TrendKia
AllLiveNational
World
All World
PakistanChinaAmericaEuropeAsia
Politics
Uttar Pradesh
Uttar Pradesh
Uttar PradeshBiharMadhya PradeshRajasthanDelhiMaharashtraGujaratPunjabHaryanaWest BengalTamil NaduKeralaKarnatakaTelanganaAndhra PradeshJharkhandChhattisgarhOdishaAssamUttarakhandHimachal PradeshJammu & KashmirGoaChandigarhPuducherry
Travel
Travel
Business
MarketMoneyAutoBenefitsSuccess StoriesCryptoAI
Sports
CricketTennisFootball
EntertainmentMovies, TV & celebrities
BollywoodOTTBhojpuriMovie ReviewsTVHollywood
TechnologyGadgets, apps & innovation
AccessoriesLaunch & ReviewDIY
HealthHealth, fitness & wellness
LifestyleFashion, relationships & lifestyle
Fashion & BeautyCultureRelationshipsTrendsParenting
FoodRecipes, food & restaurants
ReligionFaith, belief & spirituality
FestivalsVastuSpirituality
Astrology
AriesTaurusGeminiCancerLeoVirgoLibraScorpioSagittariusCapricornAquariusPisces
TravelDestinations & travel guides
Travel Tips
EducationJobs, exams & results
VacanciesAdmissionExamResultsCareer
Live
National
World
Pakistan China America Europe Asia
Politics
Business
Market Money Auto Benefits Success Stories Crypto AI
Sports
Cricket Tennis Football
Entertainment
Bollywood OTT Bhojpuri Movie Reviews TV Hollywood
Technology
Accessories Launch & Review DIY
Health
Lifestyle
Fashion & Beauty Culture Relationships Trends Parenting
Food
Religion
Festivals Vastu Spirituality
Astrology
Aries Taurus Gemini Cancer Leo Virgo Libra Scorpio Sagittarius Capricorn Aquarius Pisces
Travel
Travel Tips
Education
Vacancies Admission Exam Results Career
Uttar Pradesh Bihar Madhya Pradesh Rajasthan Delhi Maharashtra Gujarat Punjab Haryana West Bengal Tamil Nadu Kerala Karnataka Telangana Andhra Pradesh Jharkhand Chhattisgarh Odisha Assam Uttarakhand Himachal Pradesh Jammu & Kashmir Goa Chandigarh Puducherry
About Contact Privacy Cookies Terms Advertise
TrendKia logo Hindi • English News Platform

TrendKia

Fast • Fresh • Always Trending

TrendKia is a free bilingual Hindi–English news platform — trending stories from India and around the world. Sign in with Google to comment and follow topics.

About Us
TrendKia news app preview
TrendKia
AboutContactPrivacyCookiesTermsAdvertise
Apple's Anonymous Email Trick Turns Out Not So Anonymous, Plus Four More Security Stories This WeekSecurity
3 hours ago· 2

Apple's Anonymous Email Trick Turns Out Not So Anonymous, Plus Four More Security Stories This Week

A year-old flaw in Apple's Hide My Email tool is exposing users' real addresses, while an alleged Scattered Spider hacker faces extradition, India pushes back on WhatsApp usernames, and license plate camera errors keep landing innocent drivers in police custody.

Michael AndersonMichael AndersonUS & AI Correspondent 4 min read For AI
Share

This week's sweep of security and privacy news includes two eyebrow-raising items before the main story: contractors working for Meta posed as kids and teenagers to test how chatbots such as Gemini and ChatGPT responded to prompts about high-risk topics like suicide, sex and drugs, and a researcher found a way to use Anthropic's Claude Opus 4.7 to break into the ticketing website of Front Gate and generate tickets to almost any major American music festival, including Lollapalooza and Bonnaroo. But the story generating the most concern this week is a flaw in one of Apple's flagship privacy tools, one that has apparently been exposing real email addresses for at least a year.

A Privacy Tool That Wasn't So Private

Apple launched Hide My Email back in 2021 as part of its privacy push, letting people sign up for websites and apps using a randomly generated address instead of their real one. Messages sent to that throwaway address are quietly forwarded to the user's actual inbox, so companies never see the real email in the first place.

That premise fell apart this week when it emerged that a bug in the system has let people's genuine email addresses be uncovered while they use the tool, and has apparently allowed this for at least a year without being fixed. Security researcher Tyler Murphy, who says he discovered the flaw in June 2025, put it bluntly: "Apple Hide My Email is leaking email addresses that are supposed to be hidden." He added that "in our limited tests with volunteers, 100% of Hide My Email addresses were exploitable."

