments (after taking 10% off the top for Substack and 3% for Stripe). Stripe already has information concerning this bank account (including deposits from Stripe), as we have been doing business with Stripe via this account for over two years.

If I or anyone else agree to these new terms, this newly implemented arbitrary, capricious and overreaching requirement will provide Stripe with complete records of all financial transactions associated with this account. Consequently, this will provide Stripe with comprehensive information on all of my customers, patients, and clients, all of my travel (historic and planned), all of my purchases, and any donations (and donor information).

This information from my account and those of any others who comply with this demand can be hacked or sold, provided to the US Government, used to fuel predictive algorithms (AI), used to derive insights into my political orientation, weaponized against me by press or other hostile actors, or used to support future social credit score-based restrictions.

Stripe has a history of financially deplatforming (or debanking) for political reasons, including removing support for Donald Trump’s presidential campaign. Despite its relatively recent entry into the financial transaction business, Stripe has become a major global financial organization, and processed one $1 trillion in payments during 2023, and is now expanding its credit charge program

Keep reading

Senate Pushes Bill That Could End Private Messaging

Under the pretext of strengthening measures against child exploitation online, a controversial Senate bill is resurfacing with provisions that privacy advocates say would gut critical internet protections and compromise the security and privacy of all citizens.

Known as the STOP CSAM Act of 2025 (S. 1829), the legislation is being criticized for using broad language and vague legal standards that could severely weaken encryption and open the floodgates for content takedowns, including legal content, across a wide range of online services.

We obtained a copy of the bill for you here.

The bill’s stated aim is to curb the spread of child sexual abuse material, a crime already strictly prohibited under federal law. Current regulations already compel online platforms to report known instances of such material to the National Center for Missing and Exploited Children, which coordinates with law enforcement.

However, S. 1829 goes well beyond this existing mandate, targeting a wide spectrum of internet platforms with new forms of criminal and civil liability that could penalize even the most privacy-conscious and compliant services.

The scope of the legislation is sweeping. Its provisions apply not only to large social media platforms but also to private messaging apps, cloud storage services, and email providers.

Keep reading

Britain Launches Cross-Border Censorship Hunt Against 4chan

The UK government has taken another aggressive step in its campaign to regulate online speech, launching formal investigations into the message board 4chan and seven file-sharing sites under its far-reaching Online Safety Act.

But this is more than a domestic crackdown; it is a clear attempt to assert British speech laws far beyond its borders, targeting platforms that have no meaningful presence in the UK.

The law, which came into full force in April, gives sweeping powers to Ofcom, the UK’s communications regulator, to demand that websites and apps proactively remove undefined categories of “illegal content.”

Failure to comply can trigger massive fines of up to £18 million ($24M) or 10 percent of global revenue, criminal penalties for company executives, and site-wide bans within the UK.

Now, Ofcom has set its sights on 4chan, a US-hosted imageboard owned by a Japanese national. The site operates under US law and has no physical infrastructure, employees, or legal registration in Britain. Nonetheless, UK regulators have declared it fair game.

“Wherever in the world a service is based if it has ‘links to the UK’, it now has duties to protect UK users,” Ofcom insists.

Keep reading

Inside the secret LAPD club of Gavin Newsom’s nightmares… and their evidence a riot crisis was waiting to happen

Los Angeles cops have a private chatroom — and California‘s Democratic leaders won’t like what they’re saying.

The Instagram group ‘Defend the LAPD’ allows officers and commanders to talk freely about what’s really going on in the streets of America’s second-biggest city, where cops clash daily with anti-government rioters.

The Daily Mail gained exclusive access to the 8,500-member club and spoke to its organizers — and the views they presented were a stark rebuke to Gov Gavin Newsom and other leaders of the Democrat-run state.

Despite what their bosses say, LAPD officers broadly support the Trump administration’s deployment of the National Guard to protect federal buildings amid a wave of sometimes violent protests against immigration raids, says the group.

Members also expressed alarm at LA Mayor Karen Bass, a Democrat, for allegedly taking command of their control room, delaying the deployment of officers, and putting federal agents and the public in danger.

They also accused media outlets of one-sided coverage of the protests, by focussing on heavy-handed policing while overlooking the threat that some violent activists posed to cops and the public.

More broadly, they say the city has ‘quietly defunded’ the LAPD since the George Floyd protests of 2020, and that today’s force is understaffed, underresourced, and cannot handle the crisis exploding on the streets.

