[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
www/proprietary malware-appliances.de.html po/m...
From: |
GNUN |
Subject: |
www/proprietary malware-appliances.de.html po/m... |
Date: |
Wed, 25 Oct 2017 04:00:38 -0400 (EDT) |
CVSROOT: /web/www
Module name: www
Changes by: GNUN <gnun> 17/10/25 04:00:38
Modified files:
proprietary : malware-appliances.de.html
Added files:
proprietary/po : malware-appliances.de-diff.html
Log message:
Automatic update by GNUnited Nations.
CVSWeb URLs:
http://web.cvs.savannah.gnu.org/viewcvs/www/proprietary/malware-appliances.de.html?cvsroot=www&r1=1.5&r2=1.6
http://web.cvs.savannah.gnu.org/viewcvs/www/proprietary/po/malware-appliances.de-diff.html?cvsroot=www&rev=1.1
Patches:
Index: malware-appliances.de.html
===================================================================
RCS file: /web/www/www/proprietary/malware-appliances.de.html,v
retrieving revision 1.5
retrieving revision 1.6
diff -u -b -r1.5 -r1.6
--- malware-appliances.de.html 20 Jul 2017 12:59:45 -0000 1.5
+++ malware-appliances.de.html 25 Oct 2017 08:00:37 -0000 1.6
@@ -1,4 +1,9 @@
-<!--#set var="ENGLISH_PAGE" value="/proprietary/malware-appliances.en.html" -->
+<!--#set var="PO_FILE"
+ value='<a href="/proprietary/po/malware-appliances.de.po">
+ https://www.gnu.org/proprietary/po/malware-appliances.de.po</a>'
+ --><!--#set var="ORIGINAL_FILE" value="/proprietary/malware-appliances.html"
+ --><!--#set var="DIFF_FILE"
value="/proprietary/po/malware-appliances.de-diff.html"
+ --><!--#set var="OUTDATED_SINCE" value="2017-08-26" --><!--#set
var="ENGLISH_PAGE" value="/proprietary/malware-appliances.en.html" -->
<!--#include virtual="/server/header.de.html" -->
<!-- Parent-Version: 1.79 -->
@@ -8,6 +13,7 @@
<!--#include virtual="/proprietary/po/malware-appliances.translist" -->
<!--#include virtual="/server/banner.de.html" -->
+<!--#include virtual="/server/outdated.de.html" -->
<h2>Schadsoftware in Geräten</h2>
<p><a href="/proprietary/">Weitere Beispiele proprietärer
Schadsoftware</a></p>
@@ -781,7 +787,7 @@
<p class="unprintable"><!-- timestamp start -->
Letzte Ãnderung:
-$Date: 2017/07/20 12:59:45 $
+$Date: 2017/10/25 08:00:37 $
<!-- timestamp end -->
</p>
Index: po/malware-appliances.de-diff.html
===================================================================
RCS file: po/malware-appliances.de-diff.html
diff -N po/malware-appliances.de-diff.html
--- /dev/null 1 Jan 1970 00:00:00 -0000
+++ po/malware-appliances.de-diff.html 25 Oct 2017 08:00:38 -0000 1.1
@@ -0,0 +1,683 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
+ "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<!-- Generated by GNUN -->
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="content-type" content="text/html; charset=utf-8" />
+<title>/proprietary/malware-appliances.html-diff</title>
+<style type="text/css">
+span.removed { background-color: #f22; color: #000; }
+span.inserted { background-color: #2f2; color: #000; }
+</style></head>
+<body><pre>
+<!--#include virtual="/server/header.html" -->
+<!-- Parent-Version: <span
class="removed"><del><strong>1.79</strong></del></span> <span
class="inserted"><ins><em>1.84</em></ins></span> -->
+<title>Malware in Appliances
+- GNU Project - Free Software Foundation</title>
+ <!--#include virtual="/proprietary/po/malware-appliances.translist" -->
+<!--#include virtual="/server/banner.html" -->
+<h2>Malware in Appliances</h2>
+
+<p><a href="/proprietary/proprietary.html">Other examples of
proprietary
+malware</a></p>
+
+<div class="highlight-para">
+<p>
+<em>Malware</em> means software designed to function in ways that
+mistreat or harm the user. (This does not include accidental errors.)
