WTF? 8 million users' AI conversations sold for profit by "Privacy" extensions https://www.koi.ai/blog/urban-vpn-browser-extension-ai-conversations-data-collection
Discussion
Loading...
Discussion
@nixCraft I have no sympathy for dumb asses that use LLM's.
@nixCraft Is that illustration AI? It sure looks like it.
@nixCraft that company has 3 😲! VPN products on the Mac App Store (reviewed and everything):
@nixCraft "We and our 2398467 partners respect your privacy."
@nixCraft No idea if this is true, but if it is it was just a matter of time before someone uses "AI" to squeeze every last penny out of the users data.
@nixCraft
I stop reading at "asked for perspective" in the "conversation" with Claude
@nixCraft this smells more of self promotion than legit analysis
@nixCraft holy crap! this is a new low. how is this not illegal? how is google not paying billions in damages? fuck google.
@nixCraft Nothing good will come from AI.
@nixCraft I looked at the source code of that extension and found the article is not right https://piefed.social/post/1573197#comment_9269001
@nixCraft where this world going ...
@nixCraft
Pues eso... a free vpn...
Si el refrán dice que lo barato al final sale caro... que diría de lo gratuito????
Desde hace tiempo opino que los servicios que de verdad te importan debes pagarlos. Que si 200GB gratis de almacenamiento en la red, que si retoque de fotos gratis, que si correo gratis...
Pues eso... a free vpn...
There are a lot of these shady extensions and free VPN apps on the Google and Apple app stores that collect and sell your data, and some even turn your devices into residential proxies. Real shady stuff is going on. People install these free apps to bypass censorship, view certain geo-restricted content, or access content that someone blocked under morality rules or similar restrictions. In the end, this behavior harms end users more than anything else. Please stay safe & avoid installing it
@nixCraft Offering reliable resources (VPNs, browsers, rss, etc) would be helpful here.
@nixCraft
Other thing that caught my attention is that browsers generally a total useless thing when you need something really secure and private. You can use AES encryption, password-derived keys via HKDF, and all that stuff, but an extension can override a few functions in `window.crypto` making even Cryptpad a spyware sending a copy of all encrypted data to a server via message to extension context and than via fetch call, or via fetch call as is.
well that sounds not good
Gnar🔥 social
Federated bonfire social space for those into gnarly adventures. From shredding mountains to guitars if you enjoy gnar, come share your stoke and adventures!
Automatic federation enabled