# A New Era of Mass Surveillance Is Taking Shape *Author: Jack Inabinet* *Published: May 5, 2026* *Source: https://www.bankless.com/read/a-new-era-of-mass-surveillance-is-taking-shape* --- **We're entering an era of automated, turbo-charged assaults on privacy **– and as tech companies give the government new AI-driven means of monitoring Americans at a massive scale, we're also seeing a bipartisan resistance from elected leaders to update the privacy rules of engagement for a new future. This dynamic was witnessed this past week in the bipartisan passage of an extension to a key spy bill, but also through a deluge of less-publicized privacy-eroding bills collectively defining a new era of government-obtainable user data. ## Evolving Surveillance Threats The Foreign Intelligence Surveillance Act of 1978, or FISA, has long served as a controversial pillar of how the U.S. conducts surveillance abroad. It allows federal law enforcement and intelligence agencies to intercept the digital communications of foreign nationals located outside the United States without warrants, and is one of the most controversial pillars of modern surveillance policy. At the center of FISA is a secretive court that reviews and approves government requests to conduct surveillance, without the knowledge of the person being monitored. While intended to target foreign individuals outside the United States, FISA surveillance inevitably sweeps more broadly. Because online networks are global, FISA surveillance can also extend to individuals who are not themselves under investigation. As a result, entirely domestic conversations can be collected, stored, and queried by intelligence agencies without requiring a traditional warrant. Despite [controversy](https://x.com/SenRandPaul/status/2050622344708972812?s=20) over FISA, a bipartisan coalition within the U.S. House of Representatives just [approved](https://www.pbs.org/newshour/politics/watch-live-house-expected-to-vote-on-extending-divisive-u-s-spy-powers) a three-year extension of the spy power program, declining to make any revisions. > The House passed FISA Section 702 renewal yesterday. I voted NO.This was a Uni-Party vote in favor of unchecked government surveillance without adequate warrants or accountability. [pic.twitter.com/kjFRIZpAXk](https://t.co/kjFRIZpAXk)— Thomas Massie (@RepThomasMassie) [April 30, 2026](https://twitter.com/RepThomasMassie/status/2049794823859630164?ref_src=twsrc%5Etfw) Why should you care about FISA when it seems to be one of the few things Republicans and Democrats in Congress (mostly) agree on? The surface area for government intrusion is growing and law-abiding citizens have fewer options at their disposal to avoid getting caught up in mass collection. Earlier this year, the Federal Communications Commission [banned](https://www.fcc.gov/faqs-recent-updates-fcc-covered-list-regarding-routers-produced-foreign-countries) the sale of new consumer internet routers manufactured outside the US, citing national security concerns. This push coincides with a nationwide push for operating system-level identity verification programs; the [U.S. Congress](https://www.congress.gov/bill/119th-congress/house-bill/8250/all-info), [State of New York](https://www.nysenate.gov/legislation/bills/2025/S8102/amendment/A), and [State of California](https://www.tomshardware.com/software/operating-systems/california-introduces-age-verification-law) have all introduced bills that will require software manufacturers to obtain the government-issued identifications of users. In parallel, just this week, the Senate Judiciary Committee unanimously [advanced](https://x.com/ReclaimTheNetHQ/status/2051029898643296354?s=20) the GUARD Act, a bill that will require AI companies to verify the identity of every American who wants to use a large language model. Per the bill’s text, “reasonable age verification measures” cannot include checkboxes or self-entered birth dates. These developments could ultimately exclude anyone who refuses to verify their identity from accessing the internet, while simultaneously enabling unlimited visibility into individuals’ online activity. Similar developments have already [occurred](https://x.com/SpeechUnion/status/2042631053907554718?s=20) in the United Kingdom, where children have resorted to drawing mustaches on themselves to [bypass](https://www.cnet.com/tech/services-and-software/one-third-of-uk-children-successfully-circumvent-online-age-verification/) mandatory age verification checks, meaning that enforcing ID verification at scale will likely require the widespread implementation of invasive digital identity systems capable of verifying users across platforms. > This isn't an age verification bill.This is device level KYC.Every operating system would need proof of age which means gov ID + photo for every device connected to the internet.The lazy default implementation? Gov ID + selfie to Persona. The same KYC Discord and Anthropic… [https://t.co/z2akuh2gef](https://t.co/z2akuh2gef)— RYAN