+</p>
+
+<p>
+Malware and nonfree software are two different issues. The difference
+between <a href="/philosophy/free-sw.html">free software</a> and
+nonfree software is in <a
+href="/philosophy/free-software-even-more-important.html">
+whether the users have control of the program or vice versa</a>. It's
+not directly a question of what the program <em>does</em> when it
+runs. However, in practice nonfree software is often malware, because
+the developer's awareness that the users would be powerless to fix any
+malicious functionalities tempts the developer to impose some.
+</p>
+</div>
+
+<p>Here are examples of malware in appliances.</p>
+
+<ul>
+ <li>
+ <span class="inserted"><ins><em><p>Every “home security”
camera, if its manufacturer can communicate with it,
+ is a surveillance device. <a
+href="https://www.theverge.com/circuitbreaker/2017/10/4/16426394/canary-smart-home-camera-free-service-update-change">
+ Canary camera is an example</a>.</p>
+ <p>The article describes wrongdoing by the manufacturer, based on
the fact
+ that the device is tethered to a server.</p>
+ <p><a href="/proprietary/proprietary-tethers.html">More about
proprietary tethering</a>.</p>
+ <p>But it also demonstrates that the device gives the company
+ surveillance capability.</p>
+ </li>
+
+ <li>
+ <p>A “smart” intravenous pump designed for
+ hospitals is connected to the internet. Naturally <a
+href="https://www.techdirt.com/articles/20170920/09450338247/smart-hospital-iv-pump-vulnerable-to-remote-hack-attack.shtml">
+ its security has been cracked</a>.</p>
+ <p>Note that this article misuses the term <a
+href="/philosophy/words-to-avoid.html#Hacker">“hackers”</a>
+ referring to crackers.</p>
+</li>
+<li>
+ <p>The bad security in many Internet of Stings devices
+ allows <a
href="https://www.techdirt.com/articles/20170828/08152938092/iot-devices-provide-comcast-wonderful-new-opportunity-to-spy-you.shtml">ISPs
+ to snoop on the people that use them</a>.</p>
+ <p>Don't be a sucker—reject all the stings.</p>
+ <p>It is unfortunate that the article uses the
+ term <a
href="/philosophy/words-to-avoid.html#Monetize">“monetize”</a>.</p>
+</li>
+<li>
+ <p>Tesla used a universal backdoor in its software to limit customers
to
+ using just <a
href="https://techcrunch.com/2017/09/09/tesla-flips-a-switch-to-increase-the-range-of-some-cars-in-florida-to-help-people-evacuate/">
+ part of the battery of some cars</a>.</p>
+
+ <p>While remotely allowing car “owners” to use the whole
battery
+ capacity did not do them any harm, the same back door would permit
+ Tesla (perhaps under the command of some government) to remotely order
+ the car to use none of its battery. Or perhaps to drive its passenger
+ to a torture prison.</p>
+</li>
+
+<li></em></ins></span>
+ <p>Many models of Internet-connected cameras are tremendously insecure.
+ They have login accounts with hard-coded passwords, which can't be
+ changed, and <a
href="https://arstechnica.com/security/2017/06/internet-cameras-expose-private-video-feeds-and-remote-controls/">there
is no way to
+ delete these accounts either</a>.</p>
+</li>
+
+<li>
+<p>The proprietary code that runs pacemakers, insulin pumps, and other
+medical devices is <a
href="http://www.bbc.co.uk/news/technology-40042584">
+full of gross security faults</a>.</p>
+</li>
+
+<li><p>Users are suing Bose for <a
+href="https://www.washingtonpost.com/news/the-switch/wp/2017/04/19/bose-headphones-have-been-spying-on-their-customers-lawsuit-claims/">
+distributing a spyware app for its headphones</a>.
+Specifically, the app would record the names of the audio files
+users listen to along with the headphone's unique serial number.
+</p>
+
+<p>The suit accuses that this was done without the users' consent.
