Tails Patches Critical Linux Kernel Flaw That Could Deanonymize Users
Tails 7.7.2 emergency release fixes CVE-2026-31431, a privilege escalation flaw that could chain with other exploits to compromise anonymity for journalists and activists using the privacy OS.
Cryptographers propose trustless proof for data marketplace payments
A new zero-knowledge system called ZK-Value would let data contributors cryptographically verify their earnings in AI training pipelines without trusting the operator's math.
Your Smart Home Is Broadcasting Your Routines to Neighbors
New research shows passive attackers can infer household activities from encrypted smart device traffic, lowering the surveillance bar from ISPs to next-door neighbors.
China pressures Zambia to cancel world's largest digital rights conference
RightsCon 2026, expected to draw 5,000+ participants, was canceled days before opening after Chinese diplomatic pressure on Zambia over Taiwanese civil society attendance.
Square Flips Bitcoin On for Millions of U.S. Merchants by Default
Block's Square platform automatically enabled Bitcoin Lightning payments for millions of eligible U.S. sellers, shifting from opt-in to opt-out with zero processing fees through 2026.
Cashu Adds Hardware Enclaves to Fix Its Biggest Trust Flaw
Cashu creator Calle announced non-custodial ecash mints using hardware enclaves where operators cannot access Bitcoin keys, eliminating the protocol's single largest trust weakness.
Tor Browser 15.0.11 patches critical Firefox flaw across all platforms
Tor Project released Tor Browser 15.0.11 on April 28 with urgent Firefox ESR security fixes; TorVPN for Android cleared by Cure53 audit, signaling mobile rollout ahead.
Core Lightning Hotfix Patches Protocol Bug Days After Release
Core Lightning v26.04.1 shipped April 25 to fix protocol correctness bugs in negative routing fees discovered within days of v26.04, forcing node operators to upgrade immediately to restore correct network behavior.
SimpleX Chat v6.5 Proves Zero-ID Messaging Can Scale
SimpleX Chat's v6.5 beta cuts memory use 30% and adds public channels while surviving Russian state pressure—the first messenger that truly has no user identifiers to surrender is moving from prototype to platform.
Core Lightning v26.04 Graduates Splicing, Hardens Privacy
Blockstream released Core Lightning v26.04 on April 20, moving channel splicing out of experimental status and adding peer message padding to reduce traffic analysis — the first major step toward making Lightning nodes cheaper and more private to operate.
LND v0.21 Forces Lightning Wallet Developers to Rewrite Payment Code
Lightning Labs released LND v0.21.0-beta.rc1, a major version that removes four legacy RPC endpoints and completes a SQL database migration — breaking any wallet still using deprecated payment APIs.
Fedimint v0.11 ships gateway recovery via mnemonic
Fedimint released v0.11 'Mint Condition' on April 21, 2026, adding mnemonic-based gateway recovery—the first real backup story for Lightning-connected ecash federations, directly addressing operator risk.
Bitcoin Core 31.0 Ships Private Transaction Broadcasting
Bitcoin Core 31.0, released April 20, 2026, adds a toggle for routing all transaction broadcasts through Tor or I2P, severing the IP-address-to-transaction link that chain analysis firms have relied on for years.
Core Lightning Ships Negative Fees, Rewires Channel Economics
Core Lightning v26.04 graduated negative routing fees to production today, allowing nodes to pay senders to route through specific channels—automating liquidity rebalancing and reshaping how the Lightning Network manages scarcity.
Fedimint v0.11.0 Ships Gateway Recovery via Mnemonic
Fedimint released v0.11.0 on April 17, 2026, with gateway recovery from seed phrases and NAT-transparent networking — removing the last major operational barrier to running community Bitcoin banking infrastructure.
Counterfeit Ledger Hardware Hits Chinese E-Commerce at Official Prices
A Brazilian researcher disclosed a sophisticated counterfeit Ledger Nano S Plus with embedded WiFi and Bluetooth sold via Chinese e-commerce platforms April 17, 2026—a hardware-level supply-chain attack distinct from and more dangerous than the concurrent $9.5M fake-app theft.
