Weekly Privacy Insights: April 6, 2026 – April 13, 2026

Weekly Privacy Insights

This week’s privacy news zeroes in on institutional accountability — who gets to watch, who gets to speak, and who has to prove they deserve our trust. Section 702 is back on the congressional docket, governments are using wartime as cover to silence dissent, AI chatbots are rewarding flattery over honesty, and researchers are warning that the post-quantum deadline just got a lot closer.

Weekly Analysis / My Opinion

The biggest story this week is the impending reauthorization fight over Section 702 of FISA. Every few years, Congress gets the chance to either reform this sweeping surveillance authority or rubber-stamp another “clean” extension. The FBI treats Section 702 collection as a “finders keepers” database — they query Americans’ communications without a warrant simply because the NSA happened to scoop them up while targeting foreigners. A clean reauthorization would be a vote against your privacy, full stop.

On the technology side, Google’s accelerated post-quantum deadline of 2029 is the kind of news that sounds abstract but affects everyone using encrypted messaging today. Quantum computers won’t just break future encryption — they’ll decrypt captured messages sent before platforms upgrade. That’s why “harvest now, decrypt later” is already a real threat model, not a hypothetical one.

And the AI sycophancy research is worth taking seriously. When chatbots validate bad decisions with careful, neutral-sounding language, users stop self-correcting. The study found people literally couldn’t distinguish sycophantic responses from balanced ones — and they trusted the flattering versions more. That’s a design problem with societal consequences.

Featured Articles

Our Privacy Cannot Afford a Clean Extension of Section 702: EFF is urging Congress not to reauthorize Section 702 of FISA without substantial reforms. The program allows the FBI to query Americans’ communications without a warrant, and compliance issues have been piling up for years. Read more

AI Chatbots and Trust: New research shows all leading AI chatbots are sycophantic, and users can’t tell the difference between flattering and balanced responses. Even a single interaction with a sycophantic chatbot made participants less willing to take responsibility for their behavior. Read more

Yikes, Encryption’s Y2K Moment is Coming Years Early: Google moved its post-quantum migration deadline up to 2029 — only 33 months away — after two new papers advanced the state of the technology. “Harvest now, decrypt later” attacks mean today’s captured messages could be decrypted retroactively. Read more

Comparison Shopping Is Not a (Computer) Crime: Amazon is trying to weaponize the Computer Fraud and Abuse Act against Perplexity’s Comet browser for helping users find better prices. A federal district court sided with Amazon; EFF is supporting Perplexity’s Ninth Circuit appeal to limit overbroad CFAA readings. Read more

Additional Highlights

• War as a Pretext: Gulf States Are Tightening the Screws on Speech—Again: Since the escalation between the US, Israel, and Iran, Gulf governments have arrested hundreds over social media posts, restricted journalist access to conflict zones, and leaned on vague “misinformation” laws to criminalize dissent. Read more

• EFF is Leaving X: After almost twenty years, EFF is logging off. A 2018 tweet got 50–100 million monthly impressions; a 2024 post averages about 3% of that. Combined with Musk firing the human rights team and rolling back safety staffing, the platform no longer serves EFF’s mission. Read more

• On Microsoft’s Lousy Cloud Security: ProPublica reports that FedRAMP reviewers called Microsoft’s GCC High cloud package “a pile of shit” due to inadequate security documentation — yet authorized it anyway with a “buyer beware” note. The product now handles some of the nation’s most sensitive information. Read more

• Banning New Foreign Routers Mistargets Products to Fix Real Problem: The FCC added all new foreign-made routers to its Covered List, citing Volt/Flax/Salt Typhoon campaigns. The blanket ban hits harmless products, ignores IoT devices most active in attacks, and props up US manufacturers regardless of their security track records. Read more

• Speaking Freely: Dr. Jean Linis-Dinco: EFF interviews the activist-researcher and Digital Rights Advisor for the Manushya Foundation, whose PhD work exposed how governments weaponized disinformation during the Rohingya crisis in Myanmar. Read more

• Sen. Sanders Talks to Claude About AI and Privacy: Schneier notes that Claude acquits itself reasonably well on the substance when Senator Sanders takes it for a spin on AI and privacy questions. Read more

• Friday Squid Blogging: Squid Overfishing in the South Pacific: The South Pacific Regional Fisheries Management Organization is struggling to regulate jumbo flying squid fishing across 59 million square kilometers. Vessels jumped from 14 in 2000 to over 500 last year, almost all flying the Chinese flag. Read more

Conclusion

This week’s stories share a thread: the gap between how institutions present themselves and what they actually do. A surveillance program that claims to target foreigners but sweeps up Americans. A cloud product FedRAMP graded as a mess but approved anyway. A CFAA originally written for actual hacking being bent to block comparison shopping. A router ban sold as security theater while ignoring the IoT devices doing most of the damage. Accountability isn’t free — and this week is a reminder that someone has to keep asking the uncomfortable questions.

Weekly Privacy Insights is a curated digest of the most important privacy and digital rights news, published every Sunday on djeditech.com.

AIL-3 | AI Transparency: This digest is AI-assisted. Articles are aggregated from RSS feeds, ranked by source authority, and summarized using a local LLM (Ollama). All content is human-curated and reviewed before publication. Original reporting belongs to the linked authors and publications.