Chromium browsers have been quietly sending user information to Google
(www.techspot.com)
from lemmee_in@lemm.ee to privacy@lemmy.ca on 15 Jul 2024 15:10
https://lemm.ee/post/37139616
from lemmee_in@lemm.ee to privacy@lemmy.ca on 15 Jul 2024 15:10
https://lemm.ee/post/37139616
#privacy
threaded - newest
Google to users: “I’M GOING TO STEAL ALL YOUR INFORMATION!”
Google: steals users information
Users: shocked pikachu face
Indeed. I’m trying to figure out how “quietly” makes any sense in that headline. Google has been very public about what they’re doing, and has usually published their proposed actions months in advance of actually taking them.
It probably is intended to indicate that Google’s software doesn’t have a notice anywhere it’s sending this data that a normal human could reasonably find.
There’s a lot of ‘Data we collect’ stuff on sites and software now, and I’m entirely sure I’ve never seen this on any browser using Google’s code for this.
This also says “chromium browsers”, so maybe people who are using some other one than actual Google Chrome have not known and/or not been told of the collection happening.
Yeah, I’m entirely sure it’s upstream of Chrome proper, and kinda consolidates my opinion that anything Google is near should be treated as suspect.
Cut it all off!!
well besides spytube... can't really cut that off yet...
I would hope Google free Chromium doesn’t but who knows.
It isn’t quiet. You can prevent it with enterprise policies. Firefox sends information to Mozilla too. With AI now though, more people than ever are willing to have their data mined to be able to participate in AI.
Oh fucking christ this again.
No, they send general telemetry by default. Which is one toggle to disable. They don’t continue to send information back after that point, and certainly not to the same degree that chrome does AFTER you disable it in chrome. So saying “Mozilla too” in the same context of Chrome is stupidly disingenuous.
Simply not true. The only way to stop Firefox from phoning home completely is via about:config or a policy template file:
…mozilla.org/…/how-stop-firefox-making-automatic-… mozilla.github.io/policy-templates/
You can do the same with Chrome:
chromeenterprise.google/policies/
Firefox certainly phones home less by default, especially when opting out through various settings, but not completely. Chrome/Chromium isn’t evil either. Chromium sandboxing has long been praised as a more secure browser, hence why GrapheneOS (praised as the most secure phone distro) uses Chromium as their browser and not Firefox. Not saying Firefox is bad either. I actually prefer Firefox in certain scenarios and there is a reason that Tor and Mullvad use Firefox for their browsers too (easier to prevent JS from leaking system info), but Chromium is open source as well and used in things like Electron for Signal.
No, it is true.
Making connections to mozilla != collecting boatload of telemetry. Every function in that page is to download FULL lists of information. Not specific tracking items. You don’t gain a whole lot of telemetry/metadata on someone who downloads a new blocklist. Rather that say someone who checks a specific domain on a blocklist. further, the vast majority of things (virtually all of it) is configurable in toggles. And many options in here don’t even send mozilla anything at all (prefetching for example.)
Automatic connections != sending mozilla all your tracking information.
Hiding plugins that give google your hardware information when you visit any google domain without consent is pretty fucking evil.
Again Chromium is open source. Chrome is Google’s bundled browser that includes API keys and plugins to share information for signing in to Google and syncing data with your Google account. You do not have to enable these, and they can be disabled using policies & flags.
The hidden plugins I’m talking about are BUILT INTO CHROMIUM.
community.brave.com/t/…/557645
Chromium based browsers (brave as an example linked above) ALSO had them present. It was only due to the new of this being a thing recently that brave (and probably others) made it disable-able (github.com/brave/brave-core/pull/24583 5 days ago).
Screaming “it’s open source” means nothing if nobody ever reviewed the code, and disabled the google spyware shit that they put into chromium to begin with. Remember the Chromium is still a google product.
I’d rather just Mozilla… You know… since they didn’t try to fuck me out the gate. I can accept “On by default, but we ask you during setup and you can access the setting at anytime” vs “Fuck you, you turned off all the telemetry but can’t reach the hidden add-ons we install without recompiling your own browser”. The mentality matters. I can trust the former to not screw me a bit more vs the latter rapist mentality.
It is hard to have a discussion with you when you exaggerate. Rapist mentality is far from what Chromium is. You really can’t equate rape to technology, since you have a choice.
The API you references communicates with Google using its own API when you use Google services, and as specifically designed for Google Hangouts at the time to report system information during calls. This has been known about since at least 2018. Any developer could have submitted a PR to have it removed. That is how open source works.
This has already been disabled in other Chromium builds:
github.com/ungoogled-software/…/flags.gn#L5
Just because Brave recently submitted a bug report doesn’t mean that others have noticed. Again, I encourage you to look at what can be disabled via policies in Chrome (like Firefox):
chromeenterprise.google/policies/#WebRtcEventLogC…
No shit
You act like this has not been a decade long "argument"
Yeah anyone doing critical thinking caught with this fact mid 2010s but normie core still in the trust me bro stage, even if mega corps are spying, they got nothing to hide anyway
The face eating leopards are getting fat
<img alt="surprised pikachu meme" src="https://sh.itjust.works/pictrs/image/8ec3cb9d-5e69-4174-ae9b-906a621266c2.jpeg">
Well, not all chromium browsers. Ungoogled chromium disabled this 8 years ago.
Yeah, that was clear from the start…
I’d take it the opposite way, does Google have evidence that it wasn’t used outside the hangouts domain?
Dear everyone. Chromium Browser does not just mean chrome.
It means Edge, Brave, Opera, and virtually every other browser you’ve ever heard of but Firefox and Safari.
How does this affect Ungoogled Chromium?
My understanding is that it affects it all the same.
Wut!!! A browser engine made by Google have been sending user data to Google? What a surprise