Summary:

• Signal’s desktop app stores encryption keys for chat history in plaintext, making them accessible to any process on the system
• Researchers were able to clone a user’s entire Signal session by copying the local storage directory, allowing them to access the chat history on a separate device
• This issue was previously highlighted in 2018, but Signal has not addressed it, stating that at-rest encryption is not something the desktop app currently provides
• Some argue this is not a major issue for the “average user”, as other apps also have similar security shortcomings, and users concerned about security should take more extreme measures
• However, others believe this is a significant security flaw that undermines Signal’s core promise of end-to-end encryption
• A pull request was made in April 2023 to implement Electron’s safeStorage API to address this problem, but there has been no follow-up from Signal

Summary:

• Colorado passes first-in-nation law to protect privacy of biological or brain data, which is similar to fingerprints if used to identify people.
• Advances in artificial intelligence have led to medical breakthroughs, including devices that can read minds and alter brains.
• Neurotechnology devices, such as Emotiv and Somnee, are used for health care and can move computers with thoughts or improve brain function and identify impairments.
• Most of these devices are not regulated by the FDA and are marketed for wellness.
• With benefits come risks, such as insurance companies discriminating, law enforcement interrogating, and advertisers manipulating brain data.
• Medical research facilities are subject to privacy laws, but private companies amassing large caches of brain data are not.
• The Neurorights Foundation found that two-thirds of these companies are already sharing or selling data with third parties.
• The new law takes effect on Aug. 8, but it is unclear which companies are subject to it and how it will be enforced.
• Pauzauskie and the Neurorights Foundation are pushing for a federal law and even a global accord to prevent brain data from being used without consent.

For those looking to move beyond Chrome, there are alternatives that come pre-installed with uBlock Origin and are considered better than Firefox:

• LibreWolf

This project is a custom and independent version of Firefox, with the primary goals of privacy, security and user freedom.

LibreWolf is designed to increase protection against tracking and fingerprinting techniques, while also including a few security improvements. This is achieved through our privacy and security oriented settings and patches. LibreWolf also aims to remove all the telemetry, data collection and annoyances, as well as disabling anti-freedom features like DRM.

• Mullvad Browser

The Mullvad Browser is developed – in collaboration between Mullvad VPN and the Tor Project – to minimize tracking and fingerprinting. It is designed to be used with a trustworthy VPN instead of the Tor Network. It does not require the use of Mullvad’s VPN.