diff --git a/README.md b/README.md new file mode 100644 index 0000000..ea75d30 --- /dev/null +++ b/README.md @@ -0,0 +1,3 @@ +# Online Spyware Watchdog +This is the git repo for the [Online Spyware Watchdog](https://spyware.neocities.org/). +You can contribute here, or message us in spyware@conference.nuegia.net. diff --git a/articles/1password.html b/articles/1password.html index a0407e9..b8d900d 100644 --- a/articles/1password.html +++ b/articles/1password.html @@ -1,14 +1,14 @@ - + Spyware Watchdog

1Password

-

Back to catalog

- 1password Logo +

Back to catalog

+ 1password Logo

1password is a password management service

@@ -35,8 +35,8 @@ https://paul.reviews/privacy-password-managers-a-reality-check/ This article was last edited on 6/16/2018

- If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

- CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/amd.html b/articles/amd.html index b87686e..2b195b4 100644 --- a/articles/amd.html +++ b/articles/amd.html @@ -1,20 +1,20 @@ - + Spyware Watchdog

AMD CPU Family

-

Back to catalog

- One of the logos AMD uses for its CPU's +

Back to catalog

+ One of the logos AMD uses for its CPU's

UNFINISHED ARTICLE - UNDER CONSTRUCTION - BAD FORMATTING

-Advanced Micro Devices, Inc. is an American multinational semiconductor company based in Santa Clara, California, that develops computer processors and related technologies for business and consumer markets. This article is specifically about the CPU's that are produced by AMD and nothing else. The logo is one of many logos used by AMD, but the -article is not about any one specific CPU. No rating is given because this is not an article about any specific product, and the rating system is difficult to fit into this -article. +Advanced Micro Devices, Inc. is an American multinational semiconductor company based in Santa Clara, California, that develops computer processors and related technologies for business and consumer markets. This article is specifically about the CPU's that are produced by AMD and nothing else. The logo is one of many logos used by AMD, but the +article is not about any one specific CPU. No rating is given because this is not an article about any specific product, and the rating system is difficult to fit into this +article.

Modern CPU models produced by AMD contain an embedded ARM co-processor called the Platform Security Processor (PSP). Nearly all AMD CPU's produced since 2013 operate under the supervision of this separate, more privileged, environment consisting of an integrated ARM processor with access to isolated resources as well as main system memory and I/O. @@ -24,7 +24,7 @@ article. This article isn't complete. This is a work-in-progress and so this article is not formatted properly..

http://www.uefi.org/sites/default/files/resources/UEFI_PlugFest_AMD_Security_and_Server_innovation_AMD_March_2013.pdf (page 11)

-

While ARM and AMD tout the “Trusted Execution Environment” as useful for secure payment, anti-theft and malware protection, they also discuss content protection or DRM as a use case. https://www.owasp.org/images/c/c8/OWASP_Security_Tapas_-_TrustZone%2C_TEE_and_Mobile_Security_final.pdf

+

While ARM and AMD tout the “Trusted Execution Environment” as useful for secure payment, anti-theft and malware protection, they also discuss content protection or DRM as a use case. https://www.owasp.o../images/c/c8/OWASP_Security_Tapas_-_TrustZone%2C_TEE_and_Mobile_Security_final.pdf

Possible uses … DRM

Researchers have already been able to identify exploits in AMD’s Platform Security Processor. In 2018 researchers published a vulnerability in which a specially crafted certificate could lead to a stack overflow in the PSP’s TPM firmware allowing for remote code execution. (https://seclists.org/fulldisclosure/2018/Jan/12) Another group goes on to detail how an attacker might leverage exploits RYZENFALL or FALLOUT to gain foothold in networks with Ryzen based systems. (https://www.techpowerup.com/242386/cts-labs-responds-to-a-techpowerup-technical-questionnaire) @@ -35,7 +35,7 @@ This article isn't complete. This is a work-in-progress and so this article is n Family 15h-Models60h and later contain a PSP

NOT TRUSTED:

- It would be very time consuming to go through all of those privacy policies (especially because many of these are obfusicated), but it should be + It would be very time consuming to go through all of those privacy policies (especially because many of these are obfusicated), but it should be enough to understand that CCleaner is full of third party spyware, as well as first party spyware.

CCleaner sends you spam email

@@ -90,9 +90,9 @@ In the past, CCleaner has been compromised and backdoors have been added to it.< This article was last edited on 8/21/2018

- If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

- CC0 Liscence + CC0 Liscence - + diff --git a/articles/cdex.html b/articles/cdex.html index efc28a3..e1920e7 100644 --- a/articles/cdex.html +++ b/articles/cdex.html @@ -1,14 +1,14 @@ - + Spyware Watchdog

CDex

-

Back to catalog

- cdex logo +

Back to catalog

+ cdex logo

CDex is an Open Source Digital Audio CD Extractor.

@@ -16,16 +16,16 @@

CDex's installer bundles it with spyware, and it will randomly suggest a spyware program to the user, with a chance to opt-out. Usually it attempts to bundle itself with the webdiscover browser and one time I got it to try and offer me an antivirus program, but - I wasn't able to reproduce this. The program was tested on Windows 7 32-bit with Microsoft Network Monitor 3.4 and Wireshark 2.6.2. - The version of the program tested was 2.06. It did not make any connections to the internet that my + I wasn't able to reproduce this. The program was tested on Windows 7 32-bit with Microsoft Network Monitor 3.4 and Wireshark 2.6.2. + The version of the program tested was 2.06. It did not make any connections to the internet that my tests were able to find. To test the program I ripped the audio files out of a CD with both network monitoring programs open.

Bundling with spyware

- CDex attempts to bundle it self with the WebDiscover web browser. This is an Opt-out and not an Opt-in like it should be. + CDex attempts to bundle it self with the WebDiscover web browser. This is an Opt-out and not an Opt-in like it should be. This program is spyware, because according to it's privacy policy[1], it collects information about it's users.

- CDex installer spyware opt-out screen + CDex installer spyware opt-out screen

Sources

@@ -39,8 +39,8 @@ This article was last edited on 7/29/2018

- If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

- CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/chrome.html b/articles/chrome.html index 1f39deb..0a46cc0 100644 --- a/articles/chrome.html +++ b/articles/chrome.html @@ -1,21 +1,21 @@ - + Spyware Watchdog

Google Chrome

-

Back to catalog
- Spanish Translation +

Back to catalog
+ Spanish Translation [qorg.xyz] [4knomcor76uif5na.onion] [archive.is]

- chrome logo + chrome logo

-Google Chrome is a web browser developed and distributed by Google. +Google Chrome is a web browser developed and distributed by Google.

Spyware Level: EXTREMELY HIGH

@@ -29,7 +29,7 @@ Large parts of Google Chrome are open source, however not all of them are, and t

Google Chrome contains several spyware features that reply on the user's search history being uploaded to Google servers. This is confirmed by the language in the privacy policy[1], clarifying the spyware features that rely on this.

-The first spyware feature is Google Chrome's integration with the "Google Account" spyware platform. " If you are signed in to a Google site or signed in to Chrome and Google is your default search engine, searches you perform using the address bar in Chrome are stored in your Google account. " +The first spyware feature is Google Chrome's integration with the "Google Account" spyware platform. " If you are signed in to a Google site or signed in to Chrome and Google is your default search engine, searches you perform using the address bar in Chrome are stored in your Google account. "

Google Chrome also contains a spyware feature called "Search prediction service". It is explained that: "When you search using the address bar in Chrome, the characters you type (even if you haven’t hit "enter" yet) are sent to your default search engine. If Google is your default search engine, predictions are based on your own search history, topics related to what you’re typing and what other people are searching for."

@@ -55,11 +55,11 @@ This was confirmed in multiple places[3]

Google Chrome records your voice

-Google Chrome is confirmed to be constantly listening to any open microphones on your computer. This can be found in this statement[5] in a privacy publication. "Voice & audio information may be collected. For example, if your child uses audio activation commands (e.g., "OK, Google" or touching the microphone icon), a recording of the following speech/audio, plus a few seconds before, will be stored to their account…" This feature is opt-in if you are using the "Google Accounts" spyware platform and specifically tell Google to build a profile of your child. It's unverified wether or not Google uploads information it listens too to its servers outside of this feature. +Google Chrome is confirmed to be constantly listening to any open microphones on your computer. This can be found in this statement[5] in a privacy publication. "Voice & audio information may be collected. For example, if your child uses audio activation commands (e.g., "OK, Google" or touching the microphone icon), a recording of the following speech/audio, plus a few seconds before, will be stored to their account…" This feature is opt-in if you are using the "Google Accounts" spyware platform and specifically tell Google to build a profile of your child. It's unverified wether or not Google uploads information it listens too to its servers outside of this feature.

Google Chrome saves user passwords on Google Servers

-Any password stored in Google Chrome's "password management" feature is uploaded to Google if you sign into the "Google Accounts" spyware platform. +Any password stored in Google Chrome's "password management" feature is uploaded to Google if you sign into the "Google Accounts" spyware platform.

Google Chrome profiles users in other various ways

@@ -68,23 +68,23 @@ According to the privacy policy[1], Google Chrome pr

Google Chrome is self-updating software

Google Chrome has an updater which is constantly running in the background and syncing with Google servers to check for updates. The updater will download and run unverified binaries from Google when it updates Google Chrome. It is impossible for an automatic updater service such as this to verify that the updates are not spyware and/or do not contain additional spyware features. -

+

Further Reading

Reasons not to use Google [web.archive.org] [archive.is]
- + Welcome to the Botnet. Or, The Case Against Google Chrome [web.archive.org] [archive.is]
- +

-
+

Sources

- 1. + 1. Google Chrome Privacy Notice [archive.is] [web.archive.org]
@@ -109,8 +109,8 @@ Google Chrome has an updater which is constantly running in the background and s This article was last edited on 12/12/2018

- If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

- CC0 Liscence + CC0 Liscence diff --git a/articles/chrome_es.html b/articles/chrome_es.html index ef909c4..9b64c96 100644 --- a/articles/chrome_es.html +++ b/articles/chrome_es.html @@ -1,20 +1,20 @@ - + Spyware Watchdog

Google Chrome

-

Back to catalog (English)
- Back to catalog (Spanish)
- English Translation
+

Back to catalog (English)
+ Back to catalog (Spanish)
+ English Translation
Mirrors: [qorg.xyz] [qorglaofrwqdj4is.onion] [archive.is]

- chrome logo + chrome logo

Google Chrome es un navegador web desarollado y distribuido por Google

Nivel de spyware: EXTREMADAMENTE ALTO

@@ -37,7 +37,7 @@ Google Chrome contiene mucho spyware que responden en el historial de la busqued +

Google Chrome está integrado con Google Payments

@@ -64,16 +64,16 @@ Google Chrome contiene mucho spyware que responden en el historial de la busqued Reasons not to use Google [web.archive.org] [archive.is]
- + Welcome to the Botnet. Or, The Case Against Google Chrome [web.archive.org] [archive.is]
- +

Referencias

- 1. + 1. Google Chrome Privacy Notice [archive.is] [web.archive.org]
@@ -100,8 +100,8 @@ Google Chrome contiene mucho spyware que responden en el historial de la busqued This is a translation of the english article. It may become outdated- compare the dates on both articles.

- If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

- CC0 Liscence + CC0 Liscence diff --git a/articles/discord.html b/articles/discord.html index ec29e0a..c66bf7e 100644 --- a/articles/discord.html +++ b/articles/discord.html @@ -1,48 +1,48 @@ - + Spyware Watchdog

Discord

-

Back to catalog
- Spanish Translation +

Back to catalog
+ Spanish Translation [qorg.xyz] [qorglaofrwqdj4is.onion] [web.archive.org] [archive.is]

- - Discord-Logo + + Discord-Logo

-Discord is an instant messaging application for MacOS, Windows, Linux, -Android, and iOS. Discord is used to communicate via voice chat and +Discord is an instant messaging application for MacOS, Windows, Linux, +Android, and iOS. Discord is used to communicate via voice chat and text chat, and has image-sharing and file-sharing capabilities.

Spyware Level: EXTREMELY HIGH

- Thanks to Richard Stallman for linking to our article here! The spotlight is very much appreciated. + Thanks to Richard Stallman for linking to our article here! The spotlight is very much appreciated.

- Discord? No Way! + Discord? No Way!

-Discord is spyware because it collects all information that passes -through its communication platform. As Discord is a centralized -communication platform, all communications have to go through Discord's -official servers, where all of that information can potentially be -recorded. The vast majority of said information has been confirmed -to be recorded, such as all communications between users. Discord has -also been confirmed to use other spyware features such as various forms +Discord is spyware because it collects all information that passes +through its communication platform. As Discord is a centralized +communication platform, all communications have to go through Discord's +official servers, where all of that information can potentially be +recorded. The vast majority of said information has been confirmed +to be recorded, such as all communications between users. Discord has +also been confirmed to use other spyware features such as various forms of telemetry. Discord's main source of income is from investment, from which - it has received over $279.3 million dollars[4]. Discord cannot be built from + it has received over $279.3 million dollars[4]. Discord cannot be built from source and the source code for Discord is unavailable.

Discord does not make its source code available

-It is impossible to download and examine Discord's source code, -which means that it is impossible to prove that Discord is not +It is impossible to download and examine Discord's source code, +which means that it is impossible to prove that Discord is not spyware. Any program which does not make its source code available is potential spyware.

@@ -57,7 +57,7 @@ Discord explicitly confirms in its privacy policy[1]
  • All text messages
  • All images
  • All VOIP data (voice chat)
    • -
  • Open rates for e-mail sent by Discord
    • +
  • Open rates for e-mail sent by Discord

    • Discord does not explictly confirm that it collects this information, but still collects it by default: @@ -66,100 +66,100 @@ Discord does not explictly confirm that it collects this information, but still

  • Logs of all of the other programs that are open on your computer

    • -The implications of this information can be broken down like this: By -recording your IP address, Discord can track your general location -(about as precise as which county you are in). Discord can also tell +The implications of this information can be broken down like this: By +recording your IP address, Discord can track your general location +(about as precise as which county you are in). Discord can also tell which devices you use, as it uniquely identifies each device, and how - much you use those devices, as it can record your device usage habits -(since Discord is usually open in the background so that it can receive -messages). Discord also records every single interaction you have with -other users through its service. This means that Discord is confirmed -to log every conversation that you have through Discord, and record + much you use those devices, as it can record your device usage habits +(since Discord is usually open in the background so that it can receive +messages). Discord also records every single interaction you have with +other users through its service. This means that Discord is confirmed +to log every conversation that you have through Discord, and record everything that you say on Discord, and view all images that you send - through Discord. Therefore, none of your interactions on Discord are + through Discord. Therefore, none of your interactions on Discord are private. Discord's privacy policy also contains several occurrences of - phrases such as "including but not limited to," which is an explicit -confirmation that Discord contains more spyware features that are not + phrases such as "including but not limited to," which is an explicit +confirmation that Discord contains more spyware features that are not disclosed to the user.

    Discord contains features which allow integration with other spyware platforms

    -Discord contains the opt-in spyware feature known as "social media -integration." This allows you to sync your persistent user identity -on Discord with your persistent user identity on other spyware +Discord contains the opt-in spyware feature known as "social media +integration." This allows you to sync your persistent user identity +on Discord with your persistent user identity on other spyware platforms, such as Facebook and Twitter. In its privacy policy[1], - Discord has confirmed that if you opt in to this spyware feature, -Discord will obtain an undisclosed amount of access to information -obtained about you by the spyware platforms that you choose to sync -with. + Discord has confirmed that if you opt in to this spyware feature, +Discord will obtain an undisclosed amount of access to information +obtained about you by the spyware platforms that you choose to sync +with.

    Discord contains a process logger

    -Discord has been confirmed to monitor the open processes on your -operating system. This is a spyware feature known as a "process logger" -that is generally used to record your program usage habits. This was +Discord has been confirmed to monitor the open processes on your +operating system. This is a spyware feature known as a "process logger" +that is generally used to record your program usage habits. This was confirmed by the CTO of Discord in a Reddit thread.[2] - In the same thread, the CTO also elaborates that this spyware feature (the monitoring of processes) is + In the same thread, the CTO also elaborates that this spyware feature (the monitoring of processes) is mandatory for several features of the platform. The CTO and a Discord engineer go on - to claim that Discord does not use the process logger to send records + to claim that Discord does not use the process logger to send records of the open processes on the user's computer.

    The test to prove that Discord logs processes was done again by the writer with procmon on 4/11/2019 with the features: "Use data to customize my Discord Experience" and "Display currently running game as a status message" turned off. Discord did NOT log all of the processes open this way. -However when setting the "Display currently running game as a status message" turned on, the behavior -described in[2] was replecated. You can see that behavior here: +However when setting the "Display currently running game as a status message" turned on, the behavior +described in[2] was replecated. You can see that behavior here:

    - Discord process logging as described in [2] confirmed with procmon + Discord process logging as described in [2] confirmed with procmon

    It turns out that this feature can be disabled through the UI. Because of the nature of closed-source software it isn't possible for either this article or the Discord developers to prove how much information is being sent to - Discord's servers when the process logger is turned on. But it's at least possible to turn it off. + Discord's servers when the process logger is turned on. But it's at least possible to turn it off.

    Discord uses it's process logging for advertising

    Discord shows this in it's privacy option here:

    - Discord process logging usefulness + Discord process logging usefulness

    - That the process logging features of Discord are now being recorded on Discord's servers as a form of telemetry (spyware), + That the process logging features of Discord are now being recorded on Discord's servers as a form of telemetry (spyware), and removes speculation about why this feature exists. It is clarified by Discord that this spyware feature is used for advertising to it's users.[8] This means that Discord is recording the programs you have open to build a statistical model of what programs you might buy/lisence in the future.

    - Discord confirms process logging is used for advertising - + Discord confirms process logging is used for advertising +

    Discord tries to force some users to give their Telephone numbers

    -Discord will lock users out of it's service and will not allow them to continue using it without giving their phone number or contacting Discord -support. This kind of feature is designed to extract very personal information out of it's users (phone numbers). The criteria for locking out +Discord will lock users out of it's service and will not allow them to continue using it without giving their phone number or contacting Discord +support. This kind of feature is designed to extract very personal information out of it's users (phone numbers). The criteria for locking out users isn't known.

    -discord phone verification +discord phone verification

    Discord receives government requests for your information

    Discord has confirmed in an email correspondence[6] - that it does receive government requests for information. So, we know -that the government potentially has access to all of the information -that Discord collects about you. You can read a copy of the email image -posted in the source here in case the link there dies. + that it does receive government requests for information. So, we know +that the government potentially has access to all of the information +that Discord collects about you. You can read a copy of the email image +posted in the source here in case the link there dies.

    Speculation on Discord's future

    It's unknown whether Discord currently is or isn't selling user information. Currently Discord has been able to consistently raise new invesment capital, which is at a level where it could reasonably be covering -all of its operating costs. However, Discord, like any other company, is not going to exist in a -constant state of investment. Discord is going to have to transition away from an investment-financed +all of its operating costs. However, Discord, like any other company, is not going to exist in a +constant state of investment. Discord is going to have to transition away from an investment-financed business model to a revenue model that exclusively relies on generating revenue from the users of the platform.