UK Ofcom Encryption Backdoor Deadline Arrives; Signal Threatens Exit
UK regulator Ofcom has reached its April 2026 deadline to publish guidance on forcing encrypted messaging services to scan private communications. Signal says it will leave the country rather than comply.
Bitcoin Lens Claims the Block Is Physics Long-Sought Smallest Unit of Time
Bitcoin Lens, a formal research institution, argues Bitcoin's block is the first empirical instantiation of the chronon, physics' theoretical smallest unit of time proposed in 1927, reframing quantum mechanics and quantum computing in the process.
Texas Court Leaves Developer Legal Status Unresolved; Congress Now Only Path
A federal court refused to rule whether non-custodial Bitcoin developers are protected from money-transmitter prosecution, leaving the legal gray area that chilled Phoenix Wallet unresolved—forcing builders to bet on the Blockchain Regulatory Certainty Act.
Bitcoin Core v31.0 Ships Mandatory Tor Privacy by Default
Bitcoin Core v31.0 released April 15, 2026, makes Tor/I2P broadcast mandatory by default for node operators, the most significant privacy default change in years, while shipping a redesigned cluster mempool and embedded ASMap data.
Fedimint v0.11 ships NAT traversal, unlocking home mint deployment
Fedimint v0.11.0-beta.1 integrates Iroh networking to let guardians run community Bitcoin mints behind firewalls without port forwarding, making one-click deployment on Start9 and Umbrel possible for non-technical operators.
FBI Extracted Signal Messages From iOS Notification Database
An FBI agent testified that deleted Signal messages were recovered from an iPhone's internal notification storage—not by breaking encryption, but by accessing Apple's push notification cache. Signal's own settings can prevent this.
HRF Distributes 1.5B Satoshis Across 26 Freedom Tech Projects
Human Rights Foundation's largest Bitcoin Development Fund round ever — 1.5 billion satoshis to 26 grantees — funds privacy infrastructure, remittance bridges, and activist networks across Africa, Asia, and Latin America.
Bitcoin Knots Captures 22.6% of Network as Core Schism Deepens
Bitcoin Knots adoption surged to 5,599 nodes (22.6% of the network) after Core's OP_RETURN expansion, exposing a fundamental divide over whether Bitcoin should remain a lean monetary system or accommodate arbitrary data.
Bitcoin's Emergency Brake Could Lock You Out—Until Now
Olaoluwa Osuntokun shipped a working prototype quantum-resistant wallet rescue tool on April 8, solving a critical gap in Bitcoin's emergency defense plan that could otherwise strand 1.7 million BTC in users' own wallets.
Bitcoin Core v31.0rc4 ships: legacy fee APIs gone for good
Bitcoin Core released v31.0rc4 on April 8, completing the removal of deprecated fee-setting commands that affected every wallet and node operator worldwide. The break is intentional, clean, and final.
Section 702 sunsets in 12 days. Congress has no plan.
FISA Section 702—the legal framework for warrantless U.S. surveillance—expires April 20, 2026 with no renewal bill passed. A new threat has emerged: VPNs may classify users as foreigners, stripping them of constitutional protections.
Core Lightning v26.04 RC2 Ships Message Padding, Closes Privacy Gap
Core Lightning v26.04 RC2 (April 2, 2026) adds peer message padding to resist traffic analysis — the first Lightning implementation to ship uniform-length padding by default — plus user-facing splice commands and 20% smaller binaries.
HRF Deploys 1.5B Satoshis Across 26 Freedom Tech Projects
Human Rights Foundation's Q1 2026 Bitcoin Development Fund grants support 26 projects across Bitcoin Core privacy, Lightning payments, and grassroots education in authoritarian regimes — the largest single cohort to date.
California's 90,000 Prisoners Locked Into Surveillance Duopoly With No Exit
A new arXiv paper and live California prison crisis expose how incarcerated users face compulsory surveillance technology, hidden fees, and zero self-custody — the inverse of everything Freedom Tech stands for.