+If the fine print of the app said that users gave consent for this,
+would that make it acceptable? No way! It should be flat out
+<a href="/philosophy/surveillance-vs-democracy.html">
+illegal to design the app to snoop at all</a>.
+</p>
+</li>
+
+<li id="anova">
+ <p>Anova sabotaged users' cooking devices with a downgrade that
+ tethered them to a remote server. <a
href="https://consumerist.com/2017/04/12/anova-ticks-off-customers-by-requiring-mandatory-accounts-to-cook-food/#more-10275062">Unless
users create an account on Anova's servers, their
+ cookers won't function.</a></p>
+</li>
+
+<li>
+<p>When Miele's Internet of Stings hospital disinfectant dishwasher is
+<a
href="https://motherboard.vice.com/en_us/article/a-hackable-dishwasher-is-connecting-hospitals-to-the-internet-of-shit">connected
to the Internet,
+its security is crap</a>.</p>
+<p>For example, a cracker can gain access to the dishwasher's filesystem,
+ infect it with malware, and force the dishwasher to launch attacks on
+ other devices in the network. Since these dishwashers are used in hospitals,
+ such attacks could potentially put hundreds of lives at risk.</p>
+
+</li>
+<li>
+<p>If you buy a used “smart” car, house, TV, refrigerator,
+etc.,
+usually <a
href="http://boingboing.net/2017/02/20/the-previous-owners-of-used.html">the
+previous owners can still remotely control it</a>.</p>
+</li>
+<li>
+ <p>Vizio
+ “smart” <a
href="https://www.ftc.gov/news-events/blogs/business-blog/2017/02/what-vizio-was-doing-behind-tv-screen">TVs
+ report everything that is viewed on them, and not just broadcasts
+ and cable</a>. Even if the image is coming from the user's own
+ computer, the TV reports what it is. The existence of a way to
+ disable the surveillance, even if it were not hidden as it was in
+ these TVs, does not legitimize the surveillance.</p>
+</li>
+<li>
+<p>More or less all “smart” TVs <a
+href="http://www.myce.com/news/reseachers-all-smart-tvs-spy-on-you-sony-monitors-all-channel-switches-72851/">spy
+ on their users</a>.</p>
+
+<p>The report was as of 2014, but we don't expect this has got
+better.</p>
+
+<p>This shows that laws requiring products to get users' formal
+consent before collecting personal data are totally inadequate. And
+what happens if a user declines consent? Probably the TV will say,
+“Without your consent to tracking, the TV will not
+work.”</p>
+
+<p>Proper laws would say that TVs are not allowed to report what the
+user watches — no exceptions!</p>
+</li>
+<li>
+<p>Some LG
+TVs <a href="http://openlgtv.org.ru/wiki/index.php/Achievements">are
+tyrants</a>.</p>
+</li>
+
+<li><a
+href="http://wiki.samygo.tv/index.php5/SamyGO_for_DUMMIES#What_are_Restricted_Firmwares.3F">
+Samsung “Smart” TVs have turned Linux into the base
+for a tyrant system</a> so as to impose DRM.
+What enables Samsung to do this is that Linux is released under
+GNU GPL version 2, <a href="/licenses/rms-why-gplv3.html">not version
3</a>,
+together with a weak interpretation of GPL version 2.
+</li>
+<li>
+<a
+href="http://jalopnik.com/america-figured-out-a-new-way-audi-cheated-on-emissions-1788630969">
+Audi's proprietary software used a simple method to cheat on emissions
+tests</a>: to activate a special low-emission gearshifting mode until the
+first time the car made a turn.
