The Securities and Exchange Commission requires defendants who settle cases it brings to contract away their right to deny the SEC’s allegations. So does the Commodity Futures Trading Commission. That means potential sources can’t speak to financial journalists.
With Israeli Prime Minister Benjamin Netanyahu visiting the U.S. this week, officials who claim to care about press freedom need to make clear to him that the U.S. will not tolerate killings, imprisonments, or censorship of journalists by its ally.
Federal prosecutors are claiming a startling new power: the ability to decide what is or isn’t “legitimate” journalism.
As journalists arrive at Milwaukee’s Fiserv Forum to cover the 2024 Republican National Convention (RNC), we can expect the public to take to the streets to protest everything from Donald Trump’s nomination to the ongoing war in Gaza and the killing of Dvontaye Mitchell.
With all eyes on the Supreme Court’s disturbing opinion on presidential immunity, you may have missed that the court also issued an important First Amendment decision this week about social media content moderation.
Julian Assange has finally been freed after reaching a surprising deal with U.S. authorities to plead guilty to violating the Espionage Act. The plea deal avoids the worst outcome of a court precedent that could be used against journalists, but it still threatens press freedom.
A full-fledged assault on transparency is underway in the states. Recent changes to public records laws in New Jersey, Louisiana, and Utah are making it harder for journalists and the public to find out what government officials are up to.
Recent baseless lawsuits against liberal and conservative outlets show the need for a federal law counteracting strategic lawsuits against public participation, or SLAPPs.
Sen. Dick Durbin has a rare chance to strengthen freedom of the press right now by advancing the bipartisan PRESS Act, a bill to protect journalist-source confidentiality at the federal level. But he needs to act quickly. This week, Freedom of the Press Foundation led a coalition of 123 civil liberties and journalism organizations and individual law professors and media lawyers in a letter to Durbin, who chairs the Senate Judiciary Committee, and ranking member Sen. Lindsey Graham, urging them to schedule a markup of the PRESS Act right away.
On Monday, the High Court in London granted WikiLeaks founder Julian Assange leave to appeal his extradition to the United States. The court’s decision is a welcome one. But as Freedom of the Press Foundation (FPF) wrote in The Guardian, it's "painfully ironic" that a U.K. court is defending the First Amendment against U.S. overreach. The ruling should be a “wake-up call” for President Joe Biden
California police are violating state law “right and left” during the protests and police raids on campus encampments. That’s according to University of California, Irvine, School of Law professor Susan Seager. We interviewed her in the wake of arrests of two California journalists in recent weeks, among other press freedom violations. Suppression of the press isn’t supposed to happen anywhere in America, but especially not in California, where it’s explicitly against the law for police to intentionally interfere with journalists covering a demonstration.
The flood of press freedom violations against journalists covering protests opposing the Israel-Gaza war is a national embarrassment. The U.S. Press Freedom Tracker has documented dozens of abuses connected to protests and counterprotests, and the numbers will likely grow. These recent incidents confirm what past data in the Tracker has demonstrated: protests are an especially dangerous place for journalists.
As police stormed several college campuses in recent days and arrested hundreds of students protesting the Israel-Gaza war, the free press was also under attack. Texas Department of Public Safety officers arrested Carlos Sanchez, a photojournalist for the local Fox affiliate, as he was covering protests at the University of Texas at Austin. But police can’t seem to make up their minds about what, exactly, they want us to believe Sanchez did wrong, repeatedly bringing then dropping charges against the photographer.
Last week, we warned of a dangerous new bill that would expand the surveillance law Section 702 of FISA. Unfortunately, the Senate approved the Reforming Intelligence and Securing America Act, or RISAA, over the weekend, officially reauthorizing Section 702 without any significant reforms and with dangerous expansions of the intelligence agencies’ spy powers. President Biden quickly signed the bill into law, authorizing intelligence agencies to essentially “institute a spy draft” that could require ordinary Americans and businesses to help the government surveil online communications, including those of journalists.
The Senate is dangerously close to passing a bill that would allow intelligence agencies to essentially “institute a spy draft” and order everyone from dentists to plumbers to surveil their patients and customers’ communications. The RISAA would also allow the government to order commercial landlords who rent space to media outlets, or contractors who service newsrooms, to help it spy on American journalists’ communications with foreign sources.