The revelations come as US Marines head to Los Angeles, as part of a federal strategy to quell the protests against immigration raids, which are a signature effort of President Donald Trump’s second term.

Keep reading

European Union Unveils International Strategy Pushing Digital ID Systems and Online Censorship

As part of a broader campaign to expand its global influence in the digital era, the European Union has introduced a sweeping International Digital Strategy that leans heavily on centralized infrastructure, digital identity systems, and regulatory frameworks that raise significant questions about online freedoms and privacy.

The European Commission, in announcing the initiative, stressed its intent to collaborate with foreign governments on a range of areas, prominently featuring digital identity systems and what it calls “Digital Public Infrastructure.”

These frameworks, which have garnered widespread support from transnational institutions such as the United Nations and the World Economic Forum, are being marketed as tools to streamline cross-border commerce and improve mobility.

However, for privacy advocates, the strategy raises red flags due to its promotion of interoperable digital ID programs and a surveillance-oriented model of governance under the guise of efficiency.

According to the strategy documents, one of the EU’s objectives is to drive mutual recognition of electronic trust services, including digital IDs, across partner nations such as Ukraine, Moldova, and several Balkan and Latin American countries. This aligns with the EU’s ambitions to propagate its model of the Digital Identity Wallet, an initiative that privacy campaigners warn could entrench government control over personal data.

The strategy also outlines measures to deepen cooperation on global digital regulation, including laws that govern online speech.

While framed as promoting “freedom of expression, democracy, and citizens’ privacy,” these efforts are closely tied to the enforcement of the Digital Services Act (DSA), which mandates extensive platform compliance and systemic risk monitoring.

Keep reading

Irish Government Admits No Free Speech Impact Assessment for “Misinformation” Laws

Irish authorities have moved ahead with extensive legislation aimed at tackling “misinformation,” yet they have not examined whether such measures might undermine free expression. The Department responsible for communications, media, and environmental policy has acknowledged that no analysis has been carried out to assess the consequences for free speech.

Responding to a media query from Gript, the Department of the Environment, Climate and Communications plainly admitted: “The Department has not undertaken any analysis or research on the potential impact of mis/disinformation laws on free speech.”

Despite this lack of evaluation, the government continues to defend its strategy. Speaking outside Government Buildings, Taoiseach (Prime Minster) Micheál Martin insisted the effort to curb online falsehoods is justified, arguing that some speech doesn’t merit protection. “It’s not freedom of speech, really, when it’s just a blatant lie and untruth, which can create a lot of public disquiet, as we have seen,” he said.

Martin downplayed the idea that regulating disinformation represents any serious threat to expressive freedoms, stating: “There are very strong protections in our constitution and in our laws and freedom of speech.” He added, “I wouldn’t overstate the impact on clamping down on blatant lies online as a sort of incursion or an undermining of freedom of speech.”

When pressed on whether the absence of impact studies was irresponsible, Martin referenced a recent RTÉ radio segment about social media claims related to a shooting in Carlow. “There was a researcher on identifying the blatant misinformation on truths and lies surrounding what happened in Carlow,” he said. “So I do think it’s absolutely important that government focuses on this issue.”

Keep reading

State criminalizes political memes, gets sued by popular satire site

The Babylon Bee, a popular satire website, has filed a lawsuit against the state of Hawaii challenging a state law that censors online content, “including political satire and parody.”

An announcement from the ADF, which is representing the publication as well as a Hawaii resident in the case, said, “The law violates fundamental free speech and due process rights by using vague and overbroad standards to punish people for posting certain political content online, including political memes and parodies of politicians.”

The ADF explained Gov. Josh Green signed S2687 into law in July 2024, and it bans the distribution of “materially deceptive media” that portrays politicians in a way that risks harming “the reputation or electoral prospects of a candidate.”

Further, the state forces satire artists to post disclaimers, destroying the purpose of satire.

“Hawaii’s war against political memes and satire is censorship, pure and simple,” said ADF lawyer Mathew Hoffmann. “Satire has served as an important vehicle to deliver truth with a smile for centuries, and this kind of speech receives the utmost protection under the Constitution. The First Amendment doesn’t allow Hawaii to choose what political speech is acceptable, and we are urging the court to cancel this unnecessary censorship.”

Seth Dillon, chief of the Bee, said, “We’re used to getting pulled over by the joke police, but comedy isn’t a crime. The First Amendment protects our right to tell jokes, whether it’s election season or not. We’ll never stop fighting to defend that freedom.”

Keep reading