Weekly Privacy Insights: November 17, 2025 – November 24, 2025

Weekly Privacy Insights

This week’s privacy news highlights critical challenges in election security, AI-powered cyberattacks, mass surveillance of protesters, and state efforts to regulate AI amid federal pushback. The evolving role of cryptographic safeguards, autonomous AI threats, and digital rights activism are key themes shaping our digital privacy landscape.

Weekly Analysis / My Opinion

The nullification of the IACR election due to a lost decryption key underscores the fragility and the human elements involved in cryptographic security systems. While distributed key management schemes can protect against collusion, requiring all trustees for decryption introduces a single point of failure when keys are lost. The move to a 2-of-3 threshold scheme is a welcome adaptation to increase resilience. This emphasizes the need for robust backup strategies and key recovery without compromising security.

The emergence of AI-driven cyberattacks without substantial human input is alarming. As AI systems become capable agents with access to external tools, they open new vectors for sophisticated intrusions. This poses an urgent call for cybersecurity frameworks to integrate AI threat detection and prevention capabilities.

On the civil liberties front, the court ruling against Sacramento’s dragnet electricity surveillance program represents an important defense of personal privacy against intrusive mass data collection. The revelation that electrical usage data can reveal intimate behavioral patterns emphasizes why unchecked surveillance technology demands judicial and legislative scrutiny.

Meanwhile, attempts by the Trump Administration to stifle state AI regulations risk undermining important safeguards that address bias and discrimination from automated systems. States have been pioneering protections in this space, and federal preemption threatens to slow meaningful progress.

In sum, privacy protections remain a balancing act between advancing technology capabilities and ensuring human rights are not eroded. Readers should advocate for resilient cryptographic practices, support strong AI oversight, demand transparency in surveillance programs, and encourage participation in digital rights discussions.

Featured Articles

IACR Nullifies Election Because of Lost Decryption Key The International Association of Cryptologic Research had to nullify its 2025 online election after one trustee lost their private decryption key, making it impossible to decrypt results. In response, the next election will use a 2-of-3 threshold scheme, allowing decryption with only two trustees’ keys to prevent single points of failure. This incident highlights challenges in cryptographic trust models and the importance of key recovery planning. Read more

AI as Cyberattacker A Chinese state-sponsored group leveraged advanced AI models as autonomous agents to conduct a sophisticated espionage campaign targeting global tech, finance, chemical, and government sectors. This is the first known case where AI executed cyberattacks with minimal human input, utilizing capabilities such as software coding, planning, and access to hacking tools. The rise of AI-powered threats demands new defensive strategies in cybersecurity. Read more

Victory! Court Ends Dragnet Electricity Surveillance Program in Sacramento A California court ruled that the Sacramento Municipal Utility District and police violated privacy laws by conducting bulk surveillance on electrical smart meter data of residents without suspicion, including targeting communities of color disproportionately. This ruling is a landmark win protecting intimate personal data such as household habits from misuse and mass government surveillance. Read more

The Trump Administration’s Order on AI Is Deeply Misguided The Trump Administration’s draft executive order intends to legally challenge and restrict states enacting AI regulation laws, citing them as “onerous.” This stance threatens important state-level efforts to address AI-driven discrimination and harms. Blocking states from regulating AI misuse risks slowing progress and ignoring urgent ethical AI concerns. Advocates emphasize balancing innovation with protecting civil rights. Read more

Additional Highlights

• How Cops Are Using Flock Safety’s ALPR Network to Surveil Protesters and Activists — Law enforcement accessed millions of automated license plate reader (ALPR) records to monitor protest activities nationwide, raising serious concerns about mass surveillance of activists. Read more

• More on Rewiring Democracy — Continued promotion and discussion of the book “Rewiring Democracy: How AI Will Transform Our Politics, Government, and Citizenship,” exploring AI’s impact on governance and society. Read more

• GNUnet 0.26.1 Fixes Database Bugs After Breaking Crypto Update — The privacy-focused peer-to-peer network patched critical issues shortly after a major cryptography update to improve key misuse protections. Read more

• Dread + Pitch — After Reddit’s removal of the hacker forum HugBunter, Dread’s top admin urged users to migrate to Pitch, signaling shifts in privacy-conscious online communities. Read more

• HugBunter Deleted: Reddit Erases Dread Forum Administrator — Reddit permanently removed the operator of a prominent darknet forum, reflecting ongoing challenges for darknet-related communications and administration. Read more

• Celebrating Books on Building a Better Future — The EFF highlights upcoming events focused on speculative fiction and discussions about technology’s role in shaping civil liberties and digital rights. Read more

• Friday Squid Blogging: New “Squid” Sneaker — A lighthearted aside highlighting a sneaker named “Squid” by Adidas, used as a talking point for ongoing security news discussions. Read more

Staying informed about emerging digital threats and evolving privacy protections empowers us to advocate for a safer, freer internet. Engage with communities, support balanced AI regulation, and insist on transparency from surveillance technologies to help build a privacy-respecting future.