The House has slipped a horrifying amendment into its bill extending intelligence agencies’ already expansive spying powers under Section 702 of the Foreign Intelligence Surveillance Act. Anyone who values press freedom — or their own freedom — needs to tell their senators TODAY to VOTE NO on the Reforming Intelligence and Securing America Act, or RISAA, by calling 202-899-8938.
Veteran journalist Catherine Herridge threw her full support behind the PRESS Act, the federal bill to put an end to surveillance and subpoenas to force journalists to out their sources, during Congressional testimony on April 11, 2024.
Just a few months into 2024, the U.S. Press Freedom Tracker has documented four arrests or detentions of journalists covering protests in New York, Tennessee, and California. These arrests violate journalists’ rights, and they undermine the right of the public to learn about newsworthy events happening in their communities. They also show the disturbing and stubborn persistence of a system of policing that either doesn’t know or doesn’t care about First Amendment rights.
On Tuesday, the High Court in London granted WikiLeaks founder Julian Assange another hearing on his extradition to the United States, averting — at least temporarily — a press freedom catastrophe. While we’re glad that Assange isn’t being immediately extradited, the threat to journalists from the Espionage Act charges against him remains.
Most analyses of Monday’s Supreme Court argument in Murthy v. Missouri, the case about government pressure on social media content moderation, agree that the justices are likely to rule that the government can influence platforms’ moderation decisions. But when it comes to alleged threats to “national security,” some justices seemed willing to let the government go even further by coercing — or even requiring — takedowns.
Plus: The CIA drugged unsuspecting Americans as part of its mind-control research programs.
Plus: a look back at 2024
Plus: U.S. government declassifies 1960 report stating Israeli nuclear site was for weapons
Plus: how you can help preserve federal data at risk of being deleted
The cybersecurity firm Kaspersky disclosed that at least five Google Play applications contained Mandrake, a sophisticated cyberespionage tool.
Google has a habit of hitting the brakes on products and features — so much so that it’s become something of a meme to be “killed by Google.” This time it decided to backtrack on its long-standing plan to replace traditional tracking in its Chrome browser.
Last Friday, computer systems worldwide were taken down by a defective update from enterprise cybersecurity vendor CrowdStrike. In the wake of the outage, the U.S. Cybersecurity and Infrastructure Agency is warning of phishing emails, with attackers posing as CrowdStrike customer support.
Around 110 million AT&T subscribers were affected by a data breach from May 1 to Oct. 31, 2022, TechCrunch reported.
The parent company for Authy, an application for two-factor authentication, has issued a critical security update to its Android and iOS users. According to BleepingComputer, hackers utilized leaked phone numbers from past data breaches to identify up to 33 million Authy users.
Apple released a firmware update patching a critical Bluetooth vulnerability in AirPods, AirPods Pro, AirPods Max, Powerbeats Pro, and Beats Fit Pro. According to its support page, an adversary in Bluetooth range could spoof as an intended source device for these wireless headphones. When the targeted headphones send a connection request to the spoofed device, it could eavesdrop on confidential conversations.
According to data unearthed in a congressional probe, more than 60,000 requests by federal investigators and police captured data on 312,000 letters and packages between 2015 and 2023.
We often talk to newsrooms about dealing with data brokers — companies that aggregate and sell data from commercial and public records. According to recent reporting from TechCrunch, an alleged breach of a U.S. data broker impacted at least 300 million people. Their reporting suggests “mixed results” verifying the authenticity of the data.
In the hope of simplifying how customers can log into apps and websites, Apple has announced it will offer a new Passwords app in its upcoming versions of iOS 18, iPadOS 18, and macOS 15.
Data breach notification service “Have I Been Pwned?” has added the login information associated with 361 million email addresses. Have I Been Pwned owner Troy Hunt says as many as 151 million of these unique email addresses have never been seen in his database before. The website boasts tracking over 13.5 billion breach accounts. Some of these credentials are reportedly harvested from users’ devices infected with information-stealing malware.
