Information Freedom

Press-freedom groups say federal and local law enforcement assaulted at least 40 journalists covering protests and a detainee hunger strike near the Delaney Hall immigration detention facility in Newark, New Jersey. The Freedom of the Press Foundation says New Jersey police appeared to decide on the spot who counted as a journalist and who did not, raising concerns about unlawful interference with newsgathering and First Amendment protections during protest reporting. — This matters to the public because it can limit independent reporting on police activity and protests, making it harder to know what is happening on the ground. Journalists, legal observers, and civil-liberties groups should watch for further incidents, preserve evidence, and track whether authorities change policy or face legal challenges.

Freedom of the Press Foundation sued the U.S. Department of Justice under the Freedom of Information Act to uncover whether DOJ hid legal protections for journalists when it sought a warrant to raid Washington Post reporter Hannah Natanson’s home. The suit centers on the Privacy Protection Act of 1980, which generally bars newsroom and journalist-home searches, and follows a judge’s February finding that DOJ’s omission of the law from the warrant process seriously undermined confidence in the government’s disclosures. — This matters to journalists, sources, and the public because it suggests federal investigators may be sidestepping legal safeguards meant to stop raids on reporters. The case could reveal whether the Natanson raid was an isolated abuse or part of a broader DOJ practice with implications for press freedom and government surveillance powers.

U.S. officials believe suspected Iranian hackers broke into fuel-tank monitoring systems at gas stations in several states. The attackers targeted automatic tank gauges, or ATG systems, that were exposed online without passwords and changed displayed readings but reportedly could not alter actual fuel volumes. No physical damage has been reported, but officials warned the access could potentially hide leaks or create other safety and critical-infrastructure risks. — Gas stations and operators using older internet-connected monitoring gear may be at risk right now, especially if devices are reachable online without authentication. Operators should immediately remove ATG systems from direct internet exposure, require passwords, and review logs and display anomalies.

Apple removed Russia’s state-backed Max messaging app from the App Store, cutting off new iPhone and iPad downloads and updates for existing users. Apple told BBC Russia the removal was done to comply with sanctions regulations, while Russian officials said about 20 million users lost access through Apple’s marketplace. Max, developed by VK and promoted by the Russian state as a Telegram and WhatsApp alternative, is deeply integrated with government services, digital ID, e-signatures, and payments; critics warn its lack of end-to-end encryption could make user communications easier for authorities to monitor. — This affects Russian users who rely on Max and highlights how app-store controls, sanctions, and state-backed platforms can shape access to communication tools. It also matters for privacy watchers because Max is closely tied to government infrastructure, so users should weigh surveillance risks and loss of updates if they continue using it.

Russia is asking its Supreme Court to ban Belarusian Cyber Partisans and Silent Crow as extremist organizations, a designation that can outlaw their activities, block their websites and channels, and expose associates to criminal penalties. The move follows the groups' claimed attacks on Russian and Belarusian government and infrastructure targets, including the July 2025 Aeroflot disruption that canceled more than 100 flights and allegedly involved data theft and destruction of airline IT systems. No CVE or software flaw is cited; this is a state action tied to politically motivated hacking and online speech. — This matters because Russia is using an extremism label against online groups tied to cyber operations, which can expand censorship and criminalize access to related information channels. People following these groups, especially in Russia, may face blocking or legal risk, while defenders and researchers should watch for knock-on effects on threat visibility and attribution.

The UK says Russian vessels and submarines recently surveyed cable routes near Britain, and the government is preparing stronger legal protections for undersea internet cables. The reported April activity involved a Russian Akula-class submarine and two specialist GUGI deep-sea research vessels, according to the minister's speech. Proposed measures include tougher penalties for reckless cable damage, new security duties for cable operators, and emergency powers allowing the government to compel stronger infrastructure protection. — Subsea cables carry much of the UK's internet and international communications, so interference could disrupt connectivity and critical services. This matters to telecom operators, infrastructure owners, and policymakers because it signals a live hybrid-threat risk and points to forthcoming compliance and resilience requirements.