    Discord has several ways of making money. It can lisence emoji's and other features of the program with -Discord Nitro[5], or it can make money lisencing video games through it's -new online store, as a competitor to Steam. However both of these revenue +Discord Nitro[5], or it can make money lisencing video games through it's +new online store, as a competitor to Steam. However both of these revenue sources may not be enough. Discord has raised $279.3 million dollars[4] and it has to return on this investment. (which is more than 279.3 million dollars that has to be paid back)

    @@ -168,20 +168,20 @@ If Discord is not able to satisfy it's obligation to it's investors, it has a th to advertisers. Discord is already datamining it's users to produce it's recommendation system,[8] which means that it is already turning it's userbase into extremely valueble, sellable, advertising data. Discord has 130 million users[7], and it can produce a statistical model of what games each user (who does not opt-out of advertising) owns, plays, and wants to buy. -This is incredibly valueble information that Discord can sell if it cannot reach it's profit obligations with it's current +This is incredibly valueble information that Discord can sell if it cannot reach it's profit obligations with it's current revenue model. If Discord is a successful games store, then it wont need to do this. But if Discord gets in financial trouble, it probably will be forced to liquiate this asset.

    Further Reading

    - + Friends Don't Let Friends Use Discord [archive.is]
    - - Help Me, Tom's Guide: Is Discord Tracking Me? + + Help Me, Tom's Guide: Is Discord Tracking Me? [archive.is]
    - + Why Discord is Trash
    Why You Shouldn't Use Discord
    THE DISCORD SITUATION @@ -196,40 +196,40 @@ it probably will be forced to liquiate this asset. 2. Why is Discord recording our open programs and uploading them? - [web.archive.org] + [web.archive.org] [archive.is]
    - + 3. Discord [wayback.archive-it.org] [archive.is]
    - + 4. Crunchbase [web.archive.org] [archive.is]
    - + 5. Discord Nitro [archive.is]
    - + 6. Discord receives government requests. No plans on adding E2E Encryption any time soon. [archive.is] [web.archive.org]
    - - + + 7. Number of registered Discord users [web.archive.org]
    - - - + + + 8. - Data Privacy Controls - [web.archive.org]
    + Data Privacy Controls + [web.archive.org]

    - +

    This article was last edited on 4/11/2019 @@ -238,7 +238,7 @@ it probably will be forced to liquiate this asset. This article was created on 11/23/17

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - \ No newline at end of file + CC0 Liscence + diff --git a/articles/discord_es.html b/articles/discord_es.html index b598947..6f79724 100644 --- a/articles/discord_es.html +++ b/articles/discord_es.html @@ -1,21 +1,21 @@ - + Spyware Watchdog

    Discord

    -

    Back to catalog (English)
    - Back to catalog (Spanish)
    - English Translation
    +

    Back to catalog (English)
    + Back to catalog (Spanish)
    + English Translation
    Mirrors: [qorg.xyz] [qorglaofrwqdj4is.onion] [web.archive.org] [archive.is]

    - Discord-Logo + Discord-Logo

    Discord es un programa de mensajería instantanea disponible para MacOS, GNU/Linux, Android, Windows, Android e iOS. Discord puede usarse para comunicarse vía voz y chat de texto, también se puede usar para compartir archivos e imágenes. @@ -32,8 +32,8 @@ Discord confirma que recolecta varia información de los usuarios.

    Discord does not make its source code available

    -It is impossible to download and examine Discord's source code, -which means that it is impossible to prove that Discord is not +It is impossible to download and examine Discord's source code, +which means that it is impossible to prove that Discord is not spyware. Any program which does not make its source code available is potential spyware.

    @@ -82,18 +82,18 @@ En el mismo hilo, el CTO admite que es obligatorio este spyware y no puede ser r

    Discord recibe peticiones de gobierno para tu informacion

    - Discord ha confirmado de una de sus correspondencia de E-mail [6] donde confirma que recibe peticiones del gobierno de informacion, asi que podemos saber que el gobierno tiene toda la informacion que Discord ha recolectado de ti aqui + Discord ha confirmado de una de sus correspondencia de E-mail [6] donde confirma que recibe peticiones del gobierno de informacion, asi que podemos saber que el gobierno tiene toda la informacion que Discord ha recolectado de ti aqui por si el link muere.

    Mas cosas

    - + Friends Don't Let Friends Use Discord [archive.is]
    - - Help Me, Tom's Guide: Is Discord Tracking Me? + + Help Me, Tom's Guide: Is Discord Tracking Me? [archive.is]
    - + Why Discord is Trash
    Why You Shouldn't Use Discord
    THE DISCORD SITUATION @@ -108,36 +108,36 @@ por si el link muere. 2. Why is Discord recording our open programs and uploading them? - [web.archive.org] + [web.archive.org] [archive.is]
    - + 3. Discord [wayback.archive-it.org] [archive.is]
    - + 4. Crunchbase [web.archive.org] [archive.is]
    - + 5. Discord Nitro [archive.is]
    - + 6. Discord receives government requests. No plans on adding E2E Encryption any time soon. [archive.is] [web.archive.org]

    - +

    This article was created on 11/18/2018
    This is a translation of the english article. It may become outdated- compare the dates on both articles.

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - \ No newline at end of file + CC0 Liscence + diff --git a/articles/dissenter.html b/articles/dissenter.html index f3c97ea..9f37e60 100644 --- a/articles/dissenter.html +++ b/articles/dissenter.html @@ -1,41 +1,41 @@ - + Spyware Watchdog

    Dissenter

    -

    Back to catalog

    - Dissenter Logo +

    Back to catalog

    + Dissenter Logo

    Dissenter is a web browser and plugin released by the social network company Gab.

    Spyware Level: High

    -The Dissenter browser is a fork of the Brave web browser. It phones home to -Brave for autoupdates and safebrowsing, which is hosted by Brave. The default search engine is DuckDuckGo. +The Dissenter browser is a fork of the Brave web browser. It phones home to +Brave for autoupdates and safebrowsing, which is hosted by Brave. The default search engine is DuckDuckGo. The browser has two extensions preinstalled. One extension, "Shields", blocks certain advertisment scripts. The other, "Dissenter" allows you to access the Dissenter social network. This extension phones home to several places whenever you open it, including Google and Twitter. The Dissenter social network also inherently must collect more information about the user's browsing -habits than the current alternatives that already exist. +habits than the current alternatives that already exist.

    Phoning home

    When the Dissenter Browser is started, it will make several connections to Brave's autoupdate services:

    - Dissenter Browser phoning home to Brave + Dissenter Browser phoning home to Brave

    Every once in a while, the Browser will send a request to Brave's instance of the Google safebrowsing service:

    - Dissenter Browser phoning home to Brave + Dissenter Browser phoning home to Brave

    Whenever the Dissenter extension is opened, it will phone home to several companies:

    - Dissenter Extension phoning home + Dissenter Extension phoning home

    This includes:

    @@ -47,7 +47,7 @@ Every once in a while, the Browser will send a request to Brave's instance of th
  • Cloudflare

    • - This happens every time the extension is opened. + This happens every time the extension is opened.

    Opt-out telemetry

    @@ -58,23 +58,23 @@ Every once in a while, the Browser will send a request to Brave's instance of th [1].

    Dissenter bypasses it's own tracker filter

    - Dissenter comes with it's own content blocker called Shields that is meant to block trackers as you browse the web. + Dissenter comes with it's own content blocker called Shields that is meant to block trackers as you browse the web. This content blocker can block requests made by regular websites, but it does not block content that is loaded by the Dissenter extension. The Dissenter extension makes requests to trackers that would have been blocked by it's own filter- by it's own standards Dissenter makes connections to tracking websites that are not necessary and not private. The spyware site googleads.g.doubleclick.net is correctly blocked by Shields when a normal website tries to access it, but this connection is not blocked when Dissenter accesses it... - This is an interesting double standard when it comes to privacy. + This is an interesting double standard when it comes to privacy.

    - +

    Inherent issues with Dissenter

    Dissenter has the inherent problem that it associates the web pages you have visited with the discussions you are having or trying to have. - If you want to check an article's comments on Dissenter, you have to tell Gab that you visited that article. This gives Gab a very good profile + If you want to check an article's comments on Dissenter, you have to tell Gab that you visited that article. This gives Gab a very good profile of what sites you visit and what articles you read. Currently alternatives exist to this model that are already in place. For example, you can create a thread on an Imageboard, Reddit-like website, or other web forum format, which sets an archived link to the article as the topic of discussion. - This format is much more private because the parties involved have much less information about what their users did. The news website has no + This format is much more private because the parties involved have much less information about what their users did. The news website has no idea who read it's article, because the traffic went to the archival service. The forum that you can freely comment on also doesn't know what articles you looked at or what discussions you tried to have. If we only consider privacy, this method is a somewhat better way of acheiving this goal.

    @@ -91,10 +91,10 @@ Every once in a while, the Browser will send a request to Brave's instance of th This article was last edited on 5/24/2019

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 license to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 license to be accepted.

    - CC0 Liscence - + CC0 Liscence + - + diff --git a/articles/duckduckgo.html b/articles/duckduckgo.html index 6068948..3f31a68 100644 --- a/articles/duckduckgo.html +++ b/articles/duckduckgo.html @@ -1,21 +1,21 @@ - + Spyware Watchdog

    DuckDuckGo

    -

    Back to catalog
    - Spanish Translation

    - DuckDuckGo logo +

    Back to catalog
    + Spanish Translation

    + DuckDuckGo logo

    -DuckDuckGo is a search engine created by Gabriel Weinberg and owned by Duck Duck Go, Inc. +DuckDuckGo is a search engine created by Gabriel Weinberg and owned by Duck Duck Go, Inc.

    Spyware Level: Possible Spyware

    - DuckDuckGo is a search engine that claims to protect the privacy of its users.[1] Since this a centeralized service, there is no way to prove that it isnt spyware just by + DuckDuckGo is a search engine that claims to protect the privacy of its users.[1] Since this a centeralized service, there is no way to prove that it isnt spyware just by looking at the technology that it uses. There are some red flags that could cause you to doubt that this service is truly private, and so this article will just list them here to help you decide on whether or not to use this service. Ultimately there isn't proof that DuckDuckGo is spyware- but a few reasons to suspect it of being spyware. Even though, it's worth noting that DuckDuckGo offers an onion domain... so you don't need to trust it to use it as long as you acess it through TOR. @@ -32,7 +32,7 @@ DuckDuckGo is a search engine created by Gabriel Weinberg and owned by Duck Duck

    Tracking pixels and other spyware

    - DuckDuckGo uses clear gifs from the domain improving.duckduckgo.com. This is a tracking technique and can be used to collect analytics about your web browser. + DuckDuckGo uses clear gifs from the domain improving.duckduckgo.com. This is a tracking technique and can be used to collect analytics about your web browser. Whenever you use DuckDuckGo, several requests will be sent to this domain.[4] This is of course not the kind of behavior that you would expect from a privacy concerned website, but there it is. Do you trust DuckDuckGo to collect "anonymous" analytics about you?

    @@ -43,7 +43,7 @@ DuckDuckGo is a search engine created by Gabriel Weinberg and owned by Duck Duck [archive.is] [www.webcitation.org]

    - +

    Sources

    @@ -52,15 +52,15 @@ DuckDuckGo is a search engine created by Gabriel Weinberg and owned by Duck Duck [www.webcitation.org] [arquivo.pt] [archive.is]
    - + 2. Still trust DuckDuckGo? (dead link) [archive.is] [web.archive.org]
    - + 3. DuckDuckGo: The mistaken belief of the NSA-safe search engine*
    - + 4. Site Improvements [web.archive.org]
    @@ -68,14 +68,14 @@ DuckDuckGo is a search engine created by Gabriel Weinberg and owned by Duck Duck

    *This is a machine-translated mirror of an article written in German hosted here. Links to the original article can be found on that page.

    - +

    This article was last edited on 9/16/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/duckduckgo_es.html b/articles/duckduckgo_es.html index c26358b..ba110e1 100644 --- a/articles/duckduckgo_es.html +++ b/articles/duckduckgo_es.html @@ -1,16 +1,16 @@ - + Spyware Watchdog

    DuckDuckGo

    -

    Back to catalog (English)
    - Back to catalog (Spanish)
    - English Translation

    - +

    Back to catalog (English)
    + Back to catalog (Spanish)
    + English Translation

    +

    DuckDuckGo es un motor de busqueda creado por Gabriel Weinberg y mantenido or Duck Duck Go, inc

    Nivel de spyware: Posiblemente spyware

    DuckDuckGo es un motor de busqueda que jura proteger la privacidad de sus usuarios [1]debido a que es un servicio sentralizado, no es posible saber si es spyware viendo la tecnologia que usa. hay algunos avisos para dudar si es realmente privado. Este artículo es solo para hacerte decidir si usar o no este servicio. Ultimamente no hay prueba de que DuckDuckGo es spyware. Pero hay algunas razones para sospechar de ser spyware, de todas formas, esta bien saber de que DuckDuckGo Ofrece un dominio onion asi que no debes dudar en usarlo si estás en TOR

    @@ -55,9 +55,9 @@ This translation may become out of date. Compare dates with the english article.

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/example.html b/articles/example.html index df0be07..d99a7b0 100644 --- a/articles/example.html +++ b/articles/example.html @@ -1,15 +1,15 @@ - + Spyware Watchdog

    Example Article

    -

    Back to catalog

    - Images are in the /images folder +

    Back to catalog

    + Images are in the /images folder

    This part of the article should have the name of the program and what it does, and who develops it.

    @@ -36,10 +36,10 @@ should be cited like this: [1]. This article was last edited on 7/30/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 license to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 license to be accepted.

    - CC0 Liscence - + CC0 Liscence + - + diff --git a/articles/explorer.html b/articles/explorer.html index 43bb9c9..cd472e1 100644 --- a/articles/explorer.html +++ b/articles/explorer.html @@ -1,14 +1,14 @@ - + Spyware Watchdog

    Internet Explorer

    -

    Back to catalog

    - Internet Explorer Logo +

    Back to catalog

    + Internet Explorer Logo

    Internet Explorer is a Web Browser distributed by Microsoft with most versions of the Microsoft Windows Operating system.

    @@ -23,18 +23,18 @@ Internet Explorer cannot be built from available source code. This means that it

    Internet Explorer is self-updating software

    Internet Explorer can be updated through spyware programs such as Windows Update[1]. Automatic software updates are a spyware feature becuase they cannot be verified to be non-spyware by the user. Luckily, this spyware feature is opt-out and can be turned off. -

    +

    Internet Explorer sends your search history to Microsoft

    Internet Explorer contains a spyware feature called "flip ahead"[1]. Flip ahead will periodically send your browsing history to Microsoft. This spyware feature is opt-out and can be disabled. Microsoft claims that the information it recevies is encrypted to protect user privacy and santized to prevent personal information from being stored. This is unverifiable. Microsoft confirms that it does use the information obtained from flip ahead to build statstical models of your browsing habits. Other spyware features such as "Smartscreen filter", and "Suggested Sites" also confirm that they send your internet history to Microsoft. -

    +

    Internet Explorer can track your location

    Internet Explorer has the spyware feature commonly referred to as "location services", which is a feature that allows it to track the location of the user. The privacy statement[1] explains that your location is obtained through a "Microsoft Location Service". Which means that your location is sent to a Microsoft server. Microsoft does not elaborate on what it does with this data or whether it stores this data. This spyware feature is opt-out.

    Internet Explorer has an anti-privacy search engine by default

    -

    The default search engine is Bing which datamines its users and sells that information to advertisers.

    - +

    The default search engine is Bing which datamines its users and sells that information to advertisers.

    +

    Sources

    @@ -44,14 +44,14 @@ Internet Explorer has the spyware feature commonly referred to as "location serv [web.archive.org] [archive.is]

    - +

    This article was last updated on 2/18/2019

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/falkon.html b/articles/falkon.html index 1371bb9..ac3300b 100644 --- a/articles/falkon.html +++ b/articles/falkon.html @@ -1,37 +1,37 @@ - + Spyware Watchdog

    Falkon

    -

    Back to catalog

    - falkon Logo +

    Back to catalog

    + falkon Logo

    Falkon is a KDE web browser using QtWebEngine rendering engine, previously known as QupZilla.

    Spyware Level: Probably Not Spyware

    When another contributor tested this browser on linux, it made no unsolicied connections. When I ran it on windows, it connected to - a domain unrelated to the homepage (duckduckgo). But, i'm not sure what it was for, and it wasn't reproduced on linux. This browser is probably fine, but - you should run your own tests and email me about what you found or didn't find. + a domain unrelated to the homepage (duckduckgo). But, i'm not sure what it was for, and it wasn't reproduced on linux. This browser is probably fine, but + you should run your own tests and email me about what you found or didn't find.

    Phoning Home?

    - On the first run of Falkon, using the 32-bit windows version, it connected to these addresses, even though I was on it's homepage, which seems to be + On the first run of Falkon, using the 32-bit windows version, it connected to these addresses, even though I was on it's homepage, which seems to be locally stored because it does not create any requests when I go to it normally. I don't know what these are for. Maybe it's a form of phoning home? The first IP is for the domain: github.map.fastly.net which seems to be part of a CDN.

    - Is falkon phoning home? + Is falkon phoning home?

    This article was last edited on 8/24/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/firefox.html b/articles/firefox.html index e627096..b4ee0d6 100644 --- a/articles/firefox.html +++ b/articles/firefox.html @@ -1,34 +1,34 @@ - + Spyware Watchdog

    Mozilla Firefox

    - Back to catalog
    + Back to catalog
    Mitigation Guide

    - Firefox logo + Firefox logo

    - Mozilla Firefox is one of the most popular and longest existing + Mozilla Firefox is one of the most popular and longest existing browsers. Its developers have earned it a reputation for being a "privacy and security-based browser, respecting the user" - but is it justified, or just marketing? In fact, over the years they have made several anti-privacy (and generally anti-user) decisions, but this article will focus exclusively on spying. Version tested: 52.5.0, with the default settings. Program used for testing requests: Mitmproxy.

    Spyware Level: High

    - After following the mitigation guide, this software is Not Spyware. + After following the mitigation guide, this software is Not Spyware.

    -

    It sends a lot of different data very often (some of which could - uniquely identify you). All the "services" that it provides, such as +

    It sends a lot of different data very often (some of which could + uniquely identify you). All the "services" that it provides, such as its default search engines and Pocket, are anti-privacy. The rating isn't higher - because at least you can turn off or modify most of it, though + because at least you can turn off or modify most of it, though it often requires diving deep into about:config.

    Phoning home

    - Whenever you start Firefox, it makes this request:

    In fact, it makes it every time you go to a website, and even a few times in a row for a single website. So Firefox "phones home" all the time, without your knowledge. Can be disabled ONLY in about:config. But, since you've already started Firefox, it will make this request at least once. + Whenever you start Firefox, it makes this request:

    In fact, it makes it every time you go to a website, and even a few times in a row for a single website. So Firefox "phones home" all the time, without your knowledge. Can be disabled ONLY in about:config. But, since you've already started Firefox, it will make this request at least once.

    Automatic connections to some websites you've visited, including their trackers

    @@ -36,7 +36,7 @@ Websites you visit most often are added to the New Tab panel. When you then open a new tab, Firefox will sometimes make requests to the sites in there, including some of their trackers. I haven't determined how it works yet. Sometimes it doesn't make the requests at all; other times you end up with hundreds of images, scripts, trackers, etc. loaded simply because you opened a new tab (without visiting any website explicitly). Was NOT able to find a way to disable this, even in about:config.

