Plus: An unsecured database exposed face recognition data in China, ‘Cuba’ ransomware knocks out Montenegro, and more.

Microsoft disclosed the flaw in the Android app’s deep link verification process, which has since been fixed.

Hackers can use Microsoft’s Power Automate to push out ransomware and key loggers—if they get machine access first.

The California Age-Appropriate Design Code would launch a huge online privacy experiment. And it won’t just affect children.

Researchers found that mobile applications contain keys that could provide access to both user information and private files from unconnected apps.

Prepaid phones are looking good as privacy worries peak.

Plus: Chrome patches another zero-day flaw, Microsoft closes up 100 vulnerabilities, Android gets a significant patch, and more.

Anti-Putin media network February Morning has become a central player in the underground fight against the Kremlin.

Plus: An Iranian hacking tool steals inboxes, LastPass gets hacked, and a deepfake scammer targets the crypto world.