California lawmakers advanced AB 1856, a bill that would exempt open-source operating systems from parts of the state's age-assurance law but broaden age-checking requirements for many internet services. EFF says the amended bill would still extend the age-bracketing regime created by AB 1043 beyond operating systems and app stores to web browsers and websites, increasing pressure to collect users' age data and potentially affecting anonymity, privacy, and access to lawful speech. — If enacted, the bill could force more online services to ask for and retain age information, creating new privacy and security risks for ordinary users while raising compliance burdens for developers and platforms. People and organizations tracking internet freedom and privacy policy should watch the Senate process closely.

A federal judge twice rejected prosecutors’ attempts to obtain YouTube account records tied to journalists Don Lemon and Georgia Fort, including information about their channels and possible viewers. The warrants were sought in a criminal case related to the journalists’ coverage of a protest at a church in St. Paul, Minnesota. Court records show the judge found the applications lacked probable cause and did not comply with the Privacy Protection Act of 1980, which generally limits search warrants targeting journalists and publishers. — This matters to journalists, sources, and viewers because prosecutors sought not just reporter account data but potentially audience information as well. It is a significant press-freedom and privacy issue, and it adds urgency to scrutiny of DOJ warrant practices and proposed updates to journalist-protection laws.

Citizen Lab highlights concerns that Canada’s proposed lawful-access Bill C-22 could undermine encryption protections and require messaging services to collect metadata. Signal said it would leave the Canadian market rather than comply if the bill mandated such access, while researchers said officials were unwilling to clearly protect encryption. — The proposal could materially affect users of encrypted messaging in Canada, especially journalists, dissidents, and human-rights defenders. Defenders and civil-society groups should track the bill because it may create surveillance obligations or drive privacy-preserving services out of the market.

A zero-day flaw in Huawei enterprise router software was blamed for a July 2025 outage that knocked out landline, 4G, and 5G service across Luxembourg for more than three hours. POST Luxembourg said specially crafted network traffic forced the routers into a reboot loop, causing a denial-of-service condition and disrupting emergency communications for hundreds of thousands of residents. No CVE is provided, and it remains unclear whether Huawei has issued a patch. — This shows how a single unpatched network-device flaw can interrupt phone and mobile service for an entire country, including emergency calls. Organizations using Huawei enterprise routers should urgently seek vendor guidance, limit exposure, and prepare mitigations because patch status is still unclear.

At a Beijing summit, Xi Jinping and Vladimir Putin issued a joint statement promising deeper cooperation on information security, cyber-threat response, internet regulation, AI, satellite internet, IoT, and interoperability between China's BeiDou and Russia's GLONASS systems. The statement also emphasized joint software and open-source development to reduce dependence on Western technology and endorsed stronger state control over domestic internet environments. — The agreement signals closer alignment between two major authoritarian states on cyber policy, digital infrastructure and 'internet sovereignty,' with implications for censorship, surveillance, and state-backed cyber operations. It matters to policymakers, civil-society groups and defenders tracking how geopolitical blocs may reshape internet governance and security ecosystems.

Access Now and other groups say Meta has made Facebook and Instagram accounts of NGOs, researchers, and civil-society figures unavailable in Saudi Arabia and the UAE since late April 2026. Meta's transparency reporting indicates more than 100 Facebook pages and Instagram accounts were restricted since March 2026, citing local legal requirements and cybercrime laws in both countries. — This affects access to information and the safety and reach of human-rights advocacy in highly restrictive states. It is relevant to censorship tracking because a major platform is enforcing government takedown and geo-blocking demands against lawful speech.

The Department of Justice sent grand jury subpoenas to The Wall Street Journal seeking records related to its journalists' reporting on the lead-up to the war in Iran, and other media outlets reportedly received similar demands. The move is framed by press-freedom advocates as an effort to identify confidential sources through leak investigations. — This has direct implications for source protection, newsroom security, and government surveillance of journalists. News organizations and reporters may need to harden communications and prepare for legal demands targeting records and metadata.