https://hackingpassion.com/tags/privacy/Recent content in Privacy on HackingPassion.com : root@HackingPassion.com-[~]HugoenWed, 24 Jun 2026 12:52:27 +0200https://hackingpassion.com/does-google-control-your-email/Wed, 24 Jun 2026 12:52:27 +0200https://hackingpassion.com/does-google-control-your-email/<p>Anyone on the internet can send an email that looks like it came from your bank, your boss, or you, and the system that delivers it will not check whether that is true.</p> <p>The reason is not a bug someone forgot to fix. Email was built in 1982 to trust whoever was talking, back when a few hundred computers were online and the people running them knew each other, and that trust was never taken back out.</p>https://hackingpassion.com/chrome-gemini-nano-silent-install/Wed, 06 May 2026 13:41:41 +0200https://hackingpassion.com/chrome-gemini-nano-silent-install/<p>Google Chrome installed a <strong>4 GB AI model</strong> on your machine without asking. The pitch is that it runs locally, keeping your data off Google&rsquo;s servers. The AI button you actually see in your browser sends everything to Google anyway.</p> <p>Privacy researcher <strong>Alexander Hanff</strong> found this during a routine web audit in late April and published his full analysis on 4 May 2026, two days ago. He had built a Chrome profile to run automated tests, the kind where software loads web pages in the background and measures what happens. The profile received no human input whatsoever: nobody moved the mouse, hit a key, or touched the address bar. Chrome just ran quietly in the background doing its thing.</p>https://hackingpassion.com/notion-ai-prompt-injection-data-exfiltration/Thu, 08 Jan 2026 15:28:25 +0100https://hackingpassion.com/notion-ai-prompt-injection-data-exfiltration/<p>Notion AI steals data before the user clicks OK. 100 million users. 4 million paying customers. Amazon. Nike. Uber. Pixar. More than half of Fortune 500 companies trust this $10 billion platform with their documents. And a hidden PDF can extract everything. 😏 Two major vulnerabilities since September 2025. Notion&rsquo;s response to the latest one: &ldquo;Not Applicable.&rdquo;</p> <p>Someone uploads a document to Notion AI. A resume, a customer report, anything. Looks completely normal. But hidden inside is white text on white background, 1-point font size, with a white square image placed over it for good measure. Invisible to humans. The AI reads it perfectly.</p>https://hackingpassion.com/chrome-extensions-steal-chatgpt-conversations/Thu, 08 Jan 2026 09:56:23 +0100https://hackingpassion.com/chrome-extensions-steal-chatgpt-conversations/<p>Two Chrome extensions. 900,000 users. Every ChatGPT and DeepSeek conversation stolen. Sent to attacker servers every 30 minutes. Google gave one of them a Featured badge. The extensions are still live in the Chrome Web Store right now. 🤔</p> <p>This is the third major case in three weeks. First the sleeper extensions that waited 7 years before activating. Then Urban VPN selling 8 million users&rsquo; AI chats to data brokers. Now this. Security researchers have a name for it: &ldquo;Prompt Poaching.&rdquo; And it&rsquo;s becoming a gold rush.</p>https://hackingpassion.com/smart-tv-spying-acr-tracking/Sat, 15 Nov 2025 12:00:15 +0100https://hackingpassion.com/smart-tv-spying-acr-tracking/<p>Nearly every modern Smart TV has ACR technology. You&rsquo;ve probably never heard of it. (Most people haven&rsquo;t. Stick with me&hellip;) It&rsquo;s there. On almost every Smart TV. And it&rsquo;s tracking everything on your screen.</p> <p>Not just Netflix. Not just YouTube. EVERYTHING.</p> <p>→ Playing PlayStation? Tracked. → Watching cable TV? Tracked. → Using Chromecast or Fire Stick? Tracked. → Private security camera footage? Tracked.</p> <p>If it appears on your screen, your TV is watching it, recording it, and sending that data somewhere else.</p>