    - +

    Firefox tracks users with Google Analytics

    Firefox has been integrated with the spyware platform called "Google Analytics"[1]. Firefox has been confirmed to now send analytics to Google. According to a Firefox developer the spyware in Firefox is "extremely useful to us and we have already weighed the cost/benefit of using tracking." and that Firefox will not remove Google Analytics support entirely. Firefox's position on privacy is made very clear with this quote: @@ -49,92 +49,92 @@ tl;dr: We now have an option to opt-out of Google doing anything with the data t We are collecting aggregate and non-identifiable data in numbers to ensure our development/UX changes are met well. We can respect privacy and still have analytics; in fact Mozilla's aim is for an experience that values user privacy and usability (I'd say Apple also wants UX that fits that mold, as an example). We need some data, anonymised and aggregated, to do this. "

    -The best takeaway to this is that Mozilla wants to pretend that including spyware in their program is somehow not a breach of privacy, and that Firefox could possibly be respecting user privacy while simultaneously collecting data on users and sending it to Google. It's strongly suggested to read the github thread and the further anti-privacy statements the Mozzilla employee makes while defending the spyware features in Firefox. It's very dangerous to assert that there is somehow a middle ground between respecting user privacy and datamining the user. +The best takeaway to this is that Mozilla wants to pretend that including spyware in their program is somehow not a breach of privacy, and that Firefox could possibly be respecting user privacy while simultaneously collecting data on users and sending it to Google. It's strongly suggested to read the github thread and the further anti-privacy statements the Mozzilla employee makes while defending the spyware features in Firefox. It's very dangerous to assert that there is somehow a middle ground between respecting user privacy and datamining the user.

    "Safe" Browsing?

    - Allegedly used to protect you from "phishing" websites, but in the end, it makes a bunch of requests to Google every 30 minutes (according to Mozilla), including a POST request with your Firefox version and a unique, persistent, hidden cookie. Since whenever the current URL matches an entry in the cached local blacklist a request is made to Google servers, ostensibly to test whether that website is still on the master online blacklist, it allows Google to monitor specific websites transparently to the user by putting the URLs of interest on the local but not the online blacklist.
    Can be disabled ONLY in about:config. + Allegedly used to protect you from "phishing" websites, but in the end, it makes a bunch of requests to Google every 30 minutes (according to Mozilla), including a POST request with your Firefox version and a unique, persistent, hidden cookie. Since whenever the current URL matches an entry in the cached local blacklist a request is made to Google servers, ostensibly to test whether that website is still on the master online blacklist, it allows Google to monitor specific websites transparently to the user by putting the URLs of interest on the local but not the online blacklist.
    Can be disabled ONLY in about:config.

    - +

    Firefox Health Report

    From the horse's mouth: "For example, FHR sends data to Mozilla on things like: operating system, PC/Mac, number of processors, Firefox version, the number and type of add-ons. The data collected by FHR is tied to a Document ID that corresponds to a browser installation (explained above in question #4) so that the data can be correlated across a limited window of time."[2] Also, according to Mozilla, new versions of Firefox will also collect telemetry data by default. Can be disabled through the GUI.

    - +

    Anti-privacy search engines by default

    -

    Old versions of Firefox had Google as the default search engine, - which is obviously anti-privacy. For example, from their privacy - policy: "When you use our - services or view content provided by Google, we automatically collect - and store certain information in server logs. This includes: details - of how you used our service, such as your search queries.". Then, it - was Yahoo, which isn't better: "The Yahoo Search History tool allows - you to see what you've searched for in the past. ". So it saves all - your searches. And deleting does nothing: "Even if you clear your - past searches or turn the Search History tool off, Yahoo still - collects and stores search user log data when you use Yahoo Search - technology." Firefox 57 is going back to Google again. If they really - cared about your privacy, the default search engine would be - StartPage (which gives the same results as Google, but anonymized) or +

    Old versions of Firefox had Google as the default search engine, + which is obviously anti-privacy. For example, from their privacy + policy: "When you use our + services or view content provided by Google, we automatically collect + and store certain information in server logs. This includes: details + of how you used our service, such as your search queries.". Then, it + was Yahoo, which isn't better: "The Yahoo Search History tool allows + you to see what you've searched for in the past. ". So it saves all + your searches. And deleting does nothing: "Even if you clear your + past searches or turn the Search History tool off, Yahoo still + collects and stores search user log data when you use Yahoo Search + technology." Firefox 57 is going back to Google again. If they really + cared about your privacy, the default search engine would be + StartPage (which gives the same results as Google, but anonymized) or DuckDuckGo. Can be changed through the GUI.

    - - + +

    Pocket - a privacy nightmare

    - Firefox has a Pocket button in its navigation bar, which allows you - to "save any article, video or page from Firefox" and "View in Pocket - on any device, any time." Let's see how it looks in terms of privacy + Firefox has a Pocket button in its navigation bar, which allows you + to "save any article, video or page from Firefox" and "View in Pocket + on any device, any time." Let's see how it looks in terms of privacy - quoting from Pocket's privacy policy[3]: - - "In addition to the information that you provide to us when you - register for a user account, we collect information about the URLs, - titles and content of the web pages and other information you save to - Pocket." So everything you conveniently put in "your" Pocket is - being stored (of course, otherwise Pocket wouldn't work). "The types - of information we collect includes your browser type, device type, - device id, time zone, language, and other information related to the - manner in which you access the Pocket Technologies. " So anytime you - view a file in "your" Pocket, they know everything about the device - you used to do it. "We may also use "pixel tags," "web beacons," - "clear GIFs" or similar means (individually or collectively "Pixel - Tags") in connection with emails that we send to our users in order - to collect usage data." So, they are acting like any old tracking - website, even in ways that have nothing to do with their - functionality. "We may also share your device ID with third parties - in connection with advertising campaigns. " And they work with - advertisers too! Describing all of Pocket's + + "In addition to the information that you provide to us when you + register for a user account, we collect information about the URLs, + titles and content of the web pages and other information you save to + Pocket." So everything you conveniently put in "your" Pocket is + being stored (of course, otherwise Pocket wouldn't work). "The types + of information we collect includes your browser type, device type, + device id, time zone, language, and other information related to the + manner in which you access the Pocket Technologies. " So anytime you + view a file in "your" Pocket, they know everything about the device + you used to do it. "We may also use "pixel tags," "web beacons," + "clear GIFs" or similar means (individually or collectively "Pixel + Tags") in connection with emails that we send to our users in order + to collect usage data." So, they are acting like any old tracking + website, even in ways that have nothing to do with their + functionality. "We may also share your device ID with third parties + in connection with advertising campaigns. " And they work with + advertisers too! Describing all of Pocket's violations would take up this whole article. There are similar services with better privacy policies, but in the end, they still store the things you view in "the cloud". A real privacy-based browser would not be integrated with them by default.

    Can be disabled in about:config[8]

    Automatic updates

    - Not that bad compared to all of the above, I guess - but still - installs something without your consent, with possible new privacy - nightmares in there. There is no excuse to at least not make "Check for updates, but - let me choose whether to install them" the default - it would still + Not that bad compared to all of the above, I guess - but still + installs something without your consent, with possible new privacy + nightmares in there. There is no excuse to at least not make "Check for updates, but + let me choose whether to install them" the default - it would still give the security benefit, but not take control away from the user. Can be disabled through the GUI.

    - +

    Other issues

    Firefox also sometimes makes a request to "self-repair.mozilla.org" which looks like this: -
    +
    It includes "optimizelyEndUserID" which probably means it uniquely identifies you. Can be disabled ONLY in about:config.[7]
    - It also makes this request every time you open the default home page: -
    - The number after the Firefox version is, again, uniquely + It also makes this request every time you open the default home page: +
    + The number after the Firefox version is, again, uniquely identifying[4] Can be disabled ONLY in about:config.
    - Firefox has a file with list of blocked addons that it considers "malicious" and it makes a request to update it every day (even if you don't have any addons installed). The request includes a uniquely identifying browser installation ID. Can be disabled ONLY in about:config. - -

    - + Firefox has a file with list of blocked addons that it considers "malicious" and it makes a request to update it every day (even if you don't have any addons installed). The request includes a uniquely identifying browser installation ID. Can be disabled ONLY in about:config. + +

    +

    Firefox phones home about almost every single interaction you have with its UI

    - Firefox will send information about almost every basic operation that you do back to Mozilla. This is tagged with a unique client ID and an ID for your current session, and any relevant information related to this action. + Firefox will send information about almost every basic operation that you do back to Mozilla. This is tagged with a unique client ID and an ID for your current session, and any relevant information related to this action. By default, the following uses of the UI are reported to Mozilla[5]:

    - Essentially, while this feature doesn't broadcast your search history to Mozilla, it proives an incedibly detailed walktrhough of exactly how you use Firefox's user interface. This can be disabled and is an opt-out spyware feature. You can disable it through the GUI as described here: + Essentially, while this feature doesn't broadcast your search history to Mozilla, it proives an incedibly detailed walktrhough of exactly how you use Firefox's user interface. This can be disabled and is an opt-out spyware feature. You can disable it through the GUI as described here: Share data with Mozilla to help improve Firefox [web.archive.org] [archive.fo] @@ -165,10 +165,10 @@ The best takeaway to this is that Mozilla wants to pretend that including spywar

    Mitigating Firefox Spyware

    This reveiew is also accompanied by a page about how to configure Firefox to be more privacy respecting, and links to other projects that have been created to solve this -problem. You can read about that here. These are some of the flags in about:config mentioned earlier in the article, and the values that +problem. You can read about that here. These are some of the flags in about:config mentioned earlier in the article, and the values that they should be set too:

    - +
    @@ -223,36 +223,36 @@ they should be set too: 2.FAQ for FHR - [web.archive.org] + [web.archive.org][archive.li]
    - + 3.Pocket Privacy Policy[web.archive.org][archive.is]
    - + 4.Snippets Service Data Collection[web.archive.org][archive.li]
    - + 5.Metrics we collect[web.archive.org][archive.li]
    - + 6.Turn off captive portal[archive.is]
    - + 7.How can I stop firefox from constantly connecting to self-repair.mozillia.org[archive.is]
    - + 8.Disable Pocket in Firefox[archive.is]
    - +

    This article was last edited on 1/13/2019 @@ -261,8 +261,8 @@ they should be set too: This article was created on 11/23/2017

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/foobar2000.html b/articles/foobar2000.html index 3c73d8c..8ae69cf 100644 --- a/articles/foobar2000.html +++ b/articles/foobar2000.html @@ -1,24 +1,24 @@ - + Spyware Watchdog

    Foobar 2000

    -

    Back to catalog

    - foobar Logo +

    Back to catalog

    + foobar Logo

    -Foobar2000 is an advanced freeware audio player for the Windows platform. +Foobar2000 is an advanced freeware audio player for the Windows platform.

    Spyware Level: Not Rated

    -Foobar2000 does not make it's source code availible, which could be hiding spyware features. +Foobar2000 does not make it's source code availible, which could be hiding spyware features.

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/ftp.html b/articles/ftp.html index bec6850..3288d18 100644 --- a/articles/ftp.html +++ b/articles/ftp.html @@ -1,27 +1,27 @@ - + Spyware Watchdog

    File Transfer Protocol

    -

    Back to catalog

    +

    Back to catalog

    FTP is a protocol used for transferring files over a computer network.

    Spyware Level: Not Spyware

    -FTP does not collect any information than the absolute minimum needed to provide its service. As such you could say that FTP's information is only incidental to the service it provides. So, FTP is not a spyware protocol. You are only giving up your IP address, which of course is required can be hidden through proxies. FTP requires you to uniquely identify yourself as a user of a system to use its access control features, but beyond that it does not ask you for unncessary information about your computer, unlike the HTTP protocol. +FTP does not collect any information than the absolute minimum needed to provide its service. As such you could say that FTP's information is only incidental to the service it provides. So, FTP is not a spyware protocol. You are only giving up your IP address, which of course is required can be hidden through proxies. FTP requires you to uniquely identify yourself as a user of a system to use its access control features, but beyond that it does not ask you for unncessary information about your computer, unlike the HTTP protocol.

    This article was last edited on 5/26/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/google.html b/articles/google.html index 7a75915..7458d41 100644 --- a/articles/google.html +++ b/articles/google.html @@ -1,14 +1,14 @@ - + Spyware Watchdog

    Google

    -

    Back to catalog

    - Google logo +

    Back to catalog

    + Google logo

    Google is an advertising company that produces and researches a huge amount of spyware products and services that permeate the internet almost entirely. It is almost impossible for the naieve user to use the internet without running into Google @@ -16,16 +16,16 @@ spyware, as they have deployed products on almost every level of the user's inte

    Technology

    -The following articles on this website have been written about technology created by Google: +The following articles on this website have been written about technology created by Google:

    - Google Chrome
    - Google Search
    - YouTube
    + Google Chrome
    + Google Search
    + YouTube

    Privacy Statements and Policies

    -The following documents are an incomplete list of policies Google uses for it's various products and +The following documents are an incomplete list of policies Google uses for it's various products and services when concerning user privacy.

    @@ -44,8 +44,8 @@ services when concerning user privacy. This article was last edited on 11/9/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/google_search.html b/articles/google_search.html index 8ce15d9..df07296 100644 --- a/articles/google_search.html +++ b/articles/google_search.html @@ -1,36 +1,36 @@ - + Spyware Watchdog

    Google Search

    - Back to catalog
    - Spanish Translation [qorg.xyz]
    - Turkish Translation
    + Back to catalog
    + Spanish Translation [qorg.xyz]
    + Turkish Translation

    - Google logo + Google logo

    -Google Search is a search engine created and owned by Google. +Google Search is a search engine created and owned by Google.

    Spyware Level: EXTREMELY HIGH

    Google Search collects your personal information and is heavily integrated with other services that collect your personal information. -Google's privacy policy[1] is written in a way that does not tell you which Google services are +Google's privacy policy[1] is written in a way that does not tell you which Google services are collecting which types of information, and instead ties all of its services into one privacy policy. So the best that can be done is -to assume that by using any of Google's services at all, Google is trying to obtain all of the information detailed. +to assume that by using any of Google's services at all, Google is trying to obtain all of the information detailed.

    -It's also important to note that this article only exists to provide a basic run-down on Google's spying, and is just here for completeness. It +It's also important to note that this article only exists to provide a basic run-down on Google's spying, and is just here for completeness. It does not at all represent the full extent of Google's breaches of privacy, just because it is not really a secret to anyone that Google collects your information, so it is really not trying to be very detailed because it would not say anything new.

    Google Search records your searches

    - Searches made using Google Search are associated with your identity and recorded in Google's servers. From the + Searches made using Google Search are associated with your identity and recorded in Google's servers. From the privacy policy[1], Google makes it clear that:

    @@ -43,10 +43,10 @@ your information, so it is really not trying to be very detailed because it woul "This includes information like your usage data and preferences, Gmail messages, G+ profile, photos, videos, browsing history, map searches, docs, or other Google-hosted content. Our automated systems analyze this information as it is sent and received and when it is stored.

    - Google also confirms again that it stores your searches in its servers, in this quote: + Google also confirms again that it stores your searches in its servers, in this quote:

    - "When you use our services or view content provided by Google, we automatically collect and store certain information in server logs. + "When you use our services or view content provided by Google, we automatically collect and store certain information in server logs. This includes: details of how you used our service, such as your search queries."

    Google uses your searches to build a profile of your interests, which is sold to advertisers

    @@ -66,10 +66,10 @@ your information, so it is really not trying to be very detailed because it woul

    Google Search is integrated into the "Google Accounts" spyware platform.

    - Google search allows you to sign-in using an account made on the Google Accounts spyware platform. This platform + Google search allows you to sign-in using an account made on the Google Accounts spyware platform. This platform exists to collect personal information, and connects its users to other spyware services in the Google ecosystem. It attempts to collect phone numbers, and helps Google attribute the information it collects though all of its services - to one user, increasing the accuracy of their internal profile of you. + to one user, increasing the accuracy of their internal profile of you.

    Further Reading

    @@ -94,8 +94,8 @@ your information, so it is really not trying to be very detailed because it woul This article was last edited on 12/12/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/google_search_es.html b/articles/google_search_es.html index 34c0ecd..caf2446 100644 --- a/articles/google_search_es.html +++ b/articles/google_search_es.html @@ -1,19 +1,19 @@ - + Spyware Watchdog

    Buscador de Google

    -Back to catalog (English)
    - Back to catalog (Spanish)
    -English Version
    -Turkish Version
    -

    - +Back to catalog (English)
    + Back to catalog (Spanish)
    +English Version
    +Turkish Version
    +

    +

    El buscador de Google es un motor de busqueda creado y mantenido por Google

    Nivel de spyware EXTREMADAMENTE ALTO

    El buscador de Google recolecta tu información personal y está altamente integrado con otros servicios que también recolectan tu información personal. En la política de privacidad de Google[1] está escrita de mandera que no dice que tipos de información recolectam por lo que miente. Así que lo mejor que puedes hacer, es afirmar que cada vez que usas un servicio de Google es saber que está haciendo lo posible para obtener toda tu información.

    @@ -57,8 +57,8 @@ Please keep this in mind when reading! It may become outdated in the future.

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/google_search_tr.html b/articles/google_search_tr.html index 5250728..bd4f36f 100644 --- a/articles/google_search_tr.html +++ b/articles/google_search_tr.html @@ -1,19 +1,19 @@ - + Spyware Watchdog

    Google Arama

    - Kataloga dön
    - İspanyolca Çeviri [qorg.xyz]
    - English Version
    + Kataloga dön
    + İspanyolca Çeviri [qorg.xyz]
    + English Version

    - Google logo -

    Google Arama tarafından oluşturulan ve yönetilen bir arama motorudur. + Google logo +

    Google Arama tarafından oluşturulan ve yönetilen bir arama motorudur.

    Casus Yazılım Seviyesi: AŞIRI FAZLA

    Google Arama kişisel bilgilerinizi toplar ve sizin kişisel @@ -37,13 +37,13 @@ yoktur.

    Google Arama kullanılarak yapılan aramalar kimliğinizle ilişkilendirilip Google’ın sunucularına kaydedilmektedir.. Gizlilik politikasından görüldüğü gibi[1], -Google bu durumu netleştirmiştir: +Google bu durumu netleştirmiştir:

    "Kullandığınız hizmetler ve bu hizmetlerin nasıl kullandığınıza dair bilgi toplamaktayız"

    “Bilgi toplama” da şu şekilde açıklığa kavuşturulmuştur -[2]: +[2]:

    "Bilgiler kullandığınız veri ve tercihleriniz, Gmail mesajlarınız, G+ profiliniz, fotoğraflarınız, videolarınız, @@ -54,21 +54,21 @@ bilgiyi gönderilip alındığı gibi ve saklandığı zamanı da içerecek şekilde analiz etmektedir.

    Google şu cümlesinde de sunucularında aramalarınızı -sakladığını onaylamaktadır : +sakladığını onaylamaktadır :

    "Hizmetlerimizi kullandığınız veya Google tarafından sağlanan içeriği görüntülediğiniz zaman, otomatik olarak kesin bilgiyi toplayıp sunucu kayıtlarımızda saklıyoruz. Bu neyi içerir: arama kayıtlarınız gibi bizim hizmetlerinizi ne kadar -kullandığınıza ilişkin detaylar." +kullandığınıza ilişkin detaylar."