+</li>
+
+<li>
+<p>A company that makes internet-controlled vibrators
+<a
href="https://www.theguardian.com/us-news/2016/sep/14/wevibe-sex-toy-data-collection-chicago-lawsuit">is
+being sued for collecting lots of personal information about how
+people use it</a>.</p>
+
+<p>The company's statement that it anonymizes the data may be true,
+but it doesn't really matter. If it sells the data to a data broker,
+the data broker can figure out who the user is.</p>
+</li>
+
+<li>
+<p>Google/Alphabet <a
+href="https://www.eff.org/deeplinks/2016/04/nest-reminds-customers-ownership-isnt-what-it-used-be">
+intentionally broke Revolv home automatic control products that depended on
+a server</a> to function. The lesson is, don't stand for that! Insist
+on self-contained computers that run free software!</p>
+</li>
+
+<li>
+<p>ARRIS cable modem has a <a
+href="https://w00tsec.blogspot.de/2015/11/arris-cable-modem-has-backdoor-in.html?m=1">
+backdoor in the backdoor</a>.</p>
+</li>
+
+<li>
+<p>Caterpillar vehicles come with a <a
+href="http://www.zerohedge.com/news/2015-11-19/caterpillar-depression-has-never-been-worse-it-has-cunning-plan-how-deal-it">
+back-door to shutoff the engine</a> remotely.</p>
+</li>
+
+<li>
+<p>HP “storage appliances” that use the proprietary
+“Left Hand” operating system have back doors that give HP
+<a
+href="http://news.dice.com/2013/07/11/hp-keeps-installing-secret-backdoors-in-enterprise-storage/">
+remote login access</a> to them. HP claims that this does not give HP
+access to the customer's data, but if the back door allows
+installation of software changes, a change could be installed that
+would give access to the customer's data.
+</p>
+</li>
+
+<li>
+<p><a
+href="http://www.itworld.com/article/2705284/data-protection/backdoor-found-in-d-link-router-firmware-code.html">
+Some D-Link routers</a> have a back door for changing settings in a
+dlink of an eye.</p>
+
+<p>
+<a href="https://github.com/elvanderb/TCP-32764">Many models of router
+have back doors</a>.</p>
+</li>
+
+<li>
+<p><a href="http://sekurak.pl/tp-link-httptftp-backdoor/">
+The TP-Link router has a backdoor</a>.</p>
+</li>
+
+<li>
+<p><a
+href="https://www.petri.com/volkswagen-used-software-to-cheat-on-emissions">
+Volkswagen programmed its car engine computers to detect the
+Environmental Protection Agency's emission tests</a>,
+and run dirty the rest of the time.</p>
+
+<p>In real driving, the cars exceeded emissions standards by a factor
+of up to 35.</p>
+
+<p>Using free software would not have stopped Volkswagen from
+programming it this way, but would have made it harder to conceal.</p>
+</li>
+
+<li>
+<p>The <a
href="http://michaelweinberg.org/post/137045828005/free-the-cube">
+“Cube” 3D printer was designed with DRM</a>: it won't accept
+third-party printing materials. It is the Keurig of printers. Now it is
+being discontinued, which means that eventually authorized materials won't
+be available and the printers may become unusable.</p>
+
+<p>With a <a
href="http://www.fsf.org/resources/hw/endorsement/aleph-objects">
+printer that gets the Respects Your Freedom</a>, this problem would not
+even be a remote possibility.</p>
+
+<p>How pitiful that the author of that article says that there was
+“nothing wrong” with designing the device to restrict users in
+the first place. This is like putting a “cheat me and mistreat me”
+sign on your chest. We should know better: we should condemn all companies
+that take advantage of people like him. Indeed, it is the acceptance of
+their unjust practice that teaches people to be doormats.</p>
+</li>
+
+<li>
+<p>Philips “smart” lightbulbs <a
+href="https://www.techdirt.com/articles/20151214/07452133070/lightbulb-drm-philips-locks-purchasers-out-third-party-bulbs-with-firmware-update.shtml">
+have been designed not to interact with other companies' smart
+lightbulbs</a>.</p>
+
+<p>If a product is “smart”, and you didn't build it, it is
+cleverly serving its manufacturer <em>against you</em>.</p>
+</li>
+
+<li>
+<p><a
+href="http://web.archive.org/web/20131007102857/http://www.nclnet.org/technology/73-digital-rights-management/124-whos-driving-the-copyright-laws-consumers-insist-on-the-right-to-back-it-up">
+DVDs and Bluray disks have DRM</a>.
