Technology

58306 readers

3851 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS

2013

submitted 1 year ago by Tazmanian@lemmy.world to c/technology@lemmy.world

463 comments fedilink hide all child comments

Vulnerabilities in Sogou Keyboard encryption expose keypresses to network eavesdropping.

you are viewing a single comment's thread
view the rest of the comments

[–] random_character_a@lemmy.world 5 points 1 year ago (1 children)

Analytics is a broad concept, but every document is indeed a bit much.

[–] HaggierRapscallier@feddit.nl 7 points 1 year ago* (last edited 1 year ago) (1 children)

The timeline feature on Windows that shows your info across devices when your account is signed in, contains websites, apps and services. They say you can see it for 30 days, but I doubt they delete it after, even if they say they do. They probably at minimum process the meta-data.

I don't see why c/technology scream about privacy violations every other post, and then suddenly turn forgetful when geopolitics comes into play. I used to watch 'exposés about China' and anti-sjw stuff on youtube back in 2015 too - and then just as I stopped watching them, they became an 'official geopolitical enemy'. The last decade has been a ride.

[–] Landrin201@lemmy.ml 3 points 1 year ago (1 children)

Because all the sinophobe tech bros have migrated to Lemmy and don't actually understand the shit they're talking about. They think the tech THEY use is super cool and want to keep using it, and also think China is scary and an imminent threat to them sitting in their gamer chair surrounded by doritos.

[–] wizardbeard@lemmy.dbzer0.com 4 points 1 year ago

Or maybe, just maybe, people have been packet sniffing Microsoft's shit for ages and haven't found them to be doing things quite as egregiously. Go ahead, you can look this shit up.

Most of the spying features in Windows are able to be explicitly disabled through options Microsoft publishes themselves. It's Group Policy, only available on Pro licenses, but anyone concerned about privacy should be on that anyway or spoofing their license using again, Microsoft published techniques (KMS). There's also often registry keys to toggle it as well, but they tend to not be as reliable and change over updates.

There are also tons of ways to strip out entire components of Windows from the install media before installation, and also after it has been installed. Can't collect telemetry "X" if the telemetry "X" service isn't there.

Lastly, host file allows blocking network traffic to specific endpoints, and the very few times Microsoft has bypassed that it has made news. You can just block Microsoft's entire IP block through host if you're really paranoid.

Beyond that, I've seen plenty of people concerned about the US's data collection. It's just not always spoken about as a US thing but more as a general tech thing, likely because internet discussion is still very US centric outside the great firewall and most big tech in the English speaking world comes from the US. So i think the US connection often just goes without saying.

I'll give you this: framing much of this as related to any nation state instead of just all tech's hoovering up of data is disingenuous.

Also, if your threat model truly needs to be concerned about any nation state actors specifically then you're probably already fucked.