this post was submitted on 20 Oct 2025

369 points (99.2% liked)

Privacy

42711 readers

569 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago

MODERATORS

369

Printers leave a watermark on each page indicating the exact printer that it came from. Are there any other examples of these privacy violations that aren't common knowledge? (ttrpg.network)

submitted 2 days ago by thepompe@ttrpg.network to c/privacy@lemmy.ml

121 comments fedilink hide all child comments

One thing I'm concerned about is recording equipment leaving identifiable information without us knowing about it.

top 50 comments

sorted by: hot top controversial new old

[–] whats_a_lemmy@midwest.social 52 points 1 day ago

https://www.technologyreview.com/2024/02/27/1088154/wifi-sensing-tracking-movements/

WiFi-based human motion detection through barriers

[–] HiddenLayer555@lemmy.ml 87 points 2 days ago* (last edited 2 days ago) (2 children)

Tons of websites record your mouse, keyboard