    Google, reklamcılara satılmak üzere aramalarınızı ilgilerinize dair bir profil çizmek için kullanıyor

    Google’ın gizlilik politikası ile ilgili bu sayfasında [2], Google kullanıcıların ilgisine göre onların profilini -oluşturduğunu kabul etmektedir: +oluşturduğunu kabul etmektedir:

    "Örnek olarak, web geçmişi çerezlerinizdeki… bilgilerinizi size daha alakalı sonuçlar sunmak amacıyla @@ -78,7 +78,7 @@ kullanabiliriz." ilişkilendirilmediği sürece arama geçmişinizin kişisel bilgi olduğunu düşünmez. Bu bilgiyi reklamcılarla olabildiği ölçüde “tanımlanmamış” -olarak paylaşır: +olarak paylaşır:

    "Tanımlanmamış kimlikli bilgiyi açık şekilde veya yayıncı, reklmcı veya bağlı siteler gibi ortaklarımızla @@ -95,7 +95,7 @@ ekosistemindeki diğer casus yazılım hizmetlerine bağlar. Bu sistem telefon numaralarını toplama girişiminde bulunur ve Google’a bu bilgiyi bütün hizmetlerinde tek bir kullancı üstünde bilgi toplayabilmesi için verir, böylelikle onların size dair -oluşturduğu iç profilin kesinliği artar. +oluşturduğu iç profilin kesinliği artar.

    Daha Fazla Okuma

    @@ -103,7 +103,7 @@ oluşturduğu iç profilin kesinliği artar. Google’ın Kullanıcı Verisi Üstündeki İzlemesi NSA’inkinden Daha Beter?
    Google’ı -kullanmamak için nedenler +kullanmamak için nedenler

    Kaynaklar

    @@ -119,10 +119,10 @@ bilgi toplama [archive.li]

    Eğer bu makaleyi düzenlemek veya kendi makalenizle katkıda bulunmak istiyorsanız, spyware@aaathats3as.com adresime e-posta atabilirsiniz. Bütün katkılar kabul için CC0 -lisansı altında lisanslanmak zorundadır. +lisansı altında lisanslanmak zorundadır.

    This article was translated from english on 4/8/2019. Check the dates of the english article with this one in case any changes have been made. This translation might become outdated in the future.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/gzdoom.html b/articles/gzdoom.html index 17d05a4..a0a6c9d 100644 --- a/articles/gzdoom.html +++ b/articles/gzdoom.html @@ -1,22 +1,22 @@ - + Spyware Watchdog

    GZDoom

    -

    Back to catalog

    - GZDoom Logo +

    Back to catalog

    + GZDoom Logo

    -GZDoom is a source port of Doom based on an older source port, ZDoom. +GZDoom is a source port of Doom based on an older source port, ZDoom.

    Spyware Level: Low

    GZDoom contains telemetry that it reports back to the developers containing general information about your Operating System, CPU Cores, and OpenGL compatiblity.[1]. -GZDoom's developers do not seem to be very good at handling privacy concerns (After all, if this was privacy-concious, it would be opt-in...) and so if you decide to use this program, you -should make sure to compile it with the telemtery disabled, and you should make sure that this is the only spyware in the program- there may be more spyware implemented in the future. +GZDoom's developers do not seem to be very good at handling privacy concerns (After all, if this was privacy-concious, it would be opt-in...) and so if you decide to use this program, you +should make sure to compile it with the telemtery disabled, and you should make sure that this is the only spyware in the program- there may be more spyware implemented in the future.

    Sources

    @@ -31,8 +31,8 @@ should make sure to compile it with the telemtery disabled, and you should make This article was last edited on 5/30/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/hexchat.html b/articles/hexchat.html index 3206caa..20ff296 100644 --- a/articles/hexchat.html +++ b/articles/hexchat.html @@ -1,16 +1,16 @@ - + Spyware Watchdog

    Hexchat

    -

    Back to catalog

    - Hexchat Logo +

    Back to catalog

    + Hexchat Logo

    -HexChat is an IRC client based on XChat, but unlike XChat it's completely free for both Windows and Unix-like systems. +HexChat is an IRC client based on XChat, but unlike XChat it's completely free for both Windows and Unix-like systems.

    Spyware Level: Not Spyware

    @@ -18,8 +18,8 @@ Hexchat is not spyware in and of itself, however you can use it to connect to se

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/http.html b/articles/http.html index 88ab561..cc0b7ba 100644 --- a/articles/http.html +++ b/articles/http.html @@ -1,31 +1,31 @@ - + Spyware Watchdog

    HyperText Transmission Protocol

    - World Wide Web Consortum: The maintainers of the HTTP standard -

    Back to catalog

    + World Wide Web Consortum: The maintainers of the HTTP standard +

    Back to catalog

    HTTP is a protocol usually used for transferring HyperText Markup Language documents accross the internet.

    Spyware Level: Medium

    -HTTP is a protocol that is not designed with the privacy of its users in mind. The language used in the HTTP specification explicitly says that -the protocol was designed with enabling the datamining of its users in mind, and contains features that are not absolutely necessary for the purpose of the -protocol, but allow the protocol compromise user privacy. +HTTP is a protocol that is not designed with the privacy of its users in mind. The language used in the HTTP specification explicitly says that +the protocol was designed with enabling the datamining of its users in mind, and contains features that are not absolutely necessary for the purpose of the +protocol, but allow the protocol compromise user privacy.

    "User-Agent" Datamining feature

    - Section 14.43[1] of the HTTP specification details the "User-Agent" + Section 14.43[1] of the HTTP specification details the "User-Agent" spyware feature of the protocol that, when implemented, will attach information about your computing enviroment that can be used to track you. The biggest danger of the User-Agent spyware is that there is no way to anonymously opt-out of this- even if you do not provide a user-agent, because almost everyone else does, you will be tracked by the fact that you do not provide that information. There are many strategies to mitigate this spyware, with only varying levels of success, but the problem is that this is the acceptable standard of how HTTP is used- - and not the forgotten feature that it should be. Not only does the User-Agent feature collect this unncessary information, its purpose is explicitly + and not the forgotten feature that it should be. Not only does the User-Agent feature collect this unncessary information, its purpose is explicitly stated in the protocol specifications to aid in datamining.

    @@ -33,20 +33,20 @@ protocol, but allow the protocol compromise user privacy.

    Acknowledgement of HTTP's privacy problem

    - In the HTTP specification, the W3C explicitly acknowledges the serious privacy violations that implementations of this protocol are capable of comitting. - Section 15.1[2] of the HTTP specification has a very detailed analysis of + In the HTTP specification, the W3C explicitly acknowledges the serious privacy violations that implementations of this protocol are capable of comitting. + Section 15.1[2] of the HTTP specification has a very detailed analysis of the implications of the comprimization of privacy that the User-Agent spyware allows to happen and suggests how to use the User-Agent feature: as an opt-in - feature where the privacy concerns of using such a feature are properly explained to the user. Even though this is a good section, it shows a very naieve - viewpoint from the W3C- the expectation that this feature would not be abused, and the expectation that implementers of this standard would respect the - privacy of their users and would not use these features of the protocol to datamine users. + feature where the privacy concerns of using such a feature are properly explained to the user. Even though this is a good section, it shows a very naieve + viewpoint from the W3C- the expectation that this feature would not be abused, and the expectation that implementers of this standard would respect the + privacy of their users and would not use these features of the protocol to datamine users.

    - At best, you could call this mindset naieve. Or, you could call it negligent. If you want to hold the W3C in contempt, you could call it malicious. + At best, you could call this mindset naieve. Or, you could call it negligent. If you want to hold the W3C in contempt, you could call it malicious. It's easy to write in your standard that while you could use this protocol to monitor the behavior of users, you should ask for their permission. But once that standard is widely implemented, and is widely used for the exact malicious purpose that was acknowledged in its specification, who's - fault is that? + fault is that?

    - +

    Sources

    @@ -60,7 +60,7 @@ protocol, but allow the protocol compromise user privacy. [arquivo.pt] [veebiarhiiv.digar.ee] [webarchive.proni.gov.uk]
    - + 2. Section 15 of the HTTP/1.1 Specification [webarchive.loc.gov] @@ -68,17 +68,17 @@ protocol, but allow the protocol compromise user privacy. [archive.is] [webarchive.nrscotland.gov.uk] [arquivo.pt]
    - +

    - - + +

    This article was last edited on 5/14/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/icecat.html b/articles/icecat.html index 050ea1e..c8f2edc 100644 --- a/articles/icecat.html +++ b/articles/icecat.html @@ -1,22 +1,22 @@ - + Spyware Watchdog

    GNU IceCat

    -

    Back to catalog
    - Spanish Translation

    - - icecat Logo +

    Back to catalog
    + Spanish Translation

    + + icecat Logo

    -GNU IceCat is a web browser that is a fork of Firefox. +GNU IceCat is a web browser that is a fork of Firefox.

    Spyware Level: Not Spyware

    -GNU IceCat is a fork of Firefox that is more private and secure than Firefox and it contains several privacy-protecting features. IceCat 60 makes no unsolicited connections when you run it. Previous versions had privacy problems, but version 60 doesn't have these problems. You can read about the previous version here: IceCat 59 Review +GNU IceCat is a fork of Firefox that is more private and secure than Firefox and it contains several privacy-protecting features. IceCat 60 makes no unsolicited connections when you run it. Previous versions had privacy problems, but version 60 doesn't have these problems. You can read about the previous version here: IceCat 59 Review

    IceCat's privacy features

    @@ -37,8 +37,8 @@ GNU IceCat is a fork of Firefox that is more private and secure than Firefox and This article was last edited on 9/18/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/icecat59.html b/articles/icecat59.html index fcecea3..79d6765 100644 --- a/articles/icecat59.html +++ b/articles/icecat59.html @@ -1,16 +1,16 @@ - + Spyware Watchdog

    GNU IceCat (v59)

    -

    Back to catalog

    - icecat Logo +

    Back to catalog

    + icecat Logo

    -GNU IceCat is a web browser that is a fork of Firefox. +GNU IceCat is a web browser that is a fork of Firefox.

    Spyware Level: Low

    @@ -19,10 +19,10 @@ GNU IceCat is a fork of Firefox that is more private and secure than Firefox and

    This article is about an older version of Icecat (v59), and not the current verison. (anything v60 and higher)

    Phoning Home

    - Even though IceCat has better privacy features out of the box than Firefox, it still phones home by default to GNU, Mozilla, and Google. - So, while it claims to respect your privacy, it doesn't take steps to stop spyware features like this. + Even though IceCat has better privacy features out of the box than Firefox, it still phones home by default to GNU, Mozilla, and Google. + So, while it claims to respect your privacy, it doesn't take steps to stop spyware features like this.

    - Icecat phoning home + Icecat phoning home

    IceCat's privacy features

    From gnu.org: @@ -39,16 +39,16 @@ GNU IceCat is a fork of Firefox that is more private and secure than Firefox and

    1. Dig Deeper - [original image link]
    + [original image link]

    - +

    This article was last edited on 6/21/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/icecat_es.html b/articles/icecat_es.html index 45c6f53..3dc866d 100644 --- a/articles/icecat_es.html +++ b/articles/icecat_es.html @@ -1,19 +1,19 @@ - + Spyware Watchdog

    GNU IceCat

    -

    Back to catalog (English)
    - Back to catalog (Spanish)
    - English Translation

    - - icecat Logo +

    Back to catalog (English)
    + Back to catalog (Spanish)
    + English Translation

    + + icecat Logo

    -GNU IceCat es un navegador web, derivado de Firefox. +GNU IceCat es un navegador web, derivado de Firefox.

    Nivel de Spyware: No es spyware

    @@ -36,8 +36,8 @@ GNU IceCat es un navegador web, derivado de Fir

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/index.html b/articles/index.html index 06f7371..b8a5726 100644 --- a/articles/index.html +++ b/articles/index.html @@ -1,95 +1,93 @@ - + Spyware Watchdog

    Online Spyware Classification Project Article Catalog

    - Back to Home
    - Spanish Catalog
    - Unfinished Articles
    -

    -

    -All of the articles on this website are available here! If you want to edit any of these articles, or contribute your own articles, email me at spyware@aaathats3as.com + Spanish Catalog
    + Unfinished Articles

    +

    All of the articles on this website are available here! If you want to edit any of these articles, or contribute your own articles, contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg./p>

    Web Browsers

    - Comparison between web browsers

    - SRWare Iron
    - Slimjet
    - Google Chrome - [Spanish]
    - Opera
    - WebDiscover
    - Mozilla Firefox - [Mitigation Guide]
    - Vivaldi
    - Internet Explorer
    - Dissenter
    - Waterfox
    - Brave
    - Pale Moon - [Mitigation Guide]
    - Sphere Browser
    - Iridium Browser - [Mitigation Guide]
    - GNU IceCat - [Spanish]
    - Falkon
    - Otter Browser
    - Qutebrowser
    - Ungoogled Chromium
    - Tor Browser
    - + Comparison between web browsers

    + SRWare Iron
    + Slimjet
    + Google Chrome + [Spanish]
    + Opera
    + WebDiscover
    + Mozilla Firefox + [Mitigation Guide]
    + Vivaldi
    + Internet Explorer
    + Dissenter
    + Waterfox
    + Brave
    + Pale Moon + [Mitigation Guide]
    + Sphere Browser
    + Iridium Browser + [Mitigation Guide]
    + GNU IceCat + [Spanish]
    + Falkon
    + Otter Browser
    + Qutebrowser
    + Ungoogled Chromium
    + Tor Browser
    +

    Online Content Platforms

    - Snapchat
    - Instagram
    - YouTube
    - + Snapchat
    + Instagram
    + YouTube
    +

    Messaging Clients/Services

    - Discord - [Spanish]
    - Mozilla Thunderbird
    - Telegram
    - Hexchat
    - - + Discord + [Spanish]
    + Mozilla Thunderbird
    + Telegram
    + Hexchat
    + +

    Search Engines

    - Google Search - [Spanish] - [Turkish]
    - Bing
    - Yahoo
    - DuckDuckGo - [Spanish]
    - + Google Search + [Spanish] + [Turkish]
    + Bing
    + Yahoo
    + DuckDuckGo + [Spanish]
    +

    Video Games

    - Steam
    - Red Shell
    - Unity
    - Razer - [Spanish]
    - Kerbal Space Program
    - GZDoom
    - + Steam
    + Red Shell
    + Unity
    + Razer + [Spanish]
    + Kerbal Space Program
    + GZDoom
    +

    Media Players

    - RealPlayer
    - iTunes
    - - VLC Media Player
    - + RealPlayer
    + iTunes
    + + VLC Media Player
    +

    Other

    - CCleaner
    - PowerISO
    - CDex
    - Paint.NET
    - HyperText Transmission Protocol
    - File Transfer Protocol
    + CCleaner
    + PowerISO
    + CDex
    + Paint.NET
    + HyperText Transmission Protocol
    + File Transfer Protocol
    - \ No newline at end of file + diff --git a/articles/index2.html b/articles/index2.html index 65c15cd..f16aea0 100644 --- a/articles/index2.html +++ b/articles/index2.html @@ -1,36 +1,36 @@ - + Spyware Watchdog - +

    Online Spyware Classification Project Unfinished Article Catalog

    - Back to Home
    - Main Catalog
    + Back to Home
    + Main Catalog

    -This is a catalog of all of the articles that are currently works-in-progress. The articles here are either unfinished, or not accurate and need to be edited before they can be added to the normal catalog. If you want to edit any of these articles, or contribute your own articles, email me at spyware@aaathats3as.com. These articles need the most help, so feel free to contribute! +This is a catalog of all of the articles that are currently works-in-progress. The articles here are either unfinished, or not accurate and need to be edited before they can be added to the normal catalog. If you want to edit any of these articles, or contribute your own articles, contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. These articles need the most help, so feel free to contribute!

    -

    The requested articles file also has a list of articles that have been requested, and the state of those +

    The requested articles file also has a list of articles that have been requested, and the state of those requests.

    - uTorrent
    - - Nvidia Drivers
    + uTorrent
    - 1password
    - Foobar 2000
    - Comparison between web browsers
    + Nvidia Drivers
    - Example Article
    - Classification Guide
    + 1password
    + Foobar 2000
    + Comparison between web browsers
    + + Example Article
    + Classification Guide

    - \ No newline at end of file + diff --git a/articles/index_es.html b/articles/index_es.html index 4264ffd..88e92f4 100644 --- a/articles/index_es.html +++ b/articles/index_es.html @@ -1,7 +1,7 @@ - + Spyware Watchdog @@ -9,26 +9,26 @@

    Online Spyware Classification Project Spanish Article Catalog

    Back to Home
    - English Catalog
    - Unfinished Articles
    + English Catalog
    + Unfinished Articles

    -This is a catalog of all of the Spanish articles on this site. Some of these articles are translations of other English articles on the site and some -are only in Spanish. Thanks to one very helpful contributor, these articles have been translated. If you know English and Spanish, and want to make -this catalog larger, consider translating an article, or writing your own articles, in Spanish. It would be very much appreciated. +This is a catalog of all of the Spanish articles on this site. Some of these articles are translations of other English articles on the site and some +are only in Spanish. Thanks to one very helpful contributor, these articles have been translated. If you know English and Spanish, and want to make +this catalog larger, consider translating an article, or writing your own articles, in Spanish. It would be very much appreciated.

    -If you want to edit any of these articles, or contribute your own articles, email me at spyware@aaathats3as.com +If you want to edit any of these articles, or contribute your own articles, contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg.

    All Articles

    - Razer
    - Google Chrome
    - GNU IceCat
    - Discord
    - Google Search
    - DuckDuckGo
    + Razer
    + Google Chrome
    + GNU IceCat
    + Discord
    + Google Search
    + DuckDuckGo
    - \ No newline at end of file + diff --git a/articles/instagram.html b/articles/instagram.html index fdad90a..33ca803 100644 --- a/articles/instagram.html +++ b/articles/instagram.html @@ -2,15 +2,15 @@ - + Spyware Watchdog

    Instagram

    -

    Back to catalog

    - Instagram logo +

    Back to catalog

    + Instagram logo

    Instagram, developed by Facebook is designed to be a free smartphone app that allows users to post pictures and videos to a feed, much like any micro-blogging platform. It is popular among teenagers and millennials. In fact businesses are now getting into the Instagram scene and creating their own Instagram profiles.

    @@ -47,7 +47,7 @@ Whenever a user takes a picture on a modern smartphone, GPS Coordinates are stor

    You Must Provide a Telephone Number or Email Address to Sign Up

    In order to sign up for the app, you must provide either a telephone number or an email address. You will not be allowed to create an account if you don't provide a either one. This is obviously a method Instagram to uniquely identify you.

    If you provided Instagram with a cellular telephone number and uninstalled the app, you will get constant nags to "see whats new on Instagram". Fortunately these nags will go away after about a month, and can be blocked by simply blocking the number

    -screenshot +screenshot

    It Broadcasts What You Do In The App To Other Users

    Introduced in January 2018, Instagram sports a new spyware feature that broadcasts what you doing in the app to anyone that DMs you in the app[3]. But, it goes further, it reportedly also broadcasts what comments you read and what photos you like in the app. On microblogging platforms like Instagram, the majority of users like their actions to be private. A lot of users have complained about this feature and they stated that the feature is here to stay. Also, there is no way to disable this feature either.