The precise mechanics of the vulnerability have not been made public because it still hasn't been patched. In tests, a freshly generated Hide My Email address, the kind that ends in @icloud.com, could be traced back to the real email address of the person who created it. Murphy says he first flagged the issue to Apple last summer and was told by March this year that it had been "addressed." When he kept testing anyway, the flaw was still exploitable, and a couple of months ago Apple told him it was still looking into it. Apple has not commented publicly on the matter.

Alleged Scattered Spider Hacker Sent to Face US Justice

A 19-year-old has been extradited to the United States to answer charges over his alleged role in the Scattered Spider hacking network, the Department of Justice announced this week. Peter Stokes, who holds Estonian and American citizenship, was arrested in Finland in April and now faces charges of computer intrusion, conspiracy and fraud tied to the group.

Prosecutors allege that Stokes and other members of the loosely organized hacking collective broke into an unnamed luxury jewelry retailer and demanded an $8 million cryptocurrency ransom in May 2025. The retailer refused to pay, but the Department of Justice says it still ended up spending $2 million dealing with the fallout of the breach. Scattered Spider is widely believed to be made up largely of young, English-speaking teenagers, and its members have caused chaos at dozens of companies worldwide in recent years. Stokes' arrest comes soon after two British members of the group, Thalha Jubair and Owen Flowers, pleaded guilty to hacking Transport for London in 2024, an intrusion that caused millions of dollars in damage.

India Pushes Back on WhatsApp's Username Plan

WhatsApp is preparing to roll out usernames to its billions of users, following a similar move by the encrypted messaging app Signal last year. The feature would let people message each other using a chosen username instead of handing over their phone number, adding an extra layer of privacy.

But officials in India, one of WhatsApp's largest markets and a government that has previously pushed to weaken encryption on the Meta-owned app, are objecting to the change. A letter from the Indian government asked WhatsApp to pause the username rollout in the country, arguing that it could fuel fraud and cybercrime by letting people stay anonymous online. Similar letters were separately sent to Signal and Telegram over their own use of usernames.

When License Plate Cameras Get It Wrong

Automatic license plate reader cameras, known as ALPRs, have spread rapidly across the United States in recent years. Police departments, cities and even private businesses now deploy them to photograph passing vehicles and log details about their movements, including the license plate number, the time and location of the photo, the make and model of the car, and even bumper stickers. The result is a set of databases holding billions of images and records of car movements.

A growing body of evidence shows that when these systems get it wrong, innocent people end up detained and accused of crimes they had nothing to do with. A review of court records and media reports by the nonprofit Institute for Justice found at least 24 cases of misidentification over the past eight years, and the group believes that number is likely just the tip of the iceberg. Among the cases: a couple with a baby in their car were detained at gunpoint, grandparents were stopped after a camera misread the letter "O" as the number "0," and one driver was pulled over simply because their license plate hadn't been removed from a wanted list after the case was resolved. These incidents add to a lengthening list of errors tied to the AI-powered cameras.

What this means for you

  • In India: if the government succeeds in delaying WhatsApp's username rollout, Indian users will keep having to share their phone number to message people for now, and the feature may reach India later than other markets.
  • For Apple users: if you've ever used Hide My Email to sign up on a website, your real email address may not be as hidden as you assumed.
  • For US drivers: errors by license plate reader cameras can lead to innocent people being detained, so it's worth knowing you can challenge a wrongful stop tied to outdated or misread plate data.

Questions & Answers

What does Apple's Hide My Email feature do?
It gives users a randomly generated email address so they can sign up for services without sharing their real one, and messages sent to that address are forwarded to their actual inbox.
How long has this flaw existed?
Security researcher Tyler Murphy discovered it in June 2025, but the flaw has apparently been exploitable for at least a year.
Has Apple fixed the issue?
No, Apple told the researcher a couple of months ago that it was still investigating, and the company has not commented publicly.
Who is Peter Stokes?
He is a 19-year-old Estonian-US dual citizen arrested in Finland in April and extradited to the United States on charges tied to the Scattered Spider hacking group.
How much ransom did Scattered Spider demand from the jewelry retailer?
The group demanded an $8 million cryptocurrency ransom in May 2025; the retailer didn't pay but still spent $2 million dealing with the breach.
Why is India objecting to WhatsApp's username feature?
The Indian government fears that the anonymity usernames provide could increase fraud and cybercrime, so it has asked WhatsApp to pause the rollout.
How many people have been affected by license plate reader errors?
The Institute for Justice found at least 24 cases of misidentification over the past eight years, and believes the real number is likely higher.
What kinds of mistakes have ALPR cameras made?
In one case a couple with a baby were detained at gunpoint, in another a camera misread the letter O as the number 0 and stopped grandparents, and one driver was pulled over because his plate hadn't been removed from an old wanted list.
Michael Anderson
About the authorMichael AndersonUS & AI Correspondent San Francisco
ExpertiseU.S. News, Politics, Government Policy, Elections, Economy, Breaking News, Congress, White House, Social Issues, International Relations

Michael Anderson is a US & AI Correspondent covering American politics, breaking news, economy, and national affairs. He delivers timely updates and clear analysis from across the United States.

