Vulnerabilities in Sogou Keyboard encryption expose keypresses to network eavesdropping.

  • archomrade [he/him]@midwest.social
    link
    fedilink
    English
    arrow-up
    18
    arrow-down
    3
    ·
    1 year ago

    Jesus Christ, this thread is cursed.

    Circling back to the article: it would be easier to name software that doesn’t collect your data and send/sell it to your respective government. The point being made in this thread is that it isn’t just a China problem. If you think you’re safe from government observation just because you don’t live in China, I have bad news for you.

    • SnowdenHeroOfOurTime@unilem.org
      link
      fedilink
      English
      arrow-up
      3
      arrow-down
      10
      ·
      1 year ago

      If you think you’re safe from government observation just because you don’t live in China

      I think you know without doubt that this is something NO ONE ever ever ever said. You know this. And yet still – you want to make this about the united states. Maybe you can explain a way that this got brought up without China shills infecting the thread?

      Because the article is not about the US. It’s not.

      • archomrade [he/him]@midwest.social
        link
        fedilink
        English
        arrow-up
        11
        arrow-down
        2
        ·
        1 year ago

        I didn’t mention the US.

        The article makes it sound like it’s UNUSUAL that a phone app is spying on its users and sending user data to the government. It’s not an exception, it’s the rule. People pointing this out are doing you a favor, because the article’s framing would otherwise lead you to believe this is a China problem and not a tech problem.

        • SnowdenHeroOfOurTime@unilem.org
          link
          fedilink
          English
          arrow-up
          2
          arrow-down
          9
          ·
          1 year ago

          no, people who do this are shilling for China and/or tiktok. we all know this.

          and yes the raw keyboard data going directly from your fingers to the government is not something that likely happens in the US, so either way this is a false equivalence.

          • archomrade [he/him]@midwest.social
            link
            fedilink
            English
            arrow-up
            6
            ·
            edit-2
            1 year ago

            I’m not defending China.

            the raw keyboard data going directly from your fingers to the government is not something that likely happens in the US, so either way this is a false equivalence.

            Again, I never mentioned the US.

            What does it matter if the data is routed to the government server first or second? Blanket data collection is nefarious no matter who is doing it, but it landing in the hands of any government is dangerous. It isn’t somehow less dangerous just because it hits a private server first (although it’s harder to tell spying is happening, so in that respect it may be worse)

            E2E encryption should be standard across all tech platforms in every country, full stop.