    @@ -65,22 +65,22 @@ Whenever a user takes a picture on a modern smartphone, GPS Coordinates are stor [archive.is] [archive.org]
    - - + + 2 Instagrams TOS [archive.is]
    - - + + 3 HelloGiggles Article on the New DM feature [archive.is]
    - + 4 Instagram Listens In [archive.is] @@ -94,11 +94,11 @@ Whenever a user takes a picture on a modern smartphone, GPS Coordinates are stor This article was last edited on 2/24/2019

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - + CC0 Liscence + - + diff --git a/articles/iridium.html b/articles/iridium.html index 25e01bc..9632541 100644 --- a/articles/iridium.html +++ b/articles/iridium.html @@ -1,21 +1,21 @@ - + Spyware Watchdog

    Iridium Browser

    -

    Back to catalog
    +

    Back to catalog
    Mitigation Guide

    - Iridium Logo + Iridium Logo

    Iridium is a privacy-based fork of Google Chrome. From their website: "All modifications enhance the privacy of the user and make sure that the latest and best secure technologies are used. Automatic transmission of partial queries, keywords and metrics to central services is prevented and only occurs with the approval of the user." Unlike other browsers of its kind, this one is fully featured (has all the addons that are available for Chrome), and so is recommended for everyday usage.

    Spyware Level: Low

    - After following the mitigation guide, this software is Not Spyware. + After following the mitigation guide, this software is Not Spyware.

    The only unsolicited request is for the Google SafeBrowsing feature, and can be easily turned off from the Preferences menu. Additionally, privacy enhancements unrelated to Google are added, such as blocking third party cookies by default, and deleting local storage on close. Full list of the differences between Chrome and Iridium can be found here[1]. However this list is not accurate and each claim it makes should be verified by the user. @@ -24,50 +24,50 @@

    Iridium browser will make these requests to Google to update a blocklist of websites for its SafeBrowsing feature:

    - Iridium safebrowsing requests + Iridium safebrowsing requests

    Iridium browser will also download this blocklist from a mirror maintained by the developers. Since the web browser is - awalys "phoning home" to either google or the developers servers, this is a form of spyware that can be used to monitor - usage of the program, as well as collection of the User-Agent's of the program's users. (See the HTTP article) - This request is made 5 miniutes after the program is started, and then updated every 30 miniutes. + awalys "phoning home" to either google or the developers servers, this is a form of spyware that can be used to monitor + usage of the program, as well as collection of the User-Agent's of the program's users. (See the HTTP article) + This request is made 5 miniutes after the program is started, and then updated every 30 miniutes.

    Inaccurate Privacy Claims

    The Iridium developers make the claim that as one of the privacy enhancements of Iridium, it uses the Google SafeBrowsing spyware feature, but with their own mirror of Google's database, meaning that you can - use the feature without constantly phoning home to google, but instead phoning home to the developers, which, while still being a form of spyware, is an increase in privacy - for the user[1]. At least it would be if this section was actually true. You can see that from the "Phoning Home" section of this article, this claim is simply - not true, which is very bad because it undermines the crediblity of the other privacy claims that Iridium makes. + use the feature without constantly phoning home to google, but instead phoning home to the developers, which, while still being a form of spyware, is an increase in privacy + for the user[1]. At least it would be if this section was actually true. You can see that from the "Phoning Home" section of this article, this claim is simply + not true, which is very bad because it undermines the crediblity of the other privacy claims that Iridium makes.

    - According to another writer, in his tests the browser would only connect to iridiumbrowser.de. So it is possible that this privacy claim is true for some versions of Iridium, + According to another writer, in his tests the browser would only connect to iridiumbrowser.de. So it is possible that this privacy claim is true for some versions of Iridium, and false for other versions of Iridium. The version of Iridium that phones home to Google is Version 2018.4 for 64-bit Windows, tested on Windows 7, if you want to see this - for yourself. + for yourself.

    Not only is this privacy claim inaccurate, but a pull request[2] has been open on the developers github for OVER A YEAR with no response from the development team. It's pretty dissapointing to see such a privacy concerned front to this project, but then a negligent additude with longstanding privacy issues once you pull back the curtain and look a little deeper at the claims this browser makes.

    - +

    Sources

    - + 1. Differences between Iridium and Chromium [web.archive.org] [archive.is] [via.hypothes.is]
    - + 2. Still access to google safebrowsing servers [web.archive.org] [archive.is]
    - +

    - - + +

    This article was last edited on 5/16/2018 @@ -75,10 +75,10 @@

    This article was created on 5/5/2018

    - +

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/iron.html b/articles/iron.html index b80c03c..922249f 100644 --- a/articles/iron.html +++ b/articles/iron.html @@ -1,27 +1,27 @@ - + Spyware Watchdog

    SRWare Iron

    -

    Back to catalog

    - SRWare Iron Logo +

    Back to catalog

    + SRWare Iron Logo

    SRWare Iron is a free web browser, and an implementation of Chromium by SRWare of Germany.

    Spyware Level: EXTREMELY HIGH

    -SRWare Iron claims to be a privacy respecting web browser that is an alternative to Google Chrome's +SRWare Iron claims to be a privacy respecting web browser that is an alternative to Google Chrome's spyware, and specifically brands itself as a privacy respecting web browser that aims to give users -the Chrome experience without Google's spyware. However when examining this program, these claims +the Chrome experience without Google's spyware. However when examining this program, these claims instantly melt away. SRWare Iron connects to an absolutely incredible amount of trackers and opens -connections to an enormous amount of servers on it's first run. It racks up a rough estimate of +connections to an enormous amount of servers on it's first run. It racks up a rough estimate of ~400-500 unsolicited connections, and it actually took several minitues for it to stop making new -requests and connections. SRWare Iron uses the spyware search engine Bing as it's default search +requests and connections. SRWare Iron uses the spyware search engine Bing as it's default search engine, however it goes beyond that and routes your requests to Bing through it's own servers so that it can spy on your internet searches as well. The bottom line is that this browser is just another false privacy initiative and is really no better than Chrome. @@ -39,8 +39,8 @@ SRWare Iron claims on it's website that it is: [1]

    The reality is that you are merely trading in one spyware product for another. Where Chrome's spyware has been removed, -Iron's spyware is there to replace it. Which poision are you going to pick? The worst part is that people will read what is -claimed on SRWare's website and beleive it without doing any tests for themselves. Like +Iron's spyware is there to replace it. Which poision are you going to pick? The worst part is that people will read what is +claimed on SRWare's website and beleive it without doing any tests for themselves. Like this article [web.archive.org] that just copies the comparison-list from Iron's website without any real investegation before delcaring it a privacy alterantive to Chrome. @@ -54,31 +54,31 @@ Which is just an amazing gem in the context of what is actually found when runni

    Massive amount of connections on first startup

    -When you first start SRWare Iron, it will immediately open the following two pages: https://iron.start.me/us and +When you first start SRWare Iron, it will immediately open the following two pages: https://iron.start.me/us and https://www.srware.net/en/software_srware_iron.php. The most offensive page is the start.me domain which begins loading in an enormous amount of spyware from all over the internet. I did not count the specific amount of requests but it was somewhere in the 400-500 range (my software doesn't provide a great amount of automation... or maybe i'm not using it -as well as I could). This image (at 1.06 MB- almost 1/4 of the size of the entire site as of writing!) -should give you an idea of the amount of requests I was swamped by. It took a while for it to die down. On subsequent runs the +as well as I could). This image (at 1.06 MB- almost 1/4 of the size of the entire site as of writing!) +should give you an idea of the amount of requests I was swamped by. It took a while for it to die down. On subsequent runs the amount of requests it sent was far less. It connected to spyware platforms like Google Analytics and Piwik, and executed their JavaScript payloads. There were a lot of redundant connections to Google Analytics so it's probable that multiple companies are able to send their own analytics payloads through this homescreen. Thus throughly fingerprinting and profiling your web browser and computer the moment you begin browsing the internet with your new "privacy respecting" browser- so that all of these advertising companies can track you -everywhere you go! +everywhere you go!

    - When checking the browser's connections in Network Monitor 3.4, you could see that it connected to a huge amount -of servers, even though only two domains were ever contacted.This screenshot doesn't caputre + When checking the browser's connections in Network Monitor 3.4, you could see that it connected to a huge amount +of servers, even though only two domains were ever contacted.This screenshot doesn't caputre all of the IP addresses that it connected, but should give you an idea.

    And just so that there is no ambiguity, this notice is shown when you load this homepage:

    - "We use cookies to personalise content and ads, to provide social media features + "We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site -with our social media, advertising and analytics partners who may combine it -with other information you’ve provided to them or they’ve collected from your +with our social media, advertising and analytics partners who may combine it +with other information you’ve provided to them or they’ve collected from your use of their services."

    @@ -87,16 +87,16 @@ Just so that there is no doubt- you are being served tracking cookies by adverti

    Redirecting of internet searches through developer's domain

    After you've finished identifying your web browser to just about every single spyware company on the internet, you can begin -making internet searches with your new SRWare Iron browser. The default search engine is the spyware search engine Bing. +making internet searches with your new SRWare Iron browser. The default search engine is the spyware search engine Bing. However it's not enough to just point you at a spyware search engine... when you try and actually run a search on Bing, this is what happens:

    - SRWare Iron redirecting through it's own servers + SRWare Iron redirecting through it's own servers

    -Basically, every time you make a search with this browser, your searches are sent through the developer's servers. -So, the developer can know exactly what your internet history is, in this way. Your searches are also being sent through -wisesearches.com, but I don't know who they are. So now instead of giving up your search history to one +Basically, every time you make a search with this browser, your searches are sent through the developer's servers. +So, the developer can know exactly what your internet history is, in this way. Your searches are also being sent through +wisesearches.com, but I don't know who they are. So now instead of giving up your search history to one spyware company, Google, you can give it to three spyware companies, by switching to this browser. This is a very similar -tactic to the one that the spyware browser Slimjet uses, where it routes searches to +tactic to the one that the spyware browser Slimjet uses, where it routes searches to Bing through it's own domains.

    Motivations of the SRWare Iron developer?

    @@ -142,9 +142,9 @@ Bing through it's own domains. yet you use google's adsense

    - So, this could explain a lot... the motivation for this web browser to exist was to monetize + So, this could explain a lot... the motivation for this web browser to exist was to monetize privacy concerns by generating traffic to his website, where he could make money by serving spyware - to the very users that wanted to escape from it. Then his fork gets loaded up with all sorts of + to the very users that wanted to escape from it. Then his fork gets loaded up with all sorts of spyware from all sorts of other companies... which he probably makes some amount of money from as well. (why else would he take the time to integrate these things into his browser? we can only speculate.) At the end of the day it's pretty clear that this browser is a huge scam and you shouldn't use it. @@ -169,10 +169,10 @@ Bing through it's own domains. This article was last edited on 11/20/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg.All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - + CC0 Liscence + - + diff --git a/articles/itunes.html b/articles/itunes.html index 20675d7..98c4ffb 100644 --- a/articles/itunes.html +++ b/articles/itunes.html @@ -1,16 +1,16 @@ - + Spyware Watchdog

    iTunes

    -

    Back to catalog

    - itunes logo +

    Back to catalog

    + itunes logo

    -iTunes is a media player, media library, Internet radio broadcaster, and mobile device management application developed by Apple Inc. +iTunes is a media player, media library, Internet radio broadcaster, and mobile device management application developed by Apple Inc.

    Spyware Level: EXTREMELY HIGH

    @@ -18,7 +18,7 @@ iTunes is a spyware music player developed by Apple that collects an enormous am

    Itunes is integrated into the Apple ID spyware platform

    -Itunes is integrated with the "Apple ID" spyware platform, which it requires for you to use certain features of the app. +Itunes is integrated with the "Apple ID" spyware platform, which it requires for you to use certain features of the app. This spyware platform collects the following information from you[1]:

    - This is obviously a very large amount of information being mined. The purpose of this is to fingerprint the user as well - as possible, destroying any kind of anonymity. It goes beyond most spyware programs in the information it collects, by + This is obviously a very large amount of information being mined. The purpose of this is to fingerprint the user as well + as possible, destroying any kind of anonymity. It goes beyond most spyware programs in the information it collects, by scanning your computer for installed programs and collecting various demographic information about the user. It's very clear - that this is a huge amount of personal information to be collecting, despite all of the claims on the official website about how - innocent this data is. + that this is a huge amount of personal information to be collecting, despite all of the claims on the official website about how + innocent this data is.

    Phoning home

    Redshell is designed to phone home at its client's (the game developer) whim. Any program using Redshell will phone home with - personal information in a way perculiar to that program. + personal information in a way perculiar to that program.

    Sharing Information with third parties

    @@ -56,7 +56,7 @@ avoided entirely.

    Of course, the words "integrated partner" are used to describe these third parties. The bottom line is that other people are being given this information. There is also an important distinction to make when talking about this: as Redshell's spyware is a product, - Redshell does not actually have control over what the buyers of that product can do. So, just because Redshell doesn't sell the + Redshell does not actually have control over what the buyers of that product can do. So, just because Redshell doesn't sell the the information it's spyware collects about it's users to third parties, that doesn't mean that the buyers of the product do not or will not sell the information that they collect through Redshell to third parties.

    @@ -79,8 +79,8 @@ avoided entirely. This article was last edited on 7/16/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/slimjet.html b/articles/slimjet.html index 6e9c75d..0761cf1 100644 --- a/articles/slimjet.html +++ b/articles/slimjet.html @@ -1,14 +1,14 @@ - + Spyware Watchdog

    Slimjet

    -

    Back to catalog

    - slimjet Logo +

    Back to catalog

    + slimjet Logo

    Slimjet is a clone of the SlimBrowser web browser from FlashPeak that uses the Chromium as a base.

    @@ -22,19 +22,19 @@ services. Slimjet claims to be concerned about privacy but ultimately retains ju Even though on its site, FlashPeak claims that: "Slimjet doesn't send any usage data back to Google like Chrome."[1] the moment I turn it on with MITMproxy running, I am greeted with this:

    - Slimjet sending requests to all sorts of google services + Slimjet sending requests to all sorts of google services

    So, this claim just isn't true at all. It's still got a lot of Google's spyware in it, if it's still connecting to so many Google services. What's kind of surprising is that it didn't seem connect to any servers explicitly operated by FlashPeak when I was testing it. Even though, it claims to collect information about it's users for internal usage.[2] So, it must be phoning home as well as sending information to Google. Maybe it sends information through some kind of Google web service?

    Default Search Engine is Spyware

    - The default search engine is Bing, which sells your information to advertisers. If that isn't enough, it's + The default search engine is Bing, which sells your information to advertisers. If that isn't enough, it's "served from fpseek.com" which means that not only are you exposing your information to Bing, this is also being logged by fpseek, which has it's own privacy policy[3]. Whenever you search something using the default search engine, requests are sent to both Bing and fpseek.

    - Fpseek connection + Fpseek connection

    - So, not only are you sharing everything with Microsoft, now there is another company looking at all of your searches. This is a uniquely bad + So, not only are you sharing everything with Microsoft, now there is another company looking at all of your searches. This is a uniquely bad default search engine because of how much information it leaks out. Fpseek itself is a company that seems to be tracking how users interact with advertisments and it says that it uses information it collects about it's users to:

    @@ -48,23 +48,23 @@ services. Slimjet claims to be concerned about privacy but ultimately retains ju

    Collecting Information about Users

    Slimjet claims to collects "some anonymous feature usage statistics information", and claims not to record your IP or sell that information - to advertisters. However it is still opt-out spyware. + to advertisters. However it is still opt-out spyware.

    Using the Microsoft BITS service to upload search history to Google servers

    When you start Slimjet, it will begin using the BITS (Background Intelligent Transfer Service) which is designed to use spare bandwidth to transfer updates and other information. These requests are sent between Slimjet and a Google server, with confirmation from Process Monitor and MITMproxy:

    - Bits1 - Bits2 - Bits3 + Bits1 + Bits2 + Bits3

    - Personal information was censored from these images. It's unclear what this is for specifically but this is probably being done to implement the - "CLOUD SYNC OF BOOKMARK & DATA" that is advertised on Slimjet's website. This is probably how they upload all of your search history and bookmarks into their cloud services, which seem to be provided by Google. There are no other features or requests made that would require large amounts of data to be sent too an external server in this way, so by process of elimination this is my theory as to how it's implemented. + Personal information was censored from these images. It's unclear what this is for specifically but this is probably being done to implement the + "CLOUD SYNC OF BOOKMARK & DATA" that is advertised on Slimjet's website. This is probably how they upload all of your search history and bookmarks into their cloud services, which seem to be provided by Google. There are no other features or requests made that would require large amounts of data to be sent too an external server in this way, so by process of elimination this is my theory as to how it's implemented.

    - cloud sync feature + cloud sync feature

    - Obviously you can tell that any kind of service to sync your search history "in the cloud" is a privacy nightmare. Now both Google and Slimjet have access to your search history... + Obviously you can tell that any kind of service to sync your search history "in the cloud" is a privacy nightmare. Now both Google and Slimjet have access to your search history...

    Sources

    @@ -86,8 +86,8 @@ services. Slimjet claims to be concerned about privacy but ultimately retains ju This article was last edited on 8/4/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/snapchat.html b/articles/snapchat.html index 3a2b786..adb0f21 100644 --- a/articles/snapchat.html +++ b/articles/snapchat.html @@ -2,15 +2,15 @@ - + Spyware Watchdog

    Snapchat

    -

    Back to catalog

    - Snapchat Logo +

    Back to catalog

    + Snapchat Logo

    Snapchat, developed by Snap Inc is designed to be a free, and fun smartphone app to send messages as "Snaps" to your friends. It is popular among teenagers and millennials, however older people have started using the app too.

    @@ -47,7 +47,7 @@ For a simple social media app, Snapchat demands too many permissions. When I tes

    If logging IPs and GPS Locations wasn't enough, Snapchat will now lock out accounts that haven't provided an email or phone number[3]. Snapchat will let you use thier app for a grace period before it locks you out and demands an email or phone number in order to get your account back. The length of this grace period is unknown.

    You Must Use the Official Client

    -

    If a user is fed up with the the vast amount of information the official Snapchat client collects about you, they CANNOT change to the 3rd party client. Doing so is strictly prohibited. Snapchat has a service that is designed to catch users using 3rd party clients and permanently lock your account. This forces the user to use the official client which contains the spyware.

    +

    If a user is fed up with the the vast amount of information the official Snapchat client collects about you, they CANNOT change to the 3rd party client. Doing so is strictly prohibited. Snapchat has a service that is designed to catch users using 3rd party clients and permanently lock your account. This forces the user to use the official client which contains the spyware.

    Sources

    @@ -84,12 +84,12 @@ For a simple social media app, Snapchat demands too many permissions. When I tes This article was last edited on 2/23/2019

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - + CC0 Liscence + - + diff --git a/articles/sphere.html b/articles/sphere.html index f346e96..d4cd8a3 100644 --- a/articles/sphere.html +++ b/articles/sphere.html @@ -1,51 +1,51 @@ - + Spyware Watchdog

    Sphere Browser

    -

    Back to catalog

    - sphere browser logo +

    Back to catalog

    + sphere browser logo

    Sphere Browser is a privacy-focused web Browser made by Tenebris.

    Spyware Level: Possible Spyware

    -This program was tested with MITMproxy on Linux. Sphere Browser itself does not contain any telemetry and really has removed all of -the spyware from the chromium codebase that it is based on. However, it has two red flags- the default homepage has analytics, and you have to run -analytics on your browser to download it. The software is fine. Just the settings and the way you have to -download it and the lack of source code hold it back from the title of "Not Spyware". You can easily configure it to not connect to the default homepage, at least. +This program was tested with MITMproxy on Linux. Sphere Browser itself does not contain any telemetry and really has removed all of +the spyware from the chromium codebase that it is based on. However, it has two red flags- the default homepage has analytics, and you have to run +analytics on your browser to download it. The software is fine. Just the settings and the way you have to +download it and the lack of source code hold it back from the title of "Not Spyware". You can easily configure it to not connect to the default homepage, at least.

