Attack on CCleaner Highlights the Importance of Securing Downloads and Maintaining User Trust
Some of the most worrying kinds of attacks are ones that exploit users’ trust in the systems and softwares they use every day. Yesterday, Cisco’s Talos security team uncovered just that kind of attack in the computer cleanup software CCleaner. Download servers at Avast, the company that owns CCleaner,...
Live Blog: Senate Commerce Committee Discusses SESTA
The Cybercrime Convention's New Protocol Needs to Uphold Human Rights
As part of an ongoing attempt to help law enforcement obtain data across international borders, the Council of Europe’s Cybercrime Convention— finalized in the weeks following 9/11, and ratified by the United States and over 50 countries around the world—is back on the global lawmaking agenda. This...
EFF to Court: The First Amendment Protects the Right to Record First Responders
The First Amendment protects the right of members of the public to record first responders addressing medical emergencies, EFF argued in an amicus brief filed in the federal trial court for the Northern District of Texas. The case, Adelman v. DART, concerns the arrest of a Dallas freelance press...
Security Education: What's New on Surveillance Self-Defense
Since 2014, our digital security guide, Surveillance Self-Defense (SSD), has taught thousands of Internet users how to protect themselves from surveillance, with practical tutorials and advice on the best tools and expert-approved best practices. After hearing growing concerns among activists following the 2016 US presidential election, we pledged...
In A Win For Privacy, Uber Restores User Control Over Location-Sharing
After making an unfortunate change to its privacy settings last year, we are glad to see that Uber has reverted back to settings that empower its users to make choices about sharing their location information.Last December, an Uber update restricted users' location-sharing choices to "Always" or "Never," removing the...
Azure Confidential Computing Heralds the Next Generation of Encryption in the Cloud
For years, EFF has commended companies who make cloud applications that encrypt data in transit. But soon, the new gold standard for cloud application encryption will be the cloud provider never having access to the user’s data—not even while performing computations on it.
Microsoft has become the first major...
An open letter to the W3C Director, CEO, team and membership
Dear Jeff, Tim, and colleagues,
In 2013, EFF was disappointed to learn that the W3C had taken on the project of standardizing “Encrypted Media Extensions,” an API whose sole function was to provide a first-class role for DRM within the Web browser ecosystem. By doing so, the organization offered...
California Legislature Sells Out Our Data to ISPs
In the dead of night, the California Legislature shelved legislation that would have protected every Internet user in the state from having their data collected and sold by ISPs without their permission. By failing to pass A.B. 375, the legislature demonstrated that they put the profits of Verizon, AT&T, and...
Testing materials for SSD
Are you interested in teaching digital security? Are you interested in being an early tester of Surveillance Self-Defense's draft trainer materials? Please fill out the form below by September 30th, 2017.
If you are a good fit for the test group, we will reach out to you.