SΞAN ADAMS - rsa.eth 🦄 (@RyanSAdams) [April 17, 2026](https://twitter.com/RyanSAdams/status/2045232433197695392?ref_src=twsrc%5Etfw) If you think you can still outmaneuver pervasive U.S. government surveillance by setting your VPN to Papua New Guinea, you’d be sorely mistaken, as governments around the world are already taking steps to eliminate VPN access altogether. Newly passed [legislation](https://www.tomshardware.com/software/vpn/utah-becomes-first-us-state-to-target-vpn-use-with-age-verification-law) in Utah (which goes into effect tomorrow) will extend enforcement of age restriction requirements on “adult-focused” websites to all individuals located within Utah, and aims to account for whether they use a VPN or proxy to mask their IP address. As it is impossible for websites to know whether VPN users are located in Utah, the Electronic Frontier Foundation [warns](https://www.eff.org/deeplinks/2026/04/utahs-new-law-regulating-vpns-goes-effect-next-week) that legal risks could force sites to either ban VPN IPs or mandate age verification for every visitor globally. In reality, meaningful enforcement of Utah’s VPN ban would likely require invasive surveillance cooperation with internet service providers. > 🇪🇺 EU Vice-President Henna Virkkunen warns VPNs will be addressed under upcoming online age and identity verification rules.“VPN… must not allow the system to be circumvented,” she said, responding to concerns users could bypass the new EU age and ID system.Follow: [@europa](https://twitter.com/europa?ref_src=twsrc%5Etfw) [pic.twitter.com/GfQmeQJRwK](https://t.co/GfQmeQJRwK)— Europa.com (@europa) [May 1, 2026](https://twitter.com/europa/status/2050289150868488296?ref_src=twsrc%5Etfw) Soon, not even your car will be immune from prying eyes. Sneakily [tucked](https://natlawreview.com/article/government-mandated-kill-switch-coming-vehicle-near-you) into an eleven-hundred-page 2021 infrastructure bill that was approved with little public debate, Section 24220 of the Infrastructure Investment and Jobs Act [directs](https://www.nhtsa.gov/sites/nhtsa.gov/files/2023-07/Report-to-Congress-Advanced-Impaired-Driving-Prevention-Technology_07-17-23.pdf#:~:text=Section%2024220%2C%20%E2%80%9CADVANCED%20IMPAIRED%20DRIVING%20TECHNOLOGY%2C%E2%80%9D%20of,advanced%20drunk%20and%20impaired%20driving%20prevention%20technology.%E2%80%9D) the NHTSA to mandate “advanced impaired driving prevention technology” in all new passenger vehicles, with a full implementation targeted for 2027. A bill was [introduced](https://www.repairerdrivennews.com/2026/05/04/federal-law-mandating-kill-switches-in-vehicles-remains-intact/) earlier this year by Representative Thomas Massie to defund this regulation, but it was defeated 164-268 as 57 Republicans joined 211 Democrats in opposition. > Every new car in the U.S. will be required by law to have tech that puts constant surveillance on the driver by 2027.AI in your car will determine if you're sober and fit to drive, automatically turning off the vehicle if it determines you're a danger on the road. [pic.twitter.com/7SDbAJ2GyC](https://t.co/7SDbAJ2GyC)— Pubity (@pubity) [April 25, 2026](https://twitter.com/pubity/status/2047994026029433116?ref_src=twsrc%5Etfw) ## Crossing the Rubicon The right to privacy was never intended to be conditional. The UN's 1948* Universal Declaration of Human Rights* [enshrined](https://www.un.org/en/about-us/universal-declaration-of-human-rights) this right among its global standards for fundamental freedoms and protections: “No one shall be subjected to arbitrary interference with his privacy, family, home or correspondence, nor to attacks upon his honour and reputation. Everyone has the right to the protection of the law against such interference or attacks.” New technology has greatly scaled the capabilities of government data collection, and privacy laws have not even come close to keeping up pace in protecting your rights, instead allowing private data brokers to bulk up massive domestic data sources that can be integrated into government surveillance pipelines with little oversight. What makes this moment so dangerous is not just the scale of the surveillance, but the lack of resistance. Bills with far-reaching implications that will fundamentally reshape the relationship between individuals and the state are being introduced with little more than passing public concern or attention. The cypherpunk DNA still embedded in the crypto industry – though sometimes only faintly visible – aims to shield citizens from authoritarian government overreach. Ethereum culture has done better than most ecosystems at enshrining values like censorship resistance, open source, privacy, and security into its operational values, but the tech industry and tech-savvy citizens need to show up for the web's founding ideals. It is imperative that society stands up for our fundamental right to privacy *at this very moment*, for once we become accustomed to being watched, many will struggle to remember what they have lost.