    Tracking pixel on the default homepage

    Sphere Browser is based around an "identities" feature that lets you change how your browser appears to the rest of -the internet in a rather easy way- and then it by default loads the site f.vision which can identify your new identity in a pretty -centeralized way, and even includes a tracking pixel from the getclicky analytics service. If you want to use this browser, you really +the internet in a rather easy way- and then it by default loads the site f.vision which can identify your new identity in a pretty +centeralized way, and even includes a tracking pixel from the getclicky analytics service. If you want to use this browser, you really should not be using this default homepage. It contrasts with the privacy features of the browser rather poorly.

    - getclicky tracking pixel on the sphere browser default homepage + getclicky tracking pixel on the sphere browser default homepage

    JavaScript from an Analytics company on the download site

    Another problem is, you need to load JavaScript to download the browser itself at sphere.tenebris.cc/, which tries to load JS code from Tenebris as well as JavaScript from the same analytics company that has the tracking pixel on f.vision. Why are these analytics here if the browser -is so focused on privacy? +is so focused on privacy?

    - getclicky tracking JS on the sphere browser download page - - + getclicky tracking JS on the sphere browser download page + +

    This article was last edited on 12/12/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - + CC0 Liscence + - + diff --git a/articles/steam.html b/articles/steam.html index e67b5da..ea569b3 100644 --- a/articles/steam.html +++ b/articles/steam.html @@ -1,14 +1,14 @@ - + Spyware Watchdog

    Steam

    -

    Back to catalog

    - Steam logo +

    Back to catalog

    + Steam logo

    Steam is a video game launching service, digital content store, DRM platform, file sharing platform, and Social Network created by Valve.

    @@ -18,7 +18,7 @@ This program is spyware because it collects huge amounts of user information, in

    Steam's source code is unavailible

    -Steam cannot be built from an availible copy of the source code. This means that it is impossible to prove that Steam is not spyware or does not use certain spyware features that it potentially has. +Steam cannot be built from an availible copy of the source code. This means that it is impossible to prove that Steam is not spyware or does not use certain spyware features that it potentially has.

    Steam collects and shares huge amounts of sensitive user information

    @@ -38,7 +38,7 @@ In Steam's privacy policy[1], Steam details that it

  • Hardware Enumeration

    • -Steam also confirms that it shares this information with third parties. The implications of this are as follows: Steam knows your name, age, where you live, your banking information, and what your e-mail is. Steam shares this information with other companies (at least, to the extent allowed by law). Steam can use your IP Address to track where you are to the nearest county and can use your Device Unqiue ID provided by the fingerprinting spyware features inside Steam to track your usage habits across devices that you use. Steam also records all of your communications with others through its social networking and instant messaging services, such as all chat logs, voice conversations, and forum posts, and can share all of this information with third parties as well. +Steam also confirms that it shares this information with third parties. The implications of this are as follows: Steam knows your name, age, where you live, your banking information, and what your e-mail is. Steam shares this information with other companies (at least, to the extent allowed by law). Steam can use your IP Address to track where you are to the nearest county and can use your Device Unqiue ID provided by the fingerprinting spyware features inside Steam to track your usage habits across devices that you use. Steam also records all of your communications with others through its social networking and instant messaging services, such as all chat logs, voice conversations, and forum posts, and can share all of this information with third parties as well.

    Steam has been and may still be recording your internet history

    @@ -50,11 +50,11 @@ Steam records your program usage habits for all programs launched through Steam'

    Steam attempts to collect your telephone number

    -Steam has the spyware feature which allows you to "opt-in" to certain features of the Steam service by providing Steam your telephone number. This is done through a pop-up that cannot be turned off. This spyware feature is currently not required, but is being encouraged by Steam. Steam in fact will lock out certain features and privledges to users who want to protect their privacy- for example, access to the "steam store" which is an online marketplace run by valve requires you to give you your phone number. So it is impossible to use all features of the software without giving up this kind of information. -

    +Steam has the spyware feature which allows you to "opt-in" to certain features of the Steam service by providing Steam your telephone number. This is done through a pop-up that cannot be turned off. This spyware feature is currently not required, but is being encouraged by Steam. Steam in fact will lock out certain features and privledges to users who want to protect their privacy- for example, access to the "steam store" which is an online marketplace run by valve requires you to give you your phone number. So it is impossible to use all features of the software without giving up this kind of information. +

    Steam "phones home" and requires and internet connection

    -Steam will "phone home" whenever the Steam client is opened or a program is launched through Steam. This spyware feature is mandatory and cannot be turned off. Steam provides an offline mode which is not an opt-out because users must still connect to Steam Servers every 30 days or so. +Steam will "phone home" whenever the Steam client is opened or a program is launched through Steam. This spyware feature is mandatory and cannot be turned off. Steam provides an offline mode which is not an opt-out because users must still connect to Steam Servers every 30 days or so.

    Steam is self-updating software

    @@ -63,22 +63,22 @@ Steam contains spyware features that allow it to update itself without user veri

    Further Reading

    - + Steam Proprietary Malware [web.archive.org] [archive.is]
    - + Steam uses insecure, out-of-date Chromium browser [web.archive.org] [archive.is]
    - +

    Sources

    - + 1. Privacy Policy Agreement [web.archive.org] @@ -92,13 +92,13 @@ Steam contains spyware features that allow it to update itself without user veri [web.archive.org] [archive.is]
    - + 3. Valve, VAC, and trust [web.archive.org] [archive.is]
    - +

    @@ -106,8 +106,8 @@ Steam contains spyware features that allow it to update itself without user veri This article was last edited on 8/3/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/systemd.html b/articles/systemd.html index 3224ca7..13252a0 100644 --- a/articles/systemd.html +++ b/articles/systemd.html @@ -1,32 +1,32 @@ - + Spyware Watchdog

    systemd

    -

    Back to catalog

    +

    Back to catalog

    This aritcle is not accurate and needs to be rewritten

    Spyware Level: Not Rated

    -A lot of people asked me to write this article, so here is my attempt at writing it. Lots of people have lots of reasons to dislike systemd, and a lot of them wonder if +A lot of people asked me to write this article, so here is my attempt at writing it. Lots of people have lots of reasons to dislike systemd, and a lot of them wonder if there is also a privacy reason to dislike systemd. But I have not ever heard of any kind of telemetry, phoning home, or any other kind of spyware in the systemd software suite. systemd is free software so anyone can look at the code. And a lot of people have spent a lot of time cataloging why they don't like systemd. But if you read their reasons, none of them mention any kind of spyware hiding inside of systemd's codebase that can be actually proven. So, I can't write that systemd is spyware until someone -can prove that it is spyware. If you have proof then feel free to email me and I will be happy to change this rating. +can prove that it is spyware. If you have proof then feel free to email me and I will be happy to change this rating.

    This line of reasoning for giving systemd a "Not Spyware" rating has some flaws, and the most obvious one is that it isn't reasonable to audit the 1 million lines of systemd -code for spyware. But this is still too generic of a critisim to make about it, because while in theory it is true, there needs to be real proof. Maybe the take-away is +code for spyware. But this is still too generic of a critisim to make about it, because while in theory it is true, there needs to be real proof. Maybe the take-away is that while there are many reasons to not like systemd, it's really probably not violating anyones privacy, just because of how much scrutiny it has gotten. Maybe it should be -rated "Potential Spyware" or a lower, "Probably Not Spyware"? I think that the rating should be taken with a grain of salt because of this. +rated "Potential Spyware" or a lower, "Probably Not Spyware"? I think that the rating should be taken with a grain of salt because of this.

    I have personally never used systemd and I don't have the skills to actually audit it or run tests on it myself. So this isn't a very good place to look when looking for reasons to dislike systemd. At the very least, I can point to anti-systemd web pages that I am sure would be the first to report on systemd potentially violating the privacy of it's users. -But I don't want to call them "sources" or anything because what they talk about is beyond the scope of this website. +But I don't want to call them "sources" or anything because what they talk about is beyond the scope of this website.

    Anti systemd web pages

    @@ -34,22 +34,22 @@ But I don't want to call them "sources" or anything because what they talk about systemd is the best example of Suck. [web.archive.org] [archive.is]
    - + Arguments against systemd [web.archive.org] [archive.is]
    - + Is systemd an NSA attempt? - +

    This article was last edited on 8/7/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - + diff --git a/articles/telegram.html b/articles/telegram.html index 2ac0846..05c7b24 100644 --- a/articles/telegram.html +++ b/articles/telegram.html @@ -1,32 +1,32 @@ - + Spyware Watchdog

    Telegram

    -

    Back to catalog

    - Telegram Logo +

    Back to catalog

    + Telegram Logo

    Telegram is an instant messaging program that allows you to send text, images, videos and also any other files to other Telegram users.

    Spyware Level: Medium

    -Telegram has some spyware features in it such as the telephone number verification, and routing communications through official Telegram servers in most cases. However, Telegram contains privacy features and claims to not collect any user information[1]. +Telegram has some spyware features in it such as the telephone number verification, and routing communications through official Telegram servers in most cases. However, Telegram contains privacy features and claims to not collect any user information[1].

    Telephone Number Required

    -Telegram features the more modern spyware feature that requires the user to associate their persistent user identity with a telephone number. This is obviously a breach of privacy, because Telegram requires the user to disclose this personal information. +Telegram features the more modern spyware feature that requires the user to associate their persistent user identity with a telephone number. This is obviously a breach of privacy, because Telegram requires the user to disclose this personal information.

    Centralized communication routing

    -Telegram does not use peer-to-peer or private servers for the majority of its communications. This means that Telegram is capable of logging all of the communications you send through its service, unless you opt to only use the Peer-to-Peer features of Telegram. Centralized communication routing has a high potential to be spyware. Telegram attempts to use Peer-to-Peer communication for Voice Calls, but it may disclose IP address to the counterpart. Telegram claims in its privacy policy[1] that it does not collect any information, but it is impossible to prove this. +Telegram does not use peer-to-peer or private servers for the majority of its communications. This means that Telegram is capable of logging all of the communications you send through its service, unless you opt to only use the Peer-to-Peer features of Telegram. Centralized communication routing has a high potential to be spyware. Telegram attempts to use Peer-to-Peer communication for Voice Calls, but it may disclose IP address to the counterpart. Telegram claims in its privacy policy[1] that it does not collect any information, but it is impossible to prove this.

    -Telegram's server software is closed source and Telegram does not distribute its server software. There is no way for other people to host their own Telegram services because -of this, meaning that the servers that the developers operate are the only choice for using this messaging platform. +Telegram's server software is closed source and Telegram does not distribute its server software. There is no way for other people to host their own Telegram services because +of this, meaning that the servers that the developers operate are the only choice for using this messaging platform.

    Telegram does not follow its GPLv2 Obligations

    @@ -39,19 +39,19 @@ Telegram clients are advertised as free software, but in practice the source cod Telegram Privacy Policy [web.archive.org] [archive.is]
    - + 2. Where are the sources of the latest releases? [archive.li]

    - +

    This article was last edited on 2/18/2019

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/thunderbird.html b/articles/thunderbird.html index bda2522..4e0f7fb 100644 --- a/articles/thunderbird.html +++ b/articles/thunderbird.html @@ -1,20 +1,20 @@ - + Spyware Watchdog

    Mozilla Thunderbird

    -

    Back to catalog

    - Mozilla Thunderbird logo +

    Back to catalog

    + Mozilla Thunderbird logo

    -Mozilla Thunderbird is an email, newsgroup, news feed, and chat client that was developed by the Mozilla Foundation, who are also the developers of Firefox. +Mozilla Thunderbird is an email, newsgroup, news feed, and chat client that was developed by the Mozilla Foundation, who are also the developers of Firefox.

    Spyware Level: Medium

    -Thunderbird contains a lot of spyware features, however all of these can be opted-out of and most of the spyware is connected to the web-browsing capaiblities of Thunderbird. Thunderbird contains some minor spyware protection to its users and does not attempt to collect any information that is extremely sensitive, however it is spyware and does share and collect user information by default that it does not need to share. +Thunderbird contains a lot of spyware features, however all of these can be opted-out of and most of the spyware is connected to the web-browsing capaiblities of Thunderbird. Thunderbird contains some minor spyware protection to its users and does not attempt to collect any information that is extremely sensitive, however it is spyware and does share and collect user information by default that it does not need to share.

    Thunderbird shares your E-Mail address with other parties

    @@ -25,11 +25,11 @@ Thunderbird contains a lot of spyware features, however all of these can be opte

    Thunderbird allows other websites to track you

    -Thunderbird contains web browsing spyware features, including compatiblity with tracking cookies and javascript, which can both be used to allow other parties to spy on users. As such, all of the spyware concerns of browsing the web are relevant when using Thunderbird. However, these features can be turned off. They are not spyware in and of themselves but they are attack vectors for other spyware programs to be downloaded and executed by the user. Thunderbird however provides some basic protections by default such as blocking all remote content in HTML E-Mails. +Thunderbird contains web browsing spyware features, including compatiblity with tracking cookies and javascript, which can both be used to allow other parties to spy on users. As such, all of the spyware concerns of browsing the web are relevant when using Thunderbird. However, these features can be turned off. They are not spyware in and of themselves but they are attack vectors for other spyware programs to be downloaded and executed by the user. Thunderbird however provides some basic protections by default such as blocking all remote content in HTML E-Mails.

    Thunderbird profiles its users and tracks the add-ons and personas they have installed

    -Thunderbird details in its privacy policy[1] that it updates Mozilla with the add-ons that users have installed, and then uses that information to recommend other add-ons to its users. Thunderbird will also track which "personas" a person installs and uses (these are like themes) when the user is using Mozilla's centeralized "personal gallery". These spyware features can be opted-out of or not used. +Thunderbird details in its privacy policy[1] that it updates Mozilla with the add-ons that users have installed, and then uses that information to recommend other add-ons to its users. Thunderbird will also track which "personas" a person installs and uses (these are like themes) when the user is using Mozilla's centeralized "personal gallery". These spyware features can be opted-out of or not used.

    Thunderbird shares your web browsing information with other parties

    @@ -43,7 +43,7 @@ Thunderbird details in its privacy policy[1] that it

    Thunderbird is self-updating software

    -Thunderbird will try and download new versions of itself using its update system. Since new versions of programs means that there could be new forms of spyware hidden in the program after updating, this is a form of spyware. This feature has an opt-out. +Thunderbird will try and download new versions of itself using its update system. Since new versions of programs means that there could be new forms of spyware hidden in the program after updating, this is a form of spyware. This feature has an opt-out.

    Thunderbird contains other opt-in spyware

    @@ -52,22 +52,22 @@ Thunderbird contains several forms of opt-in spyware that only collects informat

    Sources

    - + 1. Mozilla Thunderbird Privacy Policy [web.archive.org] [archive.is] [arquivo.pt]
    - +

    This article was last edited on 6/2/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/tor.html b/articles/tor.html index 1eed56a..e73f3df 100644 --- a/articles/tor.html +++ b/articles/tor.html @@ -1,21 +1,21 @@ - + Spyware Watchdog

    Tor Browser

    -

    Back to catalog

    - TOR browser logo +

    Back to catalog

    + TOR browser logo

    Tor is free software and an open network that helps you defend against traffic analysis, a form of network surveillance that threatens personal freedom and privacy, confidential business activities and relationships, and state security.[1]

    Spyware Level: Not Spyware

    -The Tor browser is a privacy focused web browser that is used to access the internet either normally or through the Tor Network. +The Tor browser is a privacy focused web browser that is used to access the internet either normally or through the Tor Network. Connections through the Tor network are much more private than normal connections as you do not have an IP address that is associated with you. While spyware services can tell that you are connecting from the Tor network, their ability to identify and profile you is greatly reduced. Tor browser is Not Spyware and is the best web browser to use for privacy. @@ -42,10 +42,10 @@ this over the Tor network... so while it's definitely "phoning home", it's doing This article was last edited on 11/20/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - + CC0 Liscence + - + diff --git a/articles/ungoogled_chromium.html b/articles/ungoogled_chromium.html index 62dae6f..b8c4e2e 100644 --- a/articles/ungoogled_chromium.html +++ b/articles/ungoogled_chromium.html @@ -1,7 +1,7 @@ - + Spyware Watchdog @@ -9,18 +9,18 @@

    Ungoogled-Chromium

    -

    Back to catalog

    - Ungoogled-Chromium logo +

    Back to catalog

    + Ungoogled-Chromium logo

    -Ungoogled-chromium is Google Chromium, sans integration with Google. It also features some tweaks to enhance privacy, +Ungoogled-chromium is Google Chromium, sans integration with Google. It also features some tweaks to enhance privacy, control, and transparency (almost all of which require manual activation or enabling).[1]

    Spyware Level: Not Spyware

    -Ungoogled-chromium is a fork of Chrome that has all of Google's spyware removed. It was tested with MITMproxy and makes +Ungoogled-chromium is a fork of Chrome that has all of Google's spyware removed. It was tested with MITMproxy and makes no unsolicited requests, and is therefore not spyware. Ungoogled-chromium is the highest-rated -browser based on Google Chrome, and is probably one of the best choices if you can compile it. -Otherwise configuring Iridium to a sufficient privacy standard might be a good choice if you are +browser based on Google Chrome, and is probably one of the best choices if you can compile it. +Otherwise configuring Iridium to a sufficient privacy standard might be a good choice if you are looking for a Chrome-based browser to switch too without taking the time to compile any software.

    @@ -36,10 +36,10 @@ looking for a Chrome-based browser to switch too without taking the time to comp This article was last edited on 11/1/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - + CC0 Liscence + - + diff --git a/articles/unity.html b/articles/unity.html index a93ef78..488af69 100644 --- a/articles/unity.html +++ b/articles/unity.html @@ -1,14 +1,14 @@ - + Spyware Watchdog

    Unity

    -

    Back to catalog

    - unity Logo +

    Back to catalog

    + unity Logo

    Unity is a game engine developed by Unity Technologies SF.

    @@ -18,11 +18,11 @@ Unity collects user information and uses it in a dubious and malicious way and i

    Unity Editor collects user activity

    - Some users have found that the Unity Editor, left idle for some time, will elicit an email from Unity support + Some users have found that the Unity Editor, left idle for some time, will elicit an email from Unity support asking for a reason for their inactivity.[1] Unity support have also been known to contact developers suspected to be earning over the $100,000 revenue limit with the gratis Unity Editor (against Unity EULA) to pressure them into purchasing a Pro license. Several of these developers were not active on services, or did not even have accounts on said services, which Unity support claimed to have "discovered" their projects.[2] Additionally, Unity Editor analytics can no longer be disabled unless users purchase the Pro edition.[3]

    - unity data collection UI + unity data collection UI

    Unity games and system data collection

    Many Unity games have been found to report telemetry at first launch and have telemetry enabled by default, sometimes with no option to disable it. With no way to disable data collection, players are left to blacklist the game through their firewall.[4] Exported Unity projects collect anonymized statistics about a system’s hardware configuration to monitor and report to developers which type of devices are used to play their Unity engine games. [5] @@ -59,8 +59,8 @@ Unity collects user information and uses it in a dubious and malicious way and i This article was created on 8/24/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/utorrent.html b/articles/utorrent.html index 4cdc02b..656311d 100644 --- a/articles/utorrent.html +++ b/articles/utorrent.html @@ -1,14 +1,14 @@ - + Spyware Watchdog

    uTorrent

    -

    Back to catalog

    - utorrent logo +

    Back to catalog

    + utorrent logo

    uTorrent is a proprietary adware BitTorrent client owned and developed by BitTorrent, Inc.