+</p>
+
+<p>That page uses spin terms that favor DRM,
+including <a
href="/philosophy/words-to-avoid.html#DigitalRightsManagement">
+digital “rights” management</a>
+and <a
href="/philosophy/words-to-avoid.html#Protection">“protect”</a>,
+and it claims that “artists” (rather than companies) are
+primarily responsible for putting digital restrictions management into
+these disks. Nonetheless, it is a reference for the facts.
+</p>
+
+<p>Every Bluray disk (with few, rare exceptions) has DRM—so
+don't use Bluray disks!</p>
+</li>
+
+<li>
+<p><a
href="https://www.eff.org/deeplinks/2013/11/drm-cars-will-drive-consumers-crazy">
+DRM in cars will drive consumers crazy</a>.</p>
+</li>
+
+<li id="cameras-bugs">
+<p>Over 70 brands of network-connected surveillance cameras have <a
+href="http://www.kerneronsec.com/2016/02/remote-code-execution-in-cctv-dvrs-of.html">
+security bugs that allow anyone to watch through them</a>.</p>
+</li>
+
+<li>
+<p>Samsung's “Smart Home” has a big security hole; <a
+href="http://arstechnica.com/security/2016/05/samsung-smart-home-flaws-lets-hackers-make-keys-to-front-door/">
+unauthorized people can remotely control it</a>.</p>
+
+<p>Samsung claims that this is an “open” platform so the
+problem is partly the fault of app developers. That is clearly true if
+the apps are proprietary software.</p>
+
+<p>Anything whose name is “Smart” is most likely going to
+screw you.</p>
+</li>
+
+<li>
+<p>
+The Nissan Leaf has a built-in cell phone modem which allows
+effectively anyone to <a
+href="https://www.troyhunt.com/controlling-vehicle-features-of-nissan/">
+access its computers remotely and make changes in various
+settings</a>.</p>
+
+<p>That's easy to do because the system has no authentication when
+accessed through the modem. However, even if it asked for
+authentication, you couldn't be confident that Nissan has no
+access. The software in the car is
+proprietary, <a
href="/philosophy/free-software-even-more-important.html">which
+means it demands blind faith from its users</a>.</p>
+
+<p>Even if no one connects to the car remotely, the cell phone modem
+enables the phone company to track the car's movements all the time;
+it is possible to physically remove the cell phone modem though.</p>
+</li>
+
+<li>
+<p>
+Malware found on <a
+href="http://www.slate.com/blogs/future_tense/2016/04/11/security_cameras_sold_through_amazon_have_malware_according_to_security.html">
+security cameras available through Amazon</a>.
+</p>
+
+<p>A camera that records locally on physical media, and has no network
+connection, does not threaten people with surveillance—neither
+by watching people through the camera, nor through malware in the
+camera.</p>
+</li>
+
+<li>
+<p> <a
+href="http://www.tripwire.com/state-of-security/latest-security-news/10-second-hack-delivers-first-ever-malware-to-fitness-trackers/">
+FitBit fitness trackers have a Bluetooth vulnerability</a> that allows
+attackers to send malware to the devices, which can subsequently
+spread to computers and other FitBit trackers that interact with
+them.</p>
+</li>
+
+<li>
+<p> “Self-encrypting” disk drives do the encryption with
+proprietary firmware so you can't trust it. Western Digital's <a
+href="https://motherboard.vice.com/en_uk/read/some-popular-self-encrypting-hard-drives-have-really-bad-encryption">
+“My Passport” drives have a back door</a>.</p>
+</li>
+
+<li>
+<p>Security researchers discovered a <a
+href="http://www.theguardian.com/technology/2015/aug/12/hack-car-brakes-sms-text">
+vulnerability in diagnostic dongles used for vehicle tracking and
+insurance</a> that let them take remote control of a car or
+lorry using an SMS.</p>
+</li>
+
+<li>
+<p>Crackers were able to <a