Michael Anderson is a U.S. Correspondent specializing in coverage of American politics, government policy, economy, social issues, and major breaking news events. He reports on developments from Washington D.C. and across the United States, including elections, congressional activity, White House decisions, economic trends, and key national stories. With a focus on accuracy, speed, and contextual reporting, Michael provides in-depth analysis of issues shaping the United States and its global influence. His journalism helps readers understand complex political and economic developments through clear, factual, and balanced reporting.

View full profile ↗
#Security#AppleHideMyEmail#Cybersecurity#ScatteredSpiderHacking#WhatsAppUsernames#LicensePlateCamera#DataPrivacy

Comments 0

Sign in to join the conversation.

Sign in

No comments yet — be the first.

Three Indian Sailors Killed in Gulf of Oman Strike: Shashi Tharoor Tears Into US Over 'Insensitive' Statement, Presses Jaishankar TooPolitics1
Three Indian Sailors Killed in Gulf of Oman Strike: Shashi Tharoor Tears Into US Over 'Insensitive' Statement, Presses Jaishankar Too
Wall Street's Big Bet on AMZN: Where Could Amazon Stock Land Between 2026 and 2028?Market2
Wall Street's Big Bet on AMZN: Where Could Amazon Stock Land Between 2026 and 2028?
FCC's 'Know Your Customer' Plan Could End Anonymous Phones — Plus the Week's Biggest Breaches and BustsSecurity3
FCC's 'Know Your Customer' Plan Could End Anonymous Phones — Plus the Week's Biggest Breaches and Busts

Latest news straight to your inbox

The day's big stories, in one email.

TrendKia बाज़ारAdvertisementमानसून सेल — हर चीज़ पर 50% तक छूटTrendKia बाज़ारअभी खरीदें →
Citizen journalism

Become a TrendKia journalist

Voice of the people

Share news, photos and videos from your area with TrendKia and let your voice reach the nation. Every citizen a journalist.

Join now
Citizen journalistCitizen journalist
Citizen journalist
Citizen journalist

Related stories

A European Lawmaker Who Helped Probe Pegasus Spyware Just Found It On His Own DeviceSecurity
A European Lawmaker Who Helped Probe Pegasus Spyware Just Found It On His Own Device
1 day ago
Security Weekly: LastPass Data Exposed Again and John Bolton Pleads GuiltySecurity
Security Weekly: LastPass Data Exposed Again and John Bolton Pleads Guilty
7 days ago
Pentagon Investigates Security Breach Exposing Sensitive Dossiers of Top Intelligence and Elite Military PersonnelSecurity
Pentagon Investigates Security Breach Exposing Sensitive Dossiers of Top Intelligence and Elite Military Personnel
8 days ago
Inside an English Region's Secret Algorithm That Scored Thousands of People for Risk, Then Quietly Switched Off the Models No One Could TrustSecurity
Inside an English Region's Secret Algorithm That Scored Thousands of People for Risk, Then Quietly Switched Off the Models No One Could Trust
9 days ago
OpenAI Launches Patch the Planet Initiative to Bolster Open-Source SecuritySecurity
OpenAI Launches Patch the Planet Initiative to Bolster Open-Source Security
12 days ago
Why June 24 Is a Crucial Deadline for Windows and Linux Systems: Secure Boot Certificates Are ExpiringSecurity
Why June 24 Is a Crucial Deadline for Windows and Linux Systems: Secure Boot Certificates Are Expiring
13 days ago
Madison Square Garden Hit by Massive Leak as France Rejects US Tech Tools in Weekly Security RoundupSecurity
Madison Square Garden Hit by Massive Leak as France Rejects US Tech Tools in Weekly Security Roundup
14 days ago
Banning One AI Won't Stop the Wave: Why 'Dangerous' Models Are Coming AnywaySecurity
Banning One AI Won't Stop the Wave: Why 'Dangerous' Models Are Coming Anyway
18 days ago