    @@ -35,9 +35,9 @@ should be cited like this: [1]. This article was last edited on 8/3/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - + diff --git a/articles/vivaldi.html b/articles/vivaldi.html index 0d5fa42..1ca6351 100644 --- a/articles/vivaldi.html +++ b/articles/vivaldi.html @@ -1,20 +1,20 @@ - + Spyware Watchdog

    Vivaldi

    -

    Back to catalog

    - vivaldi logo +

    Back to catalog

    + vivaldi logo

    Vivaldi is a feature-full, customizable web browser made by some of Opera's old developers (since they were dissatisfied with the direction Opera was heading). But how does it look in terms of privacy? Versions 1.15 and 2.0 were tested to make this article. Program used for testing requests: Mitmproxy.

    Spyware Level: Medium

    - Vivaldi makes a bunch of requests to Google upon startup and after (malware protection requests can be turned off, but extension updates don't appear to?). Phones home every 24 hours with a unique ID using Piwik, an analytics service. Anti-privacy Bing as the default search engine. Not fully open source. Connects to an analytics platform that spies on its users. + Vivaldi makes a bunch of requests to Google upon startup and after (malware protection requests can be turned off, but extension updates don't appear to?). Phones home every 24 hours with a unique ID using Piwik, an analytics service. Anti-privacy Bing as the default search engine. Not fully open source. Connects to an analytics platform that spies on its users.

    Vivaldi's developers do not respect your privacy

    @@ -28,19 +28,19 @@ are not developers you can trust. Below is an anti

    Addon updates


    -
    +
    These are the Chrome webstore requests, supposed to update your extensions. But with a new Vivaldi install, you don't have any, so they only accomplish spying. And the first request includes "x-googleupdate-appid" which is most likely uniquely identifying. Can't be disabled.

    Google Safe Browsing

    -
    -
    +
    +
    Vivaldi is downloading the lists for Google's Malware and Phishing protection, which is enabled by default, but can be disabled from the Settings menu.

    - +

    Phoning home

    - From Vivaldi's privacy policy: "When you install Vivaldi browser ('Vivaldi'), each installation profile is assigned a unique user ID that is stored on your computer. Vivaldi will send a message using HTTPS directly to our servers located in Iceland every 24 hours containing this ID, version, cpu architecture, screen resolution and time since last message. We anonymize the IP address of Vivaldi users by removing the last octet of the IP address from your Vivaldi client then we store the resolved approximate location after using a local geoip lookup. The purpose of this collection is to determine the total number of active users and their geographical distribution.". So they (claim to) delete "the last octet" of your IP. How generous of them. This is the full request: + From Vivaldi's privacy policy: "When you install Vivaldi browser ('Vivaldi'), each installation profile is assigned a unique user ID that is stored on your computer. Vivaldi will send a message using HTTPS directly to our servers located in Iceland every 24 hours containing this ID, version, cpu architecture, screen resolution and time since last message. We anonymize the IP address of Vivaldi users by removing the last octet of the IP address from your Vivaldi client then we store the resolved approximate location after using a local geoip lookup. The purpose of this collection is to determine the total number of active users and their geographical distribution.". So they (claim to) delete "the last octet" of your IP. How generous of them. This is the full request:

    Anti-privacy search engine by default

    @@ -61,12 +61,12 @@ are not developers you can trust. Below is an anti Get Matomo [web.archive.org] [archive.is]
    - + 2. Return of Vivaldi spyware [web.archive.org] [archive.li]
    - + 3. spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/articles/vlc.html b/articles/vlc.html index 09bed52..c6d4730 100644 --- a/articles/vlc.html +++ b/articles/vlc.html @@ -1,30 +1,30 @@ - + Spyware Watchdog

    VLC Media Player

    -

    Back to catalog

    - VLC Media Player Logo +

    Back to catalog

    + VLC Media Player Logo

    -VLC is a free and open source cross-platform multimedia player and framework that plays most multimedia files as well as DVDs, Audio CDs, VCDs, and various streaming protocols. +VLC is a free and open source cross-platform multimedia player and framework that plays most multimedia files as well as DVDs, Audio CDs, VCDs, and various streaming protocols.

    Spyware Level: Not Spyware

    -VLC Media Player is not spyware, but it does have notable features in it that could be possible forms of spyware. However all of these features are opt-in, and the software explicitly informs the user about the risks associated with these features. VLC is a model program that has convenience features in it that could compromise privacy, while still respecting user privacy. +VLC Media Player is not spyware, but it does have notable features in it that could be possible forms of spyware. However all of these features are opt-in, and the software explicitly informs the user about the risks associated with these features. VLC is a model program that has convenience features in it that could compromise privacy, while still respecting user privacy.

    VLC Media Player has been distributed with spyware programs by third parties

    -While VLC's creators do not distribute their player with spyware, it has been distributed with spyware[1] by other parties. If you download VLC Media Player, make sure you download it from VideoLAN's web site. +While VLC's creators do not distribute their player with spyware, it has been distributed with spyware[1] by other parties. If you download VLC Media Player, make sure you download it from VideoLAN's web site.

    VLC Media Player contains some opt-in spyware features

    -VLC Media player searches through online databases to find complete album covers / metadata for songs. This implicitly means that it sends requests to external servers, and those servers could log information about specific users music libraries. VLC Media player also has a self-updater, however this does not update without the user's consent, and while there is no precedent for the developers to add spyware in its updates, it's still notable. This is the notice that users are presented with when first installing VLC, which adequately explains the implications of these features. The only improvement would be to not have them checked off by default. +VLC Media player searches through online databases to find complete album covers / metadata for songs. This implicitly means that it sends requests to external servers, and those servers could log information about specific users music libraries. VLC Media player also has a self-updater, however this does not update without the user's consent, and while there is no precedent for the developers to add spyware in its updates, it's still notable. This is the notice that users are presented with when first installing VLC, which adequately explains the implications of these features. The only improvement would be to not have them checked off by default.

    - privacy policy + privacy policy

    Sources

    @@ -38,8 +38,8 @@ VLC Media player searches through online databases to find complete album covers This article was last edited on 7/30/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - \ No newline at end of file + diff --git a/articles/waterfox.html b/articles/waterfox.html index fae2fe8..7867dc4 100644 --- a/articles/waterfox.html +++ b/articles/waterfox.html @@ -1,49 +1,49 @@ - + Spyware Watchdog

    Waterfox

    -

    Back to catalog

    - Waterfox Logo +

    Back to catalog

    + Waterfox Logo

    -Waterfox is a web browser that is a fork of Firefox. +Waterfox is a web browser that is a fork of Firefox.

    Spyware Level: High

    -Waterfox is a fork of Firefox that claims to be more private and secure -than Firefox. However, Waterfox contains telemetry and shares +Waterfox is a fork of Firefox that claims to be more private and secure +than Firefox. However, Waterfox contains telemetry and shares information about you with Mozilla, and has other spyware features.

    Waterfox connects to spyware services when it is first run

    If you start up Waterfox for the first time, it will make 109 requests[5] to several spyware platforms, most notably Google Analytics, and Mozilla online services like its Geolocation service, and several other Mozilla services, as - well as Waterfox's own update service. You can look at a list of these requests - here or a on mirror here. + well as Waterfox's own update service. You can look at a list of these requests + here or a on mirror here.

    Waterfox has a communication problem

    There has been some controversy over Waterfox's privacy policy[1]. - At the time of writing, it claims that Waterfox sends "Webpage data - to Google's SafeBrowsing service," meaning that at one point, both Google -and Waterfox were spying on all of your internet activity. However, + At the time of writing, it claims that Waterfox sends "Webpage data + to Google's SafeBrowsing service," meaning that at one point, both Google +and Waterfox were spying on all of your internet activity. However, according to this reddit thread[2], - this is no longer true: therefore, Waterfox's privacy policy does not - necessarily reflect what information the browser currently collects. - The lack of detail and clarity in the privacy policy is also very - concerning. For example, in the abovementioned section titled "Webpage - data to Google's SafeBrowsing service," there are links to a Firefox - Knowledge Base article and Google's privacy policy, neither of which - actually explain what data is sent by Waterfox to Google. If this were - still accurate, it would have some serious privacy implications (and - would certainly bump up the spyware rating of this program). An - inaccurate and outdated privacy policy - i.e. one that does not - correctly explain what information is being shared - is - a serious red flag for any privacy-conscious user. + this is no longer true: therefore, Waterfox's privacy policy does not + necessarily reflect what information the browser currently collects. + The lack of detail and clarity in the privacy policy is also very + concerning. For example, in the abovementioned section titled "Webpage + data to Google's SafeBrowsing service," there are links to a Firefox + Knowledge Base article and Google's privacy policy, neither of which + actually explain what data is sent by Waterfox to Google. If this were + still accurate, it would have some serious privacy implications (and + would certainly bump up the spyware rating of this program). An + inaccurate and outdated privacy policy - i.e. one that does not + correctly explain what information is being shared - is + a serious red flag for any privacy-conscious user.

    Waterfox "phones home" with information about your computer whenever you start it up

    @@ -60,10 +60,10 @@ Waterfox shares this information with Mozilla and will collect this information

    Waterfox offers spyware search engines to its users and uses Bing as its default search engine

    -By default Waterfox is using the spyware search engine Bing. -Why would a privacy-based Web Browser offer this search engine by default? The other offered search engines are not much better- we have the option of searching with Google, -which also logs your internet searches, and Ecosia, which also logs your internet searches (but it gives them to Bing). Luckily there are some more private search engines offered, -like StartPage and DuckDuckGo. What is concerning is the additude that the developer of waterfox has towards these spyware search engines: +By default Waterfox is using the spyware search engine Bing. +Why would a privacy-based Web Browser offer this search engine by default? The other offered search engines are not much better- we have the option of searching with Google, +which also logs your internet searches, and Ecosia, which also logs your internet searches (but it gives them to Bing). Luckily there are some more private search engines offered, +like StartPage and DuckDuckGo. What is concerning is the additude that the developer of waterfox has towards these spyware search engines:

    "Bing is actually quite good for privacy as well (let's not forget Mozilla even suggested them as a more privacy focused search back in 2009)."[3] @@ -73,9 +73,9 @@ It's very clear that while the browser advertizes itself as very privacy focused

    Waterfox sends all website notifications through Mozilla's servers

    -If you enable notifications on a website, all of those messages will -be sent through Mozilla's servers. According to Waterfox's privacy policy[1], -Mozilla cannot see the content of said messages. However, Mozilla will +If you enable notifications on a website, all of those messages will +be sent through Mozilla's servers. According to Waterfox's privacy policy[1], +Mozilla cannot see the content of said messages. However, Mozilla will receive the following information:

      @@ -85,61 +85,61 @@ receive the following information:
    • Senders (which may include specific website providers)

    -So, Mozilla can see who is sending notifications, when these notifications -are being sent, how many notifications are sent, and how many websites you -have enabled notifications on. Waterfox collects all of the above, and +So, Mozilla can see who is sending notifications, when these notifications +are being sent, how many notifications are sent, and how many websites you +have enabled notifications on. Waterfox collects all of the above, and additionally sees your IP address for each notification sent.

    Waterfox is integrated into the "Firefox Accounts" spyware platform

    -The "Firefox Accounts" platform allows you to sync a lot of sensitive -information, such as your internet history, across all of your devices. +The "Firefox Accounts" platform allows you to sync a lot of sensitive +information, such as your internet history, across all of your devices. This is, of course, all being stored on Mozilla's servers.[4] -This feature +This feature is opt-in spyware, but it should still be mentioned. -If you don't want your internet history to be uploaded to Mozilla servers, +If you don't want your internet history to be uploaded to Mozilla servers, don't use this feature.

    Waterfox is self updating software

    Self updates are a spyware feature since they are usually ways for the developer of a program to put spyware into their software without presenting it in a prominent way -where the user can understand what they are giving up when they download the update. Given Waterfox's bad communication, this is especially likely to happen. +where the user can understand what they are giving up when they download the update. Given Waterfox's bad communication, this is especially likely to happen.

    Sources

    - + 1. Improve security for users everywhere [web.archive.org] [archive.li]
    - + 2. What happened to Waterfox's devotion to user privacy? [web.archive.org] [archive.li]
    - + 3. Waterfox and Ecosia - Privacy Concerns [web.archive.org] [archive.is]
    - + 4. Access Mozilla Services with Firefox Account [archive.li]
    - + 5. How to choose a browser for everyday use? [web.archive.org] [archive.is]
    - +

    This article was last edited on 6/2/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - \ No newline at end of file + CC0 Liscence + diff --git a/articles/webdiscover.html b/articles/webdiscover.html index 39d4dfd..f8f8737 100644 --- a/articles/webdiscover.html +++ b/articles/webdiscover.html @@ -1,34 +1,34 @@ - + Spyware Watchdog

    WebDiscover

    -

    Back to catalog

    - Webdiscover logo +

    Back to catalog

    + Webdiscover logo

    WebDiscover is a web browser made by WebDiscover Media.

    Spyware Level: EXTREMELY HIGH

    -WebDiscover uses the spyware search engine Yahoo as it's default search engnine, but on it's website it says it uses the spyware -search engine Bing as it's default search engine. It is hard to review since every time I run it, -it messes up MITMproxy so I can't see what it's doing. The privacy policy explains that it collects a large amount of personal information from it's users, so it is at least not a secret that this browser is spyware. This program acts in a very suspicious way and +WebDiscover uses the spyware search engine Yahoo as it's default search engnine, but on it's website it says it uses the spyware +search engine Bing as it's default search engine. It is hard to review since every time I run it, +it messes up MITMproxy so I can't see what it's doing. The privacy policy explains that it collects a large amount of personal information from it's users, so it is at least not a secret that this browser is spyware. This program acts in a very suspicious way and the privacy policy contains a lot of language in it about the use of the information it collects that elevates it to a uniquely bad stance on user privacy and use of user information, so I would recommend staying far away from it.

    WebDiscover installs itself onto users computers through installer bundling

    - WebDiscover is mostly installed through other programs as an opt-out. This means that most users did not want to install this browser, and + WebDiscover is mostly installed through other programs as an opt-out. This means that most users did not want to install this browser, and were tricked into doing it by other software's installer programs. For example[2]:

    - [1] [2] [3] [4] - [5] [6] [7] [8] - [9] [10] + [1] [2] [3] [4] + [5] [6] [7] [8] + [9] [10]

    WebDiscover collects a large amount of information about its users

    @@ -50,8 +50,8 @@ more concerning: "We may collect Personal Data and Anonymous Data when you download the Browser. We may also collect Personal Data when you send us information or communications directly. “Personal Data” means data that allows someone to identify or contact you including, without limitation, your name, physical address, electronic mail (email) address, phone number, and credit card information (collectively, your “Personal Data”) for the purposes of recording the transaction when you engage in activities on the Site or through use of the Browser." [1]

    - So, WebDiscover will profile your computer, and WebDiscover Media will use every oppotunity they get to collect - information about you. + So, WebDiscover will profile your computer, and WebDiscover Media will use every oppotunity they get to collect + information about you.

    WebDiscover sells information about it's users

    @@ -61,11 +61,11 @@ more concerning: "We may share Anonymous Data with selected third parties and business partners..."

    - Confirming that the information that WebDiscover collects about you will be sold to advertisers. + Confirming that the information that WebDiscover collects about you will be sold to advertisers.

    WebDiscover uses your personal information in a malcious way

    - WebDiscover sells your information to advertising companies that will send you junk mail seperately from + WebDiscover sells your information to advertising companies that will send you junk mail seperately from WebDiscover's discretion- it also DOES NOT comply with requests to stop contact, and requires you to seperately request each company that it has sold your information to, to stop contacting you. I didn't check if they would comply with those requests or not. The following quotes from the privacy policy should explain this: @@ -107,9 +107,9 @@ more concerning: This article was last edited on 8/4/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - + diff --git a/articles/yahoo.html b/articles/yahoo.html index a2c7506..1be8975 100644 --- a/articles/yahoo.html +++ b/articles/yahoo.html @@ -1,20 +1,20 @@ - + Spyware Watchdog

    Yahoo! Search

    -

    Back to catalog

    - Yahoo Logo +

    Back to catalog

    + Yahoo Logo

    -Yahoo! search is a search engine made by Yahoo. +Yahoo! search is a search engine made by Yahoo.

    Spyware Level: EXTREMELY HIGH

    -Yahoo! search is integrated into the Oath spyware ecosystem, which is a merger between Yahoo and AOL. When you use Yahoo! Search, your +Yahoo! search is integrated into the Oath spyware ecosystem, which is a merger between Yahoo and AOL. When you use Yahoo! Search, your internet history is sent to Oath, and Oath will track you across the internet. This tracking is then sold to advertisers. The Oath Privacy Policy makes it difficult to know which parts of it refer to Yahoo! search, and which parts of it refer to other Oath services, so it's difficult to quantify the extent of data collection done by Yahoo! search specifically. (combining privacy policies is a common tactic to obfusicate privacy information)

    @@ -27,8 +27,8 @@ Yahoo's privacy policy is actually called the "Oath" privacy policy, so it's not is integrated into the "Yahoo Account" spyware platform, which shares all of the information it collects with it's parent company, Oath, including your browsing history. When you have an account connected to Oath, which would be an AOL account or a Yahoo account, your internet history is colleted and associated with a unique user identity obtained through browser fingerprinting.[1]

    - It's important to notice that this information will be collected whether you are signed in or not. The Oath Privacy Policy makes it clear that - they fingerprint your computer and so can uniqley identify you no matter what. What is probably happening is that Yahoo will fingerprint your + It's important to notice that this information will be collected whether you are signed in or not. The Oath Privacy Policy makes it clear that + they fingerprint your computer and so can uniqley identify you no matter what. What is probably happening is that Yahoo will fingerprint your use of it's services, so that you will be tracked through your usage of them, whether you have an account or not.

    Tracking users

    @@ -67,9 +67,9 @@ is integrated into the "Yahoo Account" spyware platform, which shares all of the This article was last edited on 8/3/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - + diff --git a/articles/youtube.html b/articles/youtube.html index ee7192f..0113d05 100644 --- a/articles/youtube.html +++ b/articles/youtube.html @@ -1,16 +1,16 @@ - + Spyware Watchdog

    YouTube

    -

    Back to catalog

    - youtube logo +

    Back to catalog

    + youtube logo

    -YouTube is an American video-sharing website headquartered in San Bruno, California. It is owned by Google. +YouTube is an American video-sharing website headquartered in San Bruno, California. It is owned by Google.