+href="http://arstechnica.com/security/2015/07/fiat-chrysler-connected-car-bug-lets-hackers-take-over-jeep-remotely/">
+take remote control of the Jeep</a> “connected
car”.</p>
+
+<p>They could track the car, start or stop the engine, and
+activate or deactivate the brakes, and more.</p>
+
+<p>I expect that Chrysler and the NSA can do this too.</p>
+
+<p>If I ever own a car, and it contains a portable phone, I will
+deactivate that.</p>
+</li>
+
+<li>
+<p>
+Hospira infusion pumps, which are used to administer drugs to
+a patient, were rated “<a
+href="https://securityledger.com/2015/05/researcher-drug-pump-the-least-secure-ip-device-ive-ever-seen/">
+least secure IP device I've ever seen</a>” by a security
+researcher.</p>
+
+<p>Depending on what drug is being infused, the insecurity could
+open the door to murder.</p>
+</li>
+
+<li>
+<p>Due to bad security in a drug pump, crackers could use it to <a
+href="http://www.wired.com/2015/06/hackers-can-send-fatal-doses-hospital-drug-pumps/">
+kill patients</a>.</p>
+</li>
+
+<li>
+<p><a
+href="http://www.forbes.com/sites/kashmirhill/2013/07/26/smart-homes-hack/">
+“Smart homes”</a> turn out to be stupidly vulnerable to
+intrusion.</p>
+</li>
+
+<li>
+<p>The <a
+href="http://www.nytimes.com/2013/09/05/technology/ftc-says-webcams-flaw-put-users-lives-on-display.html">
+FTC punished a company for making webcams with bad security</a> so
+that it was easy for anyone to watch them.</p>
+</li>
+
+<li>
+<p>It is possible to <a
+href="http://www.pcworld.idg.com.au/article/379477/hacking_music_can_take_control_your_car/">
+take control of some car computers through malware in music files</a>.
+Also <a
+href="http://www.nytimes.com/2011/03/10/business/10hack.html?_r=0">by
+radio</a>. More information in <a
+href="http://www.autosec.org/faq.html"> Automotive Security And
+Privacy Center</a>.</p>
+</li>
+
+<li>
+<p>It is possible to <a
+href="http://siliconangle.com/blog/2013/07/27/famed-hacker-barnaby-jack-dies-days-before-scheduled-black-hat-appearance/">
+kill people by taking control of medical implants by radio</a>. More
+information in <a
+href="http://www.bbc.co.uk/news/technology-17631838">BBC News</a> and
+<a
+href="http://blog.ioactive.com/2013/02/broken-hearts-how-plausible-was.html">
+IOActive Labs Research blog</a>.</p>
+</li>
+
+<li>
+<p>Lots of <a
+href="http://www.wired.com/2014/04/hospital-equipment-vulnerable/">
+hospital equipment has lousy security</a>, and it can be fatal.</p>
+</li>
+
+<li>
+<p><a
+href="http://arstechnica.com/security/2013/12/credit-card-fraud-comes-of-age-with-first-known-point-of-sale-botnet/">
+Point-of-sale terminals running Windows were taken over</a> and turned
+into a botnet for the purpose of collecting customers' credit card
+numbers.</p>
+</li>
+
+<li id="vizio-snoop">
+<p>Vizio
+<a
href="http://boingboing.net/2015/04/30/telescreen-watch-vizio-adds-s.html">
+used a firmware “upgrade” to make its TVs snoop on what
+users watch</a>. The TVs did not do that when first sold.</p>
+</li>
+
+<li>
+<p>LG <a
+href="http://www.techdirt.com/articles/20140511/17430627199/lg-will-take-smart-out-your-smart-tv-if-you-dont-agree-to-share-your-viewing-search-data-with-third-parties.shtml">
+disabled network features</a> on <em>previously
purchased</em>
+“smart” TVs, unless the purchasers agreed to let LG
+begin to snoop on them and distribute their personal data.</p>
+</li>
+
+<li>
+<p><a
+href="http://www.mirror.co.uk/news/technology-science/technology/wi-fi-spy-barbie-records-childrens-5177673">
+Barbie is going to spy</a> on children and adults.</p>
+</li>
+
+<li>
+<p><a
+href="http://boingboing.net/2012/12/29/your-cisco-phone-is-listening.html">
+Cisco TNP IP phones are spying devices</a>.</p>
+</li>
+
+<li>
+<p>The <a
