Lytia
- 0 Posts
- 8 Comments
97·27 days agoReject Convience does privacy policy reading streams, and has a pretty hard stance on no TLDRs. If you don’t have time to watch it, save it for later. Better that than to trust a random person’s 5 word TLDR.
Invidious link because icky YouTube: https://redirect.invidious.io/watch?v=iX3JT6q3AxA
By hosting it through tor, they’re effectively removing it from the worlds DNS providers, and limiting their users to a minority of advanced users.
Thanks for the reply. While I’m sure that the video feed wasn’t the easiest to access from an outside attackers end, the fact that it was even being sent to the cloud, unencrypted, in the first place is a little more than a “minor” controversy. A company advertising a camera that works local only, and then proceeding to quietly upload everything from the camera to their servers, servers that, mind you, cost money to operate, likely have malicious intent.
While it may have been sensationalized, given this is a privacy comm, it should at least be worth mentioning.
They keep data local by default
https://gizmodo.com/eufy-local-security-camera-cloud-unencrypted-scandal-1850059207
The original security issue was first noticed by security researcher Paul Moore, who noticed Eufy cameras were streaming recorded video to a cloud server on the site’s web portal, even though cloud storage wasn’t enabled. That data sent to the cloud remained unencrypted.
https://www.theverge.com/23573362/anker-eufy-security-camera-answers-encryption
Anker has finally admitted its Eufy security cameras are not natively end-to-end encrypted — they can and did produce unencrypted video streams for Eufy’s web portal.
The article also includes a response from Anker.
If you’re using a third-party email client, but using a gmail email address, then PGP would stop Google from reading your emails (assuming the private keys aren’t compromised).
If you’re using their email client, then nothing stops them from decrypting your emails if they really wanted to. IIRC, gmail doesn’t natively support PGP anyways though, so you’d have to use a third-party client.