{
"$type": "site.standard.document",
"bskyPostRef": {
"cid": "bafyreialcdt4gcfixw4esoxwba4jcixmluhhu5yiheiti3326jh3g4orli",
"uri": "at://did:plc:awj2q63kg2v3k5xwsjh2uoe3/app.bsky.feed.post/3mlwa2h3tdit2"
},
"coverImage": {
"$type": "blob",
"ref": {
"$link": "bafkreifoqbltsnjwvs6ccdzlf2dchtkk5nyulogrlaeurewszsjg6fuzwq"
},
"mimeType": "image/png",
"size": 895793
},
"description": "This Week in Privacy #53",
"path": "/livestreams/2026/05/15/android-17-is-looking-great-for-privacy-security/",
"publishedAt": "2026-05-15T21:00:20.000Z",
"site": "https://www.privacyguides.org",
"tags": [
"Privacy & Security NewsThe latest news in data privacy, cybersecurity, and consumer rights brought to you by Privacy Guides.Privacy GuidesJonah Aragon",
"What’s New in Android Security and Privacy in 2026Android elevates mobile security with new AI-powered protections and advanced safeguards to help keep you safe.GoogleEugene Liderman",
"Android 17 to expand banking scam call and privacy protectionsAndroid 17, expected to roll out next month, will introduce several security and privacy features focused on device theft, threat detection, and banking scam calls.BleepingComputerBill Toulas",
"Signal adds security warnings for social engineering, phishing attacksSignal has introduced new in-app confirmations and warning messages as additional safeguards against phishing and social engineering attempts that could lead to various forms of fraud.BleepingComputerBill Toulas",
"Windows BitLocker zero-day gives access to protected drives, PoC releasedA cybersecurity researcher has published proof-of-concept (PoC) exploits for two unpatched Microsoft Windows vulnerabilities named YellowKey and GreenPlasma, which are a BitLocker bypass and a privilege-escalation flaw.BleepingComputerBill Toulas",
"https://cybernews.com/privacy/google-qr-code-recaptcha-requires-approved-phone",
"previous",
"Stop the Surveillance State: Stop Bill C-22!🚨 Bill C-22 forces every Canadian internet provider, messaging app & cloud service to build surveillance backdoors and store a year of your data. Foreign state hackers exploited similar legislation in the US. Shut the backdoor: https://openmedia.org/StopC22 #BillC22",
"Le projet de loi C-22 intègre des portes dérobées de surveillance partout🚨 Le C-22 oblige fournisseurs Internet, apps de messagerie et services infonuagiques canadiens à créer des portes dérobées et conserver vos données un an. Des pirates étrangers ont exploité des lois similaires aux É.-U. Fermez la porte dérobée : https://openmedia.org/StopC22-bsky-fr #BillC22",
"Video: Will Cape be my new favorite carrier?I’ve seen a lot of people on Signal and Reddit, a lot of GrapheneOS users, and a lot of others hopping on the Cape train lately. Among our volunteers, I know I’m not the only one giving it a try 🤔 What do we think, is it worth a closer look? Should Privacy Guides agree to an interview with them? Are there any lingering questions after this video you want answered? Let me know 👇Privacy Guides Communityjonah"
],
"textContent": "Our top stories this week:\n\n * Google has announced Android 17 which features improvements to privacy and security\n * Signal adds security warnings for social engineering, and phishing attacks\n * A zero-day in Windows BitLocker allows access to encrypted drives\n * Google's new reCAPTCHA requires 'approved' phones locking out alternative privacy focused phone operating systems\n * The Canadian government has proposed Bill C-22 a sweeping surveillance proposal that would force the collection of Canadians' private data on every digital service they use\n\n\n\n* * *\n\n## TWIP Live 🔴\n\n* * *\n\n## Updates from the Team\n\n### How To Run A Signal Proxy\n\nThis week we finally publicly released our video about how to setup a Signal Proxy, we hope this resource will allow for more people to setup a Signal Proxy and allow for more people to access Signal in countries that censor access to the platform.\n\n### Early Access: Naomi Brockwell Interview\n\nThis week we've been working on an interview with Naomi Brockwell, Privacy Guides members will have early access to this interview where we dive deep into Naomi's work on the Surveillance Accountability Act.\n\n### Bonus Content: Naomi Brockwell Interview\n\nWe also asked Naomi some extra questions that were less focused on privacy, if you're a Privacy Guides member you'll also have access to the bonus content that we couldn't include in the main interview video!\n\n### News\n\nPrivacy & Security NewsThe latest news in data privacy, cybersecurity, and consumer rights brought to you by Privacy Guides.Privacy GuidesJonah Aragon\n\n* * *\n\n## Sources\n\n### Android 17\n\nThis week Google hosted the Android Show (Google I/O edition) and during the event they announced many new privacy and security upgrades coming to the next version of Android. While it mainly focused on Gemini and AI features, there was a section that included new privacy and security features such as:\n\n * Automatic financial scam call detection which automatically verifies the number is actually the one from the financial institution\n * Expansion and additional protections included in Advanced Protection mode\n * Live Threat Detection which monitors for stalkerware which automatically analyses apps for potential risk\n\nWhat’s New in Android Security and Privacy in 2026Android elevates mobile security with new AI-powered protections and advanced safeguards to help keep you safe.GoogleEugene LidermanAndroid 17 to expand banking scam call and privacy protectionsAndroid 17, expected to roll out next month, will introduce several security and privacy features focused on device theft, threat detection, and banking scam calls.BleepingComputerBill Toulas\n\n### Signal anti-phishing protections\n\nSignal has introduced additional safeguards to protect users against phishing attacks, this is where an attacker disguises themselves as a trustworthy actor to exfiltrate information. This change comes after attacks targeting high profile users have escalated, attackers have been disguising themselves as \"Signal Support\". This change displays additional warnings when users accept chats from new users, forcing them to think twice about if the sender is legitimate.\n\nSource: SignalSignal adds security warnings for social engineering, phishing attacksSignal has introduced new in-app confirmations and warning messages as additional safeguards against phishing and social engineering attempts that could lead to various forms of fraud.BleepingComputerBill Toulas\n\n### A windows BitLocker zero-day allows for accessing encrypted drives.\n\nBitLocker, the tool that Microsoft Windows uses for encrypting drives has been shown to be exploitable by a cyber security researcher. The exploit uses two unpatched vulnerabilities to allow for the bypass of BitLocker. Check out the write up by Bleeping Computer for the full details.\n\nWindows BitLocker zero-day gives access to protected drives, PoC releasedA cybersecurity researcher has published proof-of-concept (PoC) exploits for two unpatched Microsoft Windows vulnerabilities named YellowKey and GreenPlasma, which are a BitLocker bypass and a privilege-escalation flaw.BleepingComputerBill Toulas\n\n### Google's new reCAPTCHA requires an 'approved' device, could lock out privacy focused devices.\n\nGoogle has been introducing additional challenges in it's reCAPTCHA service to fight against AI scraping and bots, one of the new challenges requires users to scan a QR code on their mobile device. However this process can only be completed on 'approved' devices and as such GrapheneOS devices can't complete the challenge. This is due to the captcha requiring hardware attestation that is approved by Google or Apple, which GrapheneOS is not.\n\nSource: CyberNews\n\nhttps://cybernews.com/privacy/google-qr-code-recaptcha-requires-approved-phone\n\n### Canada's New Sweeping Surveillance Proposal: Bill C-22\n\nIt's time for privacy activists in Canada to get to work, Bill C-22 is a new proposal that will force data collection for every service and device that Canadians use. The main purpose of the bill is to allow for lawful access by the Canadian government, this means that electronic service providers would have to maintain the technical ability to allow for government access to private communications and data. This would effectively build a backdoor that the government but also any other bad actor could exploit.\n\nOpenMedia has started a campaign against this proposal, they have a form which Canadians can fill out to contact their elected representatives. OpenMedia has been very successful at getting the Canadian Government to withdraw previous surveillance bills, we urge any Canadian members of our community to make their opposition to Bill C-22 known to their representatives.\n\nStop the Surveillance State: Stop Bill C-22!🚨 Bill C-22 forces every Canadian internet provider, messaging app & cloud service to build surveillance backdoors and store a year of your data. Foreign state hackers exploited similar legislation in the US. Shut the backdoor: https://openmedia.org/StopC22 #BillC22\n\nEnglish\n\nLe projet de loi C-22 intègre des portes dérobées de surveillance partout🚨 Le C-22 oblige fournisseurs Internet, apps de messagerie et services infonuagiques canadiens à créer des portes dérobées et conserver vos données un an. Des pirates étrangers ont exploité des lois similaires aux É.-U. Fermez la porte dérobée : https://openmedia.org/StopC22-bsky-fr #BillC22\n\nFrench\n\n* * *\n\n## Forum Updates\n\nVideo: Will Cape be my new favorite carrier?I’ve seen a lot of people on Signal and Reddit, a lot of GrapheneOS users, and a lot of others hopping on the Cape train lately. Among our volunteers, I know I’m not the only one giving it a try 🤔 What do we think, is it worth a closer look? Should Privacy Guides agree to an interview with them? Are there any lingering questions after this video you want answered? Let me know 👇Privacy Guides Communityjonah",
"title": "Android 17 Is Looking Great for Privacy & Security",
"updatedAt": "2026-05-15T21:00:20.246Z"
}