In privacy communities, its usually assumed that non-libre OSes have the *capability* of spying on *everything* you do. But, what do they *actually* monitor *in practice*?
-
thats the thing you dont know what there actually monitorong so you assume the worst
Worse, they ban us from proving. They don't want us to know.
-
cross-posted from: https://sh.itjust.works/post/41641719
Keystrokes? Screen recordings? Camera and microphone spying? Assuming an average person who's not actively targeted by an intelligence agency.
There is so so so much, and they do get caught, and when they do we keep a peek into how invasive they are. As someone who has had to worry about being targeted by intelligence agencies and nation-states, I was completely blindsided by corporate/capitalist surveillance.
for example, look at this action by Meta, where they broke out of security sandboxes and exploited protocols in order to tie your browsing history (even private browsing) back to your identify saved in their databases back in meta land
https://www.theregister.com/2025/06/03/meta_pauses_android_tracking_tech/
the amount of data that is being harvested and sold, and resold, is absurd, and the greater threat is not just that they are exploiting you, its that they dont care who the data gets sold to. Bad actors (criminals, etc) can and will purchase information they can use against you.
So, consider the unintentional ramifications of all that info being harvested and available in addition to the intentional ramifications of hyper greed, and couple that with the amount of available compute and you will see that you do not need to be a person of interest, everyone is a data point that can be and will be exploited.
I would encourage everyone to take their privacy seriously.
-
cross-posted from: https://sh.itjust.works/post/41641719
Keystrokes? Screen recordings? Camera and microphone spying? Assuming an average person who's not actively targeted by an intelligence agency.
Check this out, its a pretty good view into good practice, beginner, intermediate, and advanced, with recommendations.
https://digital-defense.io/ -
Even if you turn off the setting and it stays off in subsequent updates, how can you know that the setting actually does anything at all? That is to say how can you trust Microsoft does not ignore the setting and just gathers the data always.
It might be not sending any extra data - which can be verified via packet sniffing like Wireshark - but how do you confirm they are not saving the legit requests you do and collect it silently at the backend? It cannot be proven (beyond reasonable doubt).
-
cross-posted from: https://sh.itjust.works/post/41641719
Keystrokes? Screen recordings? Camera and microphone spying? Assuming an average person who's not actively targeted by an intelligence agency.
not sure about win/mac, but for android yes they do keep record of stuff like what apps are being launched and upload/sync to google account. it's not hidden though.. it is(was) literally available on google account history or something (was about 7 years ago)
regarding keystrokes there was a case of a famous chinese keyboard app doing dubious stuff. not sure if i can say it's on a os level but i'm pretty sure more than a few chinese phones ship with that. https://citizenlab.ca/2023/08/vulnerabilities-in-sogou-keyboard-encryption/
-
Worse, they ban us from proving. They don't want us to know.
thats y intel ME is so under wraps if people knew what it did thr entire tech space would colapse in
-
cross-posted from: https://sh.itjust.works/post/41641719
Keystrokes? Screen recordings? Camera and microphone spying? Assuming an average person who's not actively targeted by an intelligence agency.
-
cross-posted from: https://sh.itjust.works/post/41641719
Keystrokes? Screen recordings? Camera and microphone spying? Assuming an average person who's not actively targeted by an intelligence agency.
The problem is its closed source and often difficult for the average user to tell what is going out. All you can do is Do Not Trust.
-
There is so so so much, and they do get caught, and when they do we keep a peek into how invasive they are. As someone who has had to worry about being targeted by intelligence agencies and nation-states, I was completely blindsided by corporate/capitalist surveillance.
for example, look at this action by Meta, where they broke out of security sandboxes and exploited protocols in order to tie your browsing history (even private browsing) back to your identify saved in their databases back in meta land
https://www.theregister.com/2025/06/03/meta_pauses_android_tracking_tech/
the amount of data that is being harvested and sold, and resold, is absurd, and the greater threat is not just that they are exploiting you, its that they dont care who the data gets sold to. Bad actors (criminals, etc) can and will purchase information they can use against you.
So, consider the unintentional ramifications of all that info being harvested and available in addition to the intentional ramifications of hyper greed, and couple that with the amount of available compute and you will see that you do not need to be a person of interest, everyone is a data point that can be and will be exploited.
I would encourage everyone to take their privacy seriously.
I swear meta is just built different in terms on spying on people compared to everyone else.
It's like they have a team of ex non ethical elite hackers to find security vulnerabilities in everything and exploit everything as much as possible. -
I swear meta is just built different in terms on spying on people compared to everyone else.
It's like they have a team of ex non ethical elite hackers to find security vulnerabilities in everything and exploit everything as much as possible.Reptillian ceo desparately trying to learn how to properly drink water