Over this past week, Slack published a blog post defending its privacy practices following widespread criticism over its use of customer data to train its global AI models. At the moment, organizations are required to opt out to prevent their messages, content, and files from being mined to develop Slack’s AI.
Johns Hopkins cryptography professor Matthew Green explains that “the cryptography behind Signal (also used in WhatsApp and several other messengers) is open source and has been intensively reviewed by cryptographers. When it comes to cryptography, this is pretty much the gold standard.” By comparison, Telegram does not provide end-to-end encryption protection by default and only offers it as an option in one-on-one “Secret Chat” mode.
While it’s powerful and convenient, Google Docs might not be right for all documents, including those that you consider sensitive, private, or that you can’t risk losing. Read more about newsroom privacy and security considerations when using Google Workspace.
According to its security blog, Google prevented 2.28 million — yes, million — Android apps from being published on its Play Store in 2023. The company says it also removed 333,000 accounts for attempting to deliver malware through the Play Store, as well as for “repeated severe policy violations.” These numbers have grown substantially since 2022, when the company disclosed it prevented 1.43 million apps from being published on the Play Store.
Last week, Congress reauthorized a controversial surveillance authority, Section 702 of the Foreign Intelligence Surveillance Act. While legislators considered reforms to FISA that would restrain the federal intelligence and law enforcement community’s abilities to spy on American communications without a warrant, they in fact expanded these surveillance powers to subject more electronic communications service providers, such as U.S. cloud computing data centers, to data collection.
On April 10, Apple sent users in 92 countries warning of mercenary malware attacks targeting the iPhone. The notification did not provide details about the identities of the attackers. According to TechCrunch, Apple warned, “This attack is likely targeting you specifically because of who you are or what you do. Although it’s never possible to achieve absolute certainty when detecting such attacks, Apple has high confidence in this warning — please take it seriously.”
Throughout this year, our digital security training team will share our thoughts on navigating security issues during the 2024 election season. Elections around the world experience distinct security issues that may change from year to year, but in the U.S. we look to 2020 for lessons on how to get ahead of likely issues, from surveillance of our sensitive communications to perennial phishing attacks and harassment for political reporting.
Following a class-action lawsuit over Google’s handling of user data in its Chrome browser’s “Incognito” private browsing mode, the search company will expunge “billions of event-level data records that reflect class members’ private browsing activities” improperly collected before January 2024. It also updated its Incognito landing page to highlight that even Google can discern your activities in private browsing mode. Additionally, the company will be required to delete data that makes users’ private browsing data personally identifiable, such as IP addresses.
The U.S. Department of Justice filed an antitrust lawsuit against Apple, claiming the company engages in monopolistic practices over the smartphone market, preventing competitors by degrading the experience of communicating with non-Apple users in its products. iMessage features prominently in the suit, with the DOJ alleging consumers are disincentivized to leave its “walled garden” and so miss out on unique features built into the iMessage protocol, including end-to-end encryption between Apple users.
We recently shared news of Mozilla’s partnership with data removal service Onerep. Through a service it calls Mozilla Monitor Plus, Onerep is designed to automatically scan for personal information on data broker websites. But journalist Brian Krebs has found evidence that the founder of Onerep, purveyor of anti-data broker services, himself created dozens of data broker services. Read more.
Well, at least there’s a lot of stuff to talk to your class about
We’ve added new slides to our Malware module to help instructors get started sharing the good word about Dangerzone.
Hello again!It’s Martin, principal researcher at Freedom of the Press Foundation (FPF), with our regular update on the U.S. Journalism School Digital Security Curriculum.J-school security curriculum highlightsTo account for new username and privacy options in recent versions of Signal, we made some small changes to the …
Hello again!It’s Martin, principal researcher at Freedom of the Press Foundation (FPF), with our regular update on the U.S. Journalism School Digital Security Curriculum.Before we jump in, I want to share that we’re hiring a Monitoring, Evaluation, Research, and Learning (MERL) consultant to help us develop a …
Join our email list to stay up to date on the issues and learn how you can help protect journalists and sources everywhere.
Thanks for subscribing to Freedom of the Press Foundation's mailing list. We'll send you opportunities to take action on combating government secrecy, protesting mass surveillance, and protecting reporter's rights.