+href="http://www.bbc.com/news/technology-34922712">Nest Cam
+“smart” camera is always watching</a>, even when the
+“owner” switches it “off.”</p>
+
+<p>A “smart” device means the manufacturer is using it to
outsmart
+you.</p>
+</li>
+
+<li><p>Computerized cars with nonfree software are <a
+<span
class="removed"><del><strong>href="http://www.bloomberg.com/news/articles/2016-07-12/your-car-s-been-studying-you-closely-and-everyone-wants-the-data"></strong></del></span>
+<span
class="inserted"><ins><em>href="http://www.thelowdownblog.com/2016/07/your-cars-been-studying-you-closely-and.html"></em></ins></span>
+snooping devices</a>.</p>
+</li>
+
+<li>
+<p>Proprietary software in cars <a
+href="http://www.usatoday.com/story/money/cars/2013/03/24/car-spying-edr-data-privacy/1991751/">
+records information about drivers' movements</a>, which is made
+available to car manufacturers, insurance companies, and others.</p>
+
+<p>The case of toll-collection systems, mentioned in this article, is not
+really a matter of proprietary surveillance. These systems are an
+intolerable invasion of privacy, and should be replaced with anonymous
+payment systems, but the invasion isn't done by malware. The other
+cases mentioned are done by proprietary malware in the car.</p>
+</li>
+
+<li>
+<p>Tesla cars allow the company to extract data remotely and determine
+the car's location at any time. (See <a
+href="http://www.teslamotors.com/sites/default/files/pdfs/tmi_privacy_statement_external_6-14-2013_v2.pdf">
+Section 2, paragraphs b and c.</a>). The company says it doesn't
+store this information, but if the state orders it to get the data and
+hand it over, the state can store it.</p>
+</li>
+
+<li>
+<p>Vizio goes a step further than other TV manufacturers in spying on
+their users: their <a
+href="http://www.propublica.org/article/own-a-vizio-smart-tv-its-watching-you">
+“smart” TVs analyze your viewing habits in detail and
+link them your IP address</a> so that advertisers can track you
+across devices.</p>
+
+<p>It is possible to turn this off, but having it enabled by default
+is an injustice already.</p>
+</li>
+
+<li>
+<p>Tivo's alliance with Viacom adds 2.3 million households to the 600
+millions social media profiles the company already monitors. Tivo
+customers are unaware they're being watched by advertisers. By
+combining TV viewing information with online social media
+participation, Tivo can now <a
+href="http://www.reuters.com/article/viacom-tivo-idUSL1N12U1VV20151102">
+correlate TV advertisement with online purchases</a>, exposing all
+users to new combined surveillance by default.</p>
+</li>
+
+<li>
+<p>Some web and TV advertisements play inaudible sounds to be picked
+up by proprietary malware running on other devices in range so as to
+determine that they are nearby. Once your Internet devices are paired
+with your TV, advertisers can correlate ads with Web activity, and
+other <a
+href="http://arstechnica.com/tech-policy/2015/11/beware-of-ads-that-use-inaudible-sound-to-link-your-phone-tv-tablet-and-pc/">
+cross-device tracking</a>.</p>
+</li>
+
+<li>
+<p>Vizio “smart” TVs recognize and <a
+href="http://www.engadget.com/2015/07/24/vizio-ipo-inscape-acr/">track
+what people are watching</a>, even if it isn't a TV channel.</p>
+</li>
+
+<li>
+<p>The Amazon “smart” TV is <a
+href="http://www.theguardian.com/technology/shortcuts/2014/nov/09/amazon-echo-smart-tv-watching-listening-surveillance">
+snooping all the time</a>.</p>
+</li>
+
+<li>
+<p>The Samsung “smart” TV <a
+href="http://www.consumerreports.org/cro/news/2015/02/who-s-the-third-party-that-samsung-and-lg-smart-tvs-are-sharing-your-voice-data-with/index.htm">
+transmits users' voice on the internet to another company, Nuance</a>.
