neko
/
SpywareWatchdog
mirror of https://codeberg.org/shadow/SpywareWatchdog.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
SpywareWatchdog/articles/webdiscover.html

116 lines
7.1 KiB
HTML
Raw Blame History

<!DOCTYPE HTML>
<html lang=”en-us”>
<head>
<link rel="stylesheet" href="/style.css">
<meta charset="UTF-8">
<title>Spyware Watchdog</title>
</head>
<body>
<h1>WebDiscover</h1>
<p><a href="/articles">Back to catalog</a></p>
<img src="/images/webdiscover_logo.png" alt="Webdiscover logo">
<p>
WebDiscover is a web browser made by WebDiscover Media.
</p>
<h2>Spyware Level: <font color="red">EXTREMELY HIGH</font></h2>
<p>
WebDiscover uses the spyware search engine <a href="/articles/yahoo.html">Yahoo</a> as it's default search engnine, but on it's website it says it uses the spyware
search engine <a href="/articles/bing.html">Bing</a> as it's default search engine. It is hard to review since every time I run it,
it messes up MITMproxy so I can't see what it's doing. The privacy policy explains that it collects a large amount of personal information from it's users, so it is at least not a secret that this browser is spyware. This program acts in a very suspicious way and
the privacy policy contains a lot of language in it about the use of the information it collects that elevates it
to a <b><font color=red>uniquely bad stance on user privacy and use of user information</font></b>, so I would recommend staying far away from it.
</p>
<h3>WebDiscover installs itself onto users computers through installer bundling</h3>
<p>
WebDiscover is mostly installed through other programs as an opt-out. This means that most users did not want to install this browser, and
were tricked into doing it by other software's installer programs. For example<sup><a href="#2">[2]</a></sup>:
</p>
<p>
<a href="/images/wd1.jpg">[1]</a> <a href="/images/wd2.jpg">[2]</a> <a href="/images/wd3.jpg">[3]</a> <a href="/images/wd4.jpg">[4]</a>
<a href="/images/wd5.jpg">[5]</a> <a href="/images/wd6.jpg">[6]</a> <a href="/images/wd7.jpg">[7]</a> <a href="/images/wd8.jpg">[8]</a>
<a href="/images/wd9.jpg">[9]</a> <a href="/images/cdex_bundling.png">[10]</a>
</p>
<h3>WebDiscover collects a large amount of information about its users</h3>
<p>
According to its privacy policy<sup><a href="#1">[1]</a></sup>, WebDiscover collects the following information about its users as its browser is downloaded and used:
</p>
<ul>
<li>Web Browser type</li>
<li>Operating System type and version</li>
<li>Domain Name</li>
<li>Browser version</li>
<li>Browser usage and statistics</li>
</ul>
<p>
Some of this information is typical of the kind of info that is collected by developers who write programs that phone
home using the HTTP protocol. However, WebDiscover also collects the following information about it's users which is
more concerning:
</p>
<p><i>
"We may collect Personal Data and Anonymous Data when you download the Browser. We may also collect Personal Data when you send us information or communications directly. “Personal Data” means data that allows someone to identify or contact you including, without limitation, your name, physical address, electronic mail (email) address, phone number, and credit card information (collectively, your “Personal Data”) for the purposes of recording the transaction when you engage in activities on the Site or through use of the Browser."
</i><sup><a href="#1">[1]</a></sup></p>
<p>
So, WebDiscover will profile your computer, and WebDiscover Media will use every oppotunity they get to collect
information about you.
</p>
<h3>WebDiscover sells information about it's users</h3>
<p>
In this quote from the privacy policy:
</p>
<p><i>
"We may share Anonymous Data with selected third parties and business partners..."
</i></p>
<p>
Confirming that the information that WebDiscover collects about you will be sold to advertisers.
</p>
<h3>WebDiscover uses your personal information in a malcious way</h3>
<p>
WebDiscover sells your information to advertising companies that will send you junk mail seperately from
WebDiscover's discretion- it also DOES NOT comply with requests to stop contact, and requires you to seperately
request each company that it has sold your information to, to stop contacting you. I didn't check if they would comply
with those requests or not. The following quotes from the privacy policy should explain this:
</p>
<p><i>
"To opt-out of having future third-party marketing communications sent to you, you will be required to unsubscribe with the applicable third party providers. Despite your request to no longer receive future newsletters or promotional and marketing communications from us, we reserve the right to continue to send you notices of any updates to the Browser, our Software End User License Agreement, and our Privacy Policy."
</i><sup><a href="#1">[1]</a></sup></p>
<p>
WebDiscover also claims that anyone who acts in a way that "damages the reputation" of their company will have all of the
personal information that WebDiscover has collected about them disclosed to any party at their discretion.
</p>
<p><i>
"If we determine, in our sole discretion, that you have engaged in conduct which might be considered, unlawful, fraudulent, or which might harm or damage the reputation or standing of WebDiscover Media with either the general public or with a business partner or potential business partner of WebDiscover Media, we reserve the right to release your Personal Information to such persons or third parties as we consider necessary in order to prevent you from causing injury to, or otherwise injuring or interfering, now or in the future, with WebDiscover Media' rights, property or operations or otherwise the rights, property or operations of anyone else who could be harmed by such conduct."
</i><sup><a href="#1">[1]</a></sup></p>
<p>
Which is basically threatening their users that they will use the information they collect to dox anyone who says bad things about their software.
This is possibly the most anti-user statment that I have read in a privacy policy.
</p>
<h3>Phoning Home</h3>
<p>When WebDiscover is started, it will begin making requests to this domain: </p>
<p>ec2-54-191-159-75.us-west-2.compute.amazonaws.com</p>
<p>
This is presumably how it collects a lot of the personal information about its users.
This was discovered using Microsoft Network Monitor 3.4.
</p>
<hr>
<h2>Sources</h2>
<p>
<a name="1">1.</a>
<a href="https://getwebdiscover.com/privacy/">WebDiscover Privacy Policy</a>
<a href="http://web.archive.org/web/20171224213336/https://getwebdiscover.com/privacy/">[web.archive.org]</a>
<a href="http://archive.is/Orpq6">[archive.is]</a><br>
<a name="2">2.</a>
<a href="https://www.pcrisk.com/removal-guides/9153-discover-browser-adware">WebDiscover removal instructions</a>
<a href="http://archive.is/bE7Qe">[archive.is]</a><br>
</p>
<hr>
<p><b>
This article was last edited on 8/4/2018
</b></p>
<p>
If you want to edit this article, or contribute your own article(s), email me at <a href="mailto:spyware@aaathats3as.com">spyware@aaathats3as.com</a>. All contributions must be liscenced under the CC0 liscence to be accepted.
</p>
<a href="https://creativecommons.org/publicdomain/zero/1.0/legalcode"><img src="/images/cc0.png" alt="CC0 Liscence"></a>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink