MEDIUMVulnerability
Global

Big tech fails to opt-out users requesting not to be tracked much of the time, new research says

·Source: The Record

Updated:

Executive Summary

The audit from privacy organization webXray studied California web traffic in March and found that 194 online advertising services “ignore legally defined, globally standard, opt-out signals endorsed by regulators."

Analysis

The audit from privacy organization webXray studied California web traffic in March and found that 194 online advertising services “ignore legally defined, globally standard, opt-out signals endorsed by regulators."
Source Attribution

Originally published by The Record on Apr 16, 2026.

Related Threats

LOWVulnerabilityNEW

Infoblox to Acquire Kentik for Unified Network Visibility

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/infoblox-to-acquire-kentik-for-unified-network-visibility-image_small-4-a-32201.jpg" align=right hspace=4><b>SaaS Observability Vendor Adds Real-Time Network Flow Telemetry to DNS Intelligence</b><br>Infoblox plans to acquire San Francisco-based network observability specialist Kentik to combine DNS, DHCP, asset intelligence and r

Bank Info Security
MEDIUMVulnerabilityNEW

Why AI Can't Fix Broken Healthcare Processes, Bad Data

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/ai-cant-fix-broken-healthcare-processes-bad-data-image_small-5-a-32200.jpg" align=right hspace=4><b>Peter Justen of AmeriTrust on How Data Integrity Affects Benefits Administration</b><br>Artificial intelligence is transforming healthcare and government benefits administration, but organizations must strengthen data quality and op

Bank Info Security
CRITICALVulnerabilityNEW

NVD CRITICAL: CVE-2026-12761 — The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) pl...

The miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerable to authentication bypass leading to account takeover in versions up to and including 7.7.0. This is due to the Profile Completion flow accepting an arbitrary email address via the 'email_field' POST parameter without verifying that the email belongs to the identity returned by the OAuth

CVE-2026-12761
NIST NVD