+Nuance can save it and would then have to give it to the US or some
+other government.</p>
+
+<p>Speech recognition is not to be trusted unless it is done by free
+software in your own computer.</p>
+
+<p>In its privacy policy, Samsung explicitly confirms
+that <a
href="http://theweek.com/speedreads/538379/samsung-warns-customers-not-discuss-personal-information-front-smart-tvs">voice
+data containing sensitive information will be transmitted to third
+parties</a>.</p>
+</li>
+
+<li>
+<p><a
+href="http://doctorbeet.blogspot.co.uk/2013/11/lg-smart-tvs-logging-usb-filenames-and.html">
+Spyware in LG “smart” TVs</a> reports what the user
+watches, and the switch to turn this off has no effect. (The fact
+that the transmission reports a 404 error really means nothing; the
+server could save that data anyway.)</p>
+
+<p>Even worse, it <a
+href="http://rambles.renney.me/2013/11/lg-tv-logging-filenames-from-network-folders/">
+snoops on other devices on the user's local network</a>.</p>
+
+<p>LG later said it had installed a patch to stop this, but any
+product could spy this way.</p>
+</li>
+<li>
+<p><a
+href="http://arstechnica.com/business/2015/05/verizon-fios-reps-know-what-tv-channels-you-watch/">
+Verizon cable TV snoops on what programs people watch</a>, and even what
+they wanted to record.</p>
+</li>
+
+</ul>
+
+</div><!-- for id="content", starts in the include above -->
+<!--#include virtual="/server/footer.html" -->
+<div id="footer">
+<div class="unprintable">
+
+<p>Please send general FSF & GNU inquiries to
+<a href="mailto:address@hidden"><address@hidden></a>.
+There are also <a href="/contact/">other ways to contact</a>
+the FSF. Broken links and other corrections or suggestions can be sent
+to <a
href="mailto:address@hidden"><address@hidden></a>.</p>
+
+<p><!-- TRANSLATORS: Ignore the original text in this paragraph,
+ replace it with the translation of these two:
+
+ We work hard and do our best to provide accurate, good quality
+ translations. However, we are not exempt from imperfection.
+ Please send your comments and general suggestions in this regard
+ to <a href="mailto:address@hidden">
+ <address@hidden></a>.</p>
+
+ <p>For information on coordinating and submitting translations of
+ our web pages, see <a
+ href="/server/standards/README.translations.html">Translations
+ README</a>. -->
+Please see the <a
+href="/server/standards/README.translations.html">Translations
+README</a> for information on coordinating and submitting translations
+of this article.</p>
+</div>
+
+<!-- Regarding copyright, in general, standalone pages (as opposed to
+ files generated as part of manuals) on the GNU web server should
+ be under CC BY-ND 4.0. Please do NOT change or remove this
+ without talking with the webmasters or licensing team first.
+ Please make sure the copyright date is consistent with the
+ document. For web pages, it is ok to list just the latest year the
+ document was modified, or published.
+
+ If you wish to list earlier years, that is ok too.
+ Either "2001, 2002, 2003" or "2001-2003" are ok for specifying
+ years, as long as each year in the range is in fact a copyrightable
+ year, i.e., a year in which the document was published (including
+ being publicly visible on the web or in a revision control system).
+
+ There is more detail about copyright years in the GNU Maintainers
+ Information document, www.gnu.org/prep/maintain. -->
+
+<p>Copyright © 2016, 2017 Free Software Foundation, Inc.</p>
+
+<p>This page is licensed under a <a rel="license"
+href="http://creativecommons.org/licenses/by-nd/4.0/">Creative
+Commons Attribution-NoDerivatives 4.0 International
License</a>.</p>
+
+<!--#include virtual="/server/bottom-notes.html" -->
+
+<p class="unprintable">Updated:
+<!-- timestamp start -->
+$Date: 2017/10/25 08:00:38 $
+<!-- timestamp end -->
+</p>
+</div>
+</div>
+</body>
+</html>
+</pre></body></html>
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- www/proprietary malware-appliances.de.html po/m...,
GNUN <=