| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 140169 | 2015-08-28 11:28:00 | What Windows 10 Collects about YOU !!!! | wainuitech (129) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1407543 | 2015-08-28 11:28:00 | Interesting article reposted on the Insider Program. Lest see MS deny this one ;) As said in: www.disclose.tv Some Czech guy did a traffic analysis of data produced by Windows 10, and released his findings the other day. His primary thesis was that Windows 10 acts more like a terminal than an operating system -- because of the extent of the "cloud" integration, a large portion of the OS functions are almost dependent on remote (Microsoft's) servers. The amount of collected information, even with strict privacy settings, is quite alarming. Information transmitted: All text typed on the keyboard is stored in temporary files, and sent (once per 30 mins) to: oca.telemetry.microsoft.com. nsatc.net pre.footprintpredict.com reports.wes.df.telemetry.microsoft.com There isn't a clear purpose for this, considering there there's no autocorrect/prediction anywhere in the OS (There is autocorrect in certain text fields, but the supposed purpose for transmitting these keystrokes is to improve autocorrect across devices. Whether a full keylog is necessary for this (as opposed to just corrections) is questionable. Furthermore, this appears to still occur even if the user is not signed in to a Microsoft account, eliminating the "across devices" benefit. Perhaps there is a global autocorrect dictionary that benefits all users, but the privacy implications of an un-disableable always-on keylogger outweigh these potential benefits.). The implications of this are significant: because this is an OS-level keylogger, all the data you're trying to transmit securely is now sitting on some MS server. This includes passwords and encrypted chats. This also includes the on-screen keyboard, so there is no way to authenticate to a website without MS also getting your password. Telemetry is sent once per 5 minutes, to: vortex.data.microsoft.com vortex-win.data.microsoft.com telecommand.telemetry.microsoft.com telecommand.telemetry.microsoft.com.nsatc.net oca.telemetry.microsoft.com oca.telemetry.microsoft.com. nsatc.net sqm.telemetry.microsoft.com sqm.telemetry.microsoft.com.nsatc.net You might think that "telemetry" has to do with OS usage or similar... turns out it's telemetry about the user. For example, typing a phone number anywhere into the Edge browser transmits it to the servers above. In another example, typing the name of any popular movie into your local file search starts a telemetry process that indexes all media files on your computer and transmits them to: df.telemetry.microsoft.com reports.wes.df.telemetry.microsoft.com cs1.wpc.v0cdn.net vortex-sandbox.data.microsoft.com pre.footprintpredict.com It's hard to imagine any purpose for this other than the obvious piracy crackdown possiblities. When a webcam is first enabled, ~35mb of data gets immediately transmitted to: oca.telemetry.microsoft.com oca.telemetry.microsoft.com. nsatc.net vortex-sandbox.data.microsoft.com i1.services.social.microsoft.com i1.services.social.microsoft.com. nsatc.net Everything that is said into an enabled microphone is immediately transmitted to: oca.telemetry.microsoft.com oca.telemetry.microsoft.com. nsatc.net vortex-sandbox.data.microsoft.com pre.footprintpredict.com i1.services.social.microsoft.com i1.services.social.microsoft.com. nsatc.net telemetry.appex.bing.net telemetry.urs.microsoft.com cs1.wpc.v0cdn.net statsfe1.ws.microsoft.com If this weren't bad enough, this behaviour still occurs after Cortana is fully disabled/uninstalled. It's speculated that the purpose of this function to build up a massive voice database, then tie those voices to identities, and eventually be able to identify anyone simply by picking up their voice, whether it be a microphone in a public place or a wiretap on a payphone. Interestingly, if Cortana is enabled, the voice is first transcribed to text, then the transcription is sent to: pre.footprintpredict.com reports.wes.df.telemetry.microsoft.com df.telemetry.microsoft.com If Windows is left unattended for ~15 mins, a large volume of traffic starts being transmitted to various servers. This may be the raw audio data, rather than just samples. " copied. 1 person had this question |
wainuitech (129) | ||
| 1407544 | 2015-08-28 14:49:00 | Wow! That is really interesting. Thanks Wainui | blanco (11336) | ||
| 1407545 | 2015-08-28 19:08:00 | A lot of the telemetry also is been rolled out for Win 7/8.0/8.1 in the latest updates I take most of these could be Blocked by the user for these |
Lawrence (2987) | ||
| 1407546 | 2015-08-28 19:44:00 | Another reason to not bother with it. | pctek (84) | ||
| 1407547 | 2015-08-28 21:10:00 | So hackers simply ddos those addresses and Every Internet connected copy of windows 10 on the planet stops working? | apsattv (7406) | ||
| 1407548 | 2015-08-28 22:28:00 | A lot of the telemetry also is been rolled out for Win 7/8.0/8.1 in the latest updates I take most of these could be Blocked by the user for these Last night I went through the firewall settings on Eset Smart Security, removed the telemetry rule. This morning when opening a browser to come look at the morning browse through the forum, the very first popup from the firewall asking for permission was microsoft.telemetry, and the page hadn't even fully loaded yet. |
wainuitech (129) | ||
| 1407549 | 2015-08-28 22:40:00 | Last night I went through the firewall settings on Eset Smart Security, removed the telemetry rule. This morning when opening a browser to come look at the morning browse through the forum, the very first popup from the firewall asking for permission was microsoft.telemetry, and the page hadn't even fully loaded yet. AV suppliers would be under Microsofts thumb,a lot of the Hosts Files and scripts been written to circumvent telemetry are being flag by AV as threats Win 7/8.0/8.1 may be safer as updates could be not installed/uninstalled that install Telemetry www.techworm.net |
Lawrence (2987) | ||
| 1407550 | 2015-08-28 22:43:00 | Use the program I posted a while ago Shutup10 that'll disable what you dont need inc telemetry. You dont need scripts or whatever | Speedy Gonzales (78) | ||
| 1407551 | 2015-08-28 22:51:00 | AV suppliers would be under Microsofts thumb,a lot of the Hosts Files and scripts been written to circumvent telemetry are being flag by AV as threats Win 7/8.0/8.1 may be safer as updates could be not installed/uninstalled that install Telemetry www.techworm.net That's true, but any reasonable firewall, if set to interactive should block / ask first either in or out. Heres an example as a test: Removed Cortana from the list, then within a minute or two ----- 6715 When first installing W10 then putting in the Eset Smart security, set to interactive - the damn thing goes absolutely nuts with requests - so many from MS you cant keep up ;) Edited: Interesting link Lawrence :thanks |
wainuitech (129) | ||
| 1407552 | 2015-08-28 23:15:00 | Interesting thread. | Driftwood (5551) | ||
| 1 2 3 4 5 6 | |||||