    Spyware Level: EXTREMELY HIGH

    @@ -24,12 +24,12 @@ YouTube is integrated with Google’s suite of advertising technologies and serv You can find that Google operates tracking domains active on the Youtube page, “pubads.g.doubleclick.net” and “googleads.g.doubleclick.net” in addition to three cookies requested by *.youtube.com. Youtube serves a particular tracking cookie, “VISITOR_INFO1_LIVE” in order to continue monitoring users that have signed out of their account and to continue serving recommended videos related to that session. Of course, while you are logged in to any Google service, Google can track you with absolute precision. [3]

    -The Youtube app for android additionally uses the Google Firebase Analytics tracker which provides methods for logging events and setting user properties. The full app report finds that the Youtube app employs three trackers and requires 33 permission, 14 of which are considered dangerous such as access to the the user’s location and contacts. +The Youtube app for android additionally uses the Google Firebase Analytics tracker which provides methods for logging events and setting user properties. The full app report finds that the Youtube app employs three trackers and requires 33 permission, 14 of which are considered dangerous such as access to the the user’s location and contacts. [4][5]

    Taking down more private alternatives

    - For some time, a popular Youtube tracking sanitizer, Hooktube.com was a useful resource for accessing Youtube videos without being subjected to Google’s surveillance techniques in full. Hooktube was also useful for circumventing region blocking. However, Google, not to be stopped in their spying endeavors, served Hooktube’s operators with a cease and desist over their use of the Youtube API. Hooktube was effectively forced to use Youtube’s official embedded player if they wished to continue to operate, nullifying Hooktube as a viable means for privately viewing Youtube content.[6][7] + For some time, a popular Youtube tracking sanitizer, Hooktube.com was a useful resource for accessing Youtube videos without being subjected to Google’s surveillance techniques in full. Hooktube was also useful for circumventing region blocking. However, Google, not to be stopped in their spying endeavors, served Hooktube’s operators with a cease and desist over their use of the Youtube API. Hooktube was effectively forced to use Youtube’s official embedded player if they wished to continue to operate, nullifying Hooktube as a viable means for privately viewing Youtube content.[6][7]

    Youtube Requires non-free JavaScript

    @@ -88,9 +88,9 @@ The Youtube app for android additionally uses the Google Firebase Analytics trac This article was laste updated on 12/12/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence - + diff --git a/contact.html b/contact.html index ceccd76..13c9688 100644 --- a/contact.html +++ b/contact.html @@ -1,7 +1,7 @@ - + Spyware Watchdog diff --git a/extra.html b/extra.html index a696d71..f268d13 100644 --- a/extra.html +++ b/extra.html @@ -1,7 +1,7 @@ - + Spyware Watchdog @@ -15,8 +15,8 @@ These pins were created by fans of the site for linking to pages on the site. They're pretty cool, so I thought I would host them. You can download the ones you want for your website here:

    - Discord? No Way! - Online Spyware Watchdog + Discord? No Way! + Online Spyware Watchdog

    You can also visit the creator's websites:
    https://floppys-lounge.neocities.org/
    diff --git a/guides/articles.html b/guides/articles.html index f517bcd..7b81b94 100644 --- a/guides/articles.html +++ b/guides/articles.html @@ -1,7 +1,7 @@ - + Spyware Watchdog @@ -15,23 +15,23 @@ of writing new articles for writers who don't know about things that can make the articles easier to write and more accurate.

    - +

    Common Privacy Policy Pitfalls

    - +

    - Lots of software today contains a privacy policy - and a great starting point for understanding how a program invades your privacy + Lots of software today contains a privacy policy - and a great starting point for understanding how a program invades your privacy is to read the privacy policy so that you know what kinds of things the developers admit that the software does. However it is a - big mistake to take a privacy policy by its word, as many privacy policies are obfusicated, omit information, or lie. There are + big mistake to take a privacy policy by its word, as many privacy policies are obfusicated, omit information, or lie. There are several common pitfalls that most privacy policies are guilty of:

    - +

    Organization-Wide Privacy Policies

    - +

    This is a common obfusication tactic that many organizations use when writing privacy policies (if you want to give them the - benefit of the doubt, it could be laziness). Instead of writing a privacy policy that explains what kind of information is + benefit of the doubt, it could be laziness). Instead of writing a privacy policy that explains what kind of information is being collected about you for each individual software, a privacy policy is written for all of the software that that company - produces and operates. This obviously makes it very hard to find out what one particular software does, and it means that + produces and operates. This obviously makes it very hard to find out what one particular software does, and it means that understanding the privacy policy and how it applies to the software you are trying to find information about will take longer and will rely on more speculation because of how uncertain the information is.

    @@ -40,44 +40,44 @@

    This category is where it's more difficult: programs that are not spyware do not have privacy policies- they don't need them if they - dont violate your privacy. This is OK but there is a category of programs that do not contain privacy policies but still have privacy + dont violate your privacy. This is OK but there is a category of programs that do not contain privacy policies but still have privacy concerns. You can't take a developers word that their program is not spyware: you have to actually run the program and inspect any kind of packets it sends out and what features it has. A lot of people have a lot of diffrent ideas about what is and isnt spyware- so you - might have a developer who thinks that phoning home, etc, isn't a privacy issue that they need to make their users aware of. + might have a developer who thinks that phoning home, etc, isn't a privacy issue that they need to make their users aware of.

    - +

    Outdated/Inaccruate Privacy Policies

    - +

    Some privacy policies are very outdated and report privacy violations in the program that dont exist anymore, or fail to report new privacy - violations, just because the developer of the software cannot be bothered to keep his privacy policy up to date. In this case such a + violations, just because the developer of the software cannot be bothered to keep his privacy policy up to date. In this case such a privacy policy should be heavily criticized because it shows that the developer cannot properly communicate to his users the privacy implications - of installing his software. So it's really like rolling the dice... who knows what the program will actually do? It's like not having a + of installing his software. So it's really like rolling the dice... who knows what the program will actually do? It's like not having a privacy policy at all, except worse, because it can fool people into thinking that the program does things that it doesn't do.

    Ultimately the take away is that privacy policies are meaningful, but they also can't be the only thing to prove a program's innocence. - You have to verify all of the claims made on a privacy policy, and if you can't, you have to doubt them. When a privacy policy is not + You have to verify all of the claims made on a privacy policy, and if you can't, you have to doubt them. When a privacy policy is not enough to make a final decision, you need to use other methods of finding privacy issues in the program.

    - +

    Checking a program with MITMproxy

    - +

    Ultimately the only way to prove and discover what a program is actually doing to invade your privacy is to look at what kinds of - network activity it is doing when you run it. A great guide is written about how you can check a program's network activity with - MITMproxy to discover spyware by a writer for this site who has written many of the articles on here. It's linked right here: + network activity it is doing when you run it. A great guide is written about how you can check a program's network activity with + MITMproxy to discover spyware by a writer for this site who has written many of the articles on here. It's linked right here:

    Lifting the veil - how to test browsers for spyware.

    Citing Sources

    - +

    Sources should be cited at the bottom of the article as a list of links, with links to archived versions of these links next to them. - There should be at least two archive links, from two diffrent archiving services, but ideally you should provide alterante links to as many + There should be at least two archive links, from two diffrent archiving services, but ideally you should provide alterante links to as many archives as you can. If you can't find an archived version of the page you want to save on a service that allows you to submit a link for - archiving, you should submit it and use that. That being said, there is a useful online service that lets you find archived links + archiving, you should submit it and use that. That being said, there is a useful online service that lets you find archived links by searching multiple archive sources for links. http://timetravel.mementoweb.org/ will usually automate the process of finding all of these archive links and make citing sources much easier- but it's still important to update web.archive.org and archive.is copies of these links. diff --git a/guides/classify.html b/guides/classify.html index 76e5897..ed0aadd 100644 --- a/guides/classify.html +++ b/guides/classify.html @@ -1,7 +1,7 @@ - + Spyware Watchdog @@ -13,8 +13,8 @@ This guide specifies how the articles on this website classify programs as spyware, and assign scores. Programs given an amount of points for every spyware feature that the program contains and every spyware criteria that the program meets. It is important to note that not every feature and critera is proof that a program is spyware, but proof that the program could be spywre. Since we are holding all programs in contempt, programs that might not be spyware, but cannot be proven to not be spyware, are given spyware scores above 0 (not spyware) until they can be proven to not be spyware. If you want to amend/change this document, please follow the instructions in the FAQ.

    -This guide is written in a format where the name of each spyware feature or critera and the number of points given from containing said feature or meeting said critera is written in a header, and then a short description explaining why this feature or criteria is a spyware feature or criteria; and justifying the score given. There are diffrent severities of data collection or potential data collection, so it is important to outline how many points should be given for each type of feature. This document starts out by explaining what types of spyware criterias or features are given what scores, and then lists actual features and criterias and their classifications. -

    +This guide is written in a format where the name of each spyware feature or critera and the number of points given from containing said feature or meeting said critera is written in a header, and then a short description explaining why this feature or criteria is a spyware feature or criteria; and justifying the score given. There are diffrent severities of data collection or potential data collection, so it is important to outline how many points should be given for each type of feature. This document starts out by explaining what types of spyware criterias or features are given what scores, and then lists actual features and criterias and their classifications. +

    Types of Spyware Features and Criterias and their scores

    Low Potential For Data Collection - 1

    @@ -26,7 +26,7 @@ The Spyware Feature or Criteria does not prove that data collection is happening

    High Potential For Data Collection - 3

    -The Spyware Feature or Criteria does not prove that data collection is happening, but proves that we cannot prove that data collection is not happening. The creators of the software have created spyware programs in the past and/or there is evidence that there may be or is a data collection feature inside of their program, but they have claimed that their software is not using this feature. An example is a known data collection feature in a program that the creators of the program have claimed is no longer active, but have not proven that said feature is no longer active. Another example is software creators who do not claim to include spyware features in their programs, but have failed to disclose spyware features in past programs that they have created. +The Spyware Feature or Criteria does not prove that data collection is happening, but proves that we cannot prove that data collection is not happening. The creators of the software have created spyware programs in the past and/or there is evidence that there may be or is a data collection feature inside of their program, but they have claimed that their software is not using this feature. An example is a known data collection feature in a program that the creators of the program have claimed is no longer active, but have not proven that said feature is no longer active. Another example is software creators who do not claim to include spyware features in their programs, but have failed to disclose spyware features in past programs that they have created.

    Normal Potential Amount of Possible Data Collection - 3

    @@ -34,7 +34,7 @@ The Spyware Feature or Criteria proves that data collection is possible, in the

    High Potential Amount of Possible Data Collection - 10

    -The Spyware Feature or Criteria proves that the program may be accessing an elevated amount of features that normal programs are unable to access. The program may require or ask the user to run it as a superuser (i.e. the program must be run as "root" on Unix-based systems and as "Administrator" on Windows-based systems). The program may install a kernel module or otherwise run in security levels higher than userspace, such as "ring 0". +The Spyware Feature or Criteria proves that the program may be accessing an elevated amount of features that normal programs are unable to access. The program may require or ask the user to run it as a superuser (i.e. the program must be run as "root" on Unix-based systems and as "Administrator" on Windows-based systems). The program may install a kernel module or otherwise run in security levels higher than userspace, such as "ring 0".

    Confirmed Low Amount of Data Collection - 5

    @@ -46,7 +46,7 @@ The Spyware Feature or Criteria proves that the program is collecting an substan

    Confirmed High Amount of Data Collection - 25

    -The Spyware Feature or Criteria proves that the program is collecting a high amount of information on the user. This information can include but is not limited to keylogging, screen capture or any form of screen recording, chat logs, search history, webcam access, filesystem scanning and/or profiling, and recording information from the microphone. +The Spyware Feature or Criteria proves that the program is collecting a high amount of information on the user. This information can include but is not limited to keylogging, screen capture or any form of screen recording, chat logs, search history, webcam access, filesystem scanning and/or profiling, and recording information from the microphone.

    - \ No newline at end of file + diff --git a/guides/faq.html b/guides/faq.html index ec68778..17419d1 100644 --- a/guides/faq.html +++ b/guides/faq.html @@ -1,7 +1,7 @@ - + Spyware Watchdog @@ -16,7 +16,7 @@ Spyware is a classification of programs which collect information about their us

    At a glance, this website will give spyware programs a spyware rating and then a summary of why it has that rating, followed by a detailed rationale for giving the program that rating. The ratings that are present on the website right now are:

    -
    Spyware Feature about:config flag
    +
    @@ -64,7 +64,7 @@ Articles can be submitted by emailing me at spyware@aaathats To be able to know if a program has absolutely no spyware features, you have to be able to compile it from source- it does not need to meet any of the other requirements that it would need to meet to be called "Free Software" or "Open Source Software" according to the definitions of the FSF or OSI. So, I don't like to use the words "Free Software" or "Open Source Software" on my website because it implies that a program needs to meet all of the requirements set by those organizations to be called "Free" or "Open" for spyware concerns to be alleviated. If you can compile it from source, that is the only thing needed.

    -Although, I don't want to say that just because a program allows you to compile it from source, it isn't spyware. It just ensures that you can be aware of all spyware features, and that there is no spyware hidden inside of a binary blob. Also, programs that do not distribute their sources can be analyzed even though they are only dstributed as binaries, which is in fact how we know about some of the more underhanded spyware features that Steam and Discord have, for example. +Although, I don't want to say that just because a program allows you to compile it from source, it isn't spyware. It just ensures that you can be aware of all spyware features, and that there is no spyware hidden inside of a binary blob. Also, programs that do not distribute their sources can be analyzed even though they are only dstributed as binaries, which is in fact how we know about some of the more underhanded spyware features that Steam and Discord have, for example.

    diff --git a/guides/firefox.html b/guides/firefox.html index 6e1ed15..10a8cb1 100644 --- a/guides/firefox.html +++ b/guides/firefox.html @@ -1,27 +1,27 @@ - + Spyware Watchdog - +

    Mozilla Firefox Spyware Mitigation Guide

    Back to Home
    Back to Firefox

    - +

    After configuring Mozilla Firefox according to this guide it's rating changes like so:

    Spyware Rating: High => Not Spyware

    Before beginning this guide it is important that you try and cross-reference it with other guides, - to see which prespective on this topic is the best way to do it for you. At the bottom of the page are links + to see which prespective on this topic is the best way to do it for you. At the bottom of the page are links to other guides and projects like this one. You should strongly consider this as - you may find other guides more useful than this one. + you may find other guides more useful than this one.

    Mozilla Firefox has a huge amount of spyware features, but they all can be disabled by using predefined profile settings. @@ -32,8 +32,8 @@

  • Exit.
    • Then open your Firefox user profiles directory. It should be located at: - -
    Spyware Rating Category Rationale
    + +
    @@ -204,11 +204,11 @@

    - If you want to disable OCSP as well, you should also add this to your user.js. These settings are seperated + If you want to disable OCSP as well, you should also add this to your user.js. These settings are seperated because while OCSP is a privacy breach it is also a security feature, and so whether to have it on or off should be thought about before continuing. You can read about OCSP here: https://scotthelme.co.uk/revocation-is-broken/ - [web.archive.org] . The problem is, that OCSP is a form of phoning home, and you might not want to make those requests. + [web.archive.org] . The problem is, that OCSP is a form of phoning home, and you might not want to make those requests.

    user_pref("security.ssl.enable_ocsp_stapling", false);
    @@ -216,8 +216,8 @@ user_pref("security.OCSP.require", false);

    - With this installation method, if you change any of user.js settings through about:config or Firefox preferences dialogs, - they will be reset to the user.js defined values after you restart Firefox. + With this installation method, if you change any of user.js settings through about:config or Firefox preferences dialogs, + they will be reset to the user.js defined values after you restart Firefox. This makes sure they're always back to secure defaults when starting the browser. At the end you need to delete several default plugins in Firefox directory at \Mozilla Firefox\browser\features\ that can violate privacy:

    @@ -238,11 +238,11 @@

    Other Guides

    -These are other guides and projects to help protect your privacy using Firefox. It's important to look at +These are other guides and projects to help protect your privacy using Firefox. It's important to look at other prespectives instead of reading JUST this guide. So you should be comparing all of the guides that you can find to hear everyone's ideas about how this should be done, before you -finish setting Firefox up. Librefox is less of a guide and more of a project and series of tools and settings -you can download to help you make Firefox private. +finish setting Firefox up. Librefox is less of a guide and more of a project and series of tools and settings +you can download to help you make Firefox private.

    Firefox: Privacy Related "about:config" Tweaks [web.archive.org] @@ -255,14 +255,14 @@ you can download to help you make Firefox private. [archive.is]

    Sources

    -

    +

    1. ghacksuserjs/ghacks-user.js [web.archive.org] [archive.is]
    - +

    @@ -270,8 +270,8 @@ you can download to help you make Firefox private. This guide was last updated on 12/26/2018

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence - - \ No newline at end of file + CC0 Liscence + + diff --git a/guides/iridium.html b/guides/iridium.html index ef62cba..e975fdb 100644 --- a/guides/iridium.html +++ b/guides/iridium.html @@ -1,7 +1,7 @@ - + Spyware Watchdog @@ -11,26 +11,26 @@ Back to Home
    Back to Iridium

    - +

    After configuring Iridium according to this guide it's rating changes like so:

    Spyware Rating: Low => Not Spyware

    - Iridium only has one spyware feature, so the only thing that needs to be removed is google safebrowsing. + Iridium only has one spyware feature, so the only thing that needs to be removed is google safebrowsing. You have to turn off your internet connection or otherwise stop Iridium from connecting to the internet while you turn it off, so it doesn't make any requests before you opt-out. Then uncheck "protect you and your device from dangerous sites" in the advanced settings menu.

    - disabling safebrowsing from the advanced settings menu + disabling safebrowsing from the advanced settings menu

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/guides/palemoon.html b/guides/palemoon.html index 9fed2b6..a19b3a8 100644 --- a/guides/palemoon.html +++ b/guides/palemoon.html @@ -1,33 +1,33 @@ - + Spyware Watchdog

    Pale Moon Browser Spyware Mitigation Guide

    Back to Home
    - Back to Palemoon + Back to Palemoon

    - +

    After configuring Pale Moon according to this guide it's rating changes like so:

    Spyware Rating: Medium => Not Spyware

    - The first thing to do, after you have downloaded Pale Moon, is to turn off your internet connection. Then + The first thing to do, after you have downloaded Pale Moon, is to turn off your internet connection. Then install the browser and change the homepage to something else. In the "options" dialog:

    - Pale moon options screen + Pale moon options screen

    The next step is to disable update checking, you can do that like this:

    - Pale moon options screen + Pale moon options screen

    Finally, these settings should be changed in about:config:

    -
    OS Path
    +
    @@ -69,9 +69,9 @@

    - If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted. + If you want to edit this article, or contribute your own article(s), contact us on XMPP over in spyware@conference.nuegia.net, or visit us at the git repo on Codeberg. All contributions must be liscenced under the CC0 liscence to be accepted.

    - CC0 Liscence + CC0 Liscence diff --git a/guides/responses.html b/guides/responses.html index 82cff32..b09c83d 100644 --- a/guides/responses.html +++ b/guides/responses.html @@ -1,21 +1,21 @@ - + Spyware Watchdog

    Answers To Common Criticisms Of This Website

    -Sometimes I read criticisims of this website online, where the author finds a reason +Sometimes I read criticisims of this website online, where the author finds a reason to "debunk" or otherwise invalidate (to them) the concerns or evidence that is brought up in the articles on this website, when this criticisim does not actually invalidate or -debunk what is discussed in the articles on the website. So, I thought it would be -useful to write a page that lists common criticisims of the website and an adequate +debunk what is discussed in the articles on the website. So, I thought it would be +useful to write a page that lists common criticisims of the website and an adequate response to each type of criticisim. Please understand that this page is not meant to write off people who have serious criticisms, and of course if you email me with those -you can exect a serious answer back. +you can exect a serious answer back.

    Spyware Feature about:config flag