Microsoft Copilot's Security Failures Are Putting Everyone at Risk
Techlore Surveillance Report: Weekly News for Your Digital Freedom
This week's Surveillance Report covers Microsoft Copilot's ongoing security failures putting users at risk, the FTC banning GM from selling driver location data, California banning data brokers from reselling health information, Iran's internet shutdown reaching record lengths, the EFF's guide to navigating age gates, and more!
📰
Listen to the weekly podcast on Apple Podcasts, Spotify, or any podcast app. You can also watch Surveillance Report on YouTube or Techlore.TV
Episode Timestamps
00:00 INTRO
00:46 NEW COPILOT VULNERABILITY
07:35 GM PUT ON TIMEOUT
12:24 DATA BROKER PUT ON TIMEOUT
15:56 OUR SPONSOR: EASYOPTOUTS!
16:54 IRAN INTERNET SHUTDOWN
22:30 EFF AGE GATE GUIDE
26:06 THE DEFENSE BULLETIN
Episode Sources
Highlight: Microsoft Copilot's Ongoing Security Failures
- https://www.varonis.com/blog/reprompt
- https://arstechnica.com/security/2026/01/a-single-click-mounted-a-covert-multistage-attack-against-copilot/
Story 1: FTC Bans General Motors From Selling Driver Location Data
- https://www.bleepingcomputer.com/news/security/ftc-bans-general-motors-from-selling-drivers-location-data-for-five-years/
- https://vehicleprivacyreport.com/
Story 2: California Bans Data Brokers From Reselling Health Data
- https://www.bleepingcomputer.com/news/legal/california-bans-data-broker-reselling-health-data-of-millions/
- https://privacy.ca.gov/drop/
- https://github.com/yaelwrites/Big-Ass-Data-Broker-Opt-Out-List
Story 3: Iran's Internet Shutdown Now One of Its Longest Ever
Story 4: EFF's Guide to Navigating Age Gates
- https://www.eff.org/deeplinks/2026/01/so-youve-hit-age-gate-what-now
- https://www.eff.org/deeplinks/2026/01/congress-wants-hand-your-parenting-big-tech
The Defense Bulletin
- https://arstechnica.com/security/2026/01/never-before-seen-linux-malware-is-far-more-advanced-than-typical/
- https://www.bleepingcomputer.com/news/security/hidden-telegram-proxy-links-can-reveal-your-ip-address-in-one-click/
- https://www.bleepingcomputer.com/news/security/facebook-login-thieves-now-using-browser-in-browser-trick/
- https://www.bleepingcomputer.com/news/security/max-severity-ni8mare-flaw-impacts-nearly-60-000-n8n-instances/
- https://www.bleepingcomputer.com/news/security/hackers-exploit-modular-ds-wordpress-plugin-flaw-for-admin-access/
- https://www.wired.com/story/google-fast-pair-bluetooth-audio-accessories-vulnerability-patches/
- https://techcrunch.com/2026/01/16/how-a-hacking-campaign-targeted-high-profile-gmail-and-whatsapp-users-across-the-middle-east/
- https://www.bleepingcomputer.com/news/security/central-maine-healthcare-breach-exposed-data-of-over-145-000-people/
- https://www.bleepingcomputer.com/news/security/belgian-hospital-az-monica-shuts-down-servers-after-cyberattack/
- https://www.bleepingcomputer.com/news/security/university-of-hawaii-cancer-center-hit-by-ransomware-attack/
- https://techcrunch.com/2026/01/12/fintech-firm-betterment-confirms-data-breach-after-hackers-send-fake-crypto-scam-notification-to-users/
- https://www.bleepingcomputer.com/news/security/spanish-energy-giant-endesa-discloses-data-breach-affecting-customers/
- https://www.bleepingcomputer.com/news/security/monroe-university-says-2024-data-breach-affects-320-000-people/
- https://www.bleepingcomputer.com/news/security/victorian-department-of-education-notifies-parents-of-data-breach/
- https://www.bleepingcomputer.com/news/security/south-korean-giant-kyowon-confirms-data-theft-in-ransomware-attack/
- https://www.bleepingcomputer.com/news/security/grubhub-confirms-hackers-stole-data-in-recent-security-breach/
- https://www.bleepingcomputer.com/news/apple/apple-confirms-google-gemini-will-power-siri-says-privacy-remains-a-priority/
- https://techlore.tech/apples-1-billion-gamble-your-siri-googles-brain-jan-5-11/
- https://arstechnica.com/information-technology/2026/01/openai-to-test-ads-in-chatgpt-as-it-burns-through-billions/
- https://blog.torproject.org/new-release-tor-browser-1504/
- https://blog.torproject.org/new-release-tails-7_4/
- https://alternativeto.net/news/2026/1/linux-mint-22-3-zena-launches-with-cinnamon-6-6-overhauled-menu-and-smarter-scaling/
- https://alternativeto.net/news/2026/1/wine-11-0-debuts-full-wow64-support-ntsync-for-linux-and-graphics-updates/
- https://alternativeto.net/news/2026/1/joplin-3-5-refines-markdown-editing-adds-case-insensitive-tags-and-boosts-syncing-and-sharing/
- https://proton.me/blog/lumo-1-3
- https://mastodon.world/@Mer__edith/115883615017272545
- https://github.com/zoicware/RemoveWindowsAI
- https://alternativeto.net/news/2026/1/debian-13-3-trixie-released-security-updates-and-bug-fixes-for-major-components/
- https://alternativeto.net/news/2026/1/newpipe-0-28-1-update-improves-playback-metadata-and-soundcloud-support/
- https://linux.slashdot.org/story/26/01/12/0411249/linux-hit-a-new-all-time-high-for-steam-market-share-in-december
- https://adguard.com/en/blog/techlore-interviews-afds-andrey-meshkov-breaks-down-apples-new-system-wide-filtering-api.html
- https://youtu.be/E4tJSHimd9c
- https://techlore.tech/podcasts
- https://alternativeto.net/news/2026/1/thunderbird-147-0-new-folder-path-option-and-localization-preferences-added/
- https://alternativeto.net/news/2026/1/firefox-147-brings-apple-silicon-webgpu-support-improved-video-playback-and-pip-and-more/
- https://alternativeto.net/news/2026/1/openproject-17-0-brings-real-time-document-collaboration-improved-meetings-and-much-more/
- https://nextcloud.com/blog/january-updates-available-nextcloud-hub-10-nextcloud-hub-25-autumn/
- https://alternativeto.net/news/2026/1/cal-com-launches-companion-apps-and-browser-extensions-for-scheduling/
Written by
Know Your Rights. Protect Your Freedom.
Digital Rights Digest—threats to your freedom and how to fight back. A five-minute weekly read, 100% free.
