Privacy Alert: NSO Contempt, Mass. Location Ban, Health Data Breach

Meta Files Contempt Complaint Against NSO Group for Violating Court Order

Meta has filed a contempt complaint against NSO Group, accusing the Israeli spyware firm of violating a permanent injunction that barred it from targeting WhatsApp users. The complaint, filed June 8, alleges NSO ran spear-phishing campaigns that tricked users into clicking malicious links, bypassing the court order. Meta emphasized that WhatsApp’s end-to-end encryption remains intact, but the attacks exploited social engineering rather than code vulnerabilities. The legal saga began in 2019 when Meta sued NSO for compromising over 1,400 devices via Pegasus spyware. A 2024 ruling found NSO liable and issued a permanent injunction. If found in contempt, NSO could face additional fines or sanctions.

Meta files contempt complaint against NSO Group for violating court order on WhatsApp targeting →

Israeli President’s Residence Data Breach Exposes 100,000 Pardon Applicants

An audit by Israel’s State Comptroller found severe cybersecurity deficiencies at the President’s Residence, exposing sensitive data on nearly 100,000 pardon applicants to wartime cyber threats. The report, published June 9, 2026, revealed that the residence failed to appoint an information-security officer, map its databases, or establish proper access procedures. The vulnerabilities increase risk during wartime when cyberattacks spike. The residence holds vast amounts of sensitive information, and damage could harm privacy and the institution’s reputation.

Nearly 100,000 pres. pardon applicants’ records exposed to wartime cyber threats, report finds →

Massachusetts Passes Landmark Privacy Bill Banning Sale of Location Data

The Massachusetts House unanimously passed the Consumer Data Privacy Act, which grants residents new rights to access and delete their data held by big tech and bans the sale of precise location data. The bill applies to companies handling data of over 100,000 consumers and also restricts sharing of biometrics and other sensitive information without explicit consent. It now heads to the Senate and then to the governor, who is expected to sign it. Massachusetts becomes the latest U.S. state to enact strong privacy protections in the absence of federal legislation.

Massachusetts votes to pass new privacy rights bill that bans sale of precise location data →

Europe Considers Crackdown on Smart Glasses Over Privacy Concerns

European regulators are eyeing new restrictions on smart glasses, concerned about the privacy implications of always-on cameras and sensors. The move comes as wearable devices with recording capabilities become more common, raising fears of mass surveillance and data misuse. No specific proposal has been detailed yet, but the initiative signals a growing focus on protecting individuals from invasive technologies. The European Commission is expected to outline potential regulations in the coming months.

New privacy frontier: Europe eyes crackdown on smart glasses →

Health Data Sharing Platform Sued for Exposing 300,000 Patient Records

Epic and three health systems are suing Health Gorilla for allegedly allowing third parties to access over 300,000 medical files on a data-sharing platform. One company, GuardDog Telehealth, admitted under a consent agreement that it obtained records under false pretenses and sold the data to law firms seeking class-action clients. The case highlights security gaps in health data sharing networks, where verification of data requests remains weak. Epic also accused SelfRx of fraudulently pulling records, but later dropped charges after the founder could not explain most of the requests.

Axios Vitals - 1 big thing: How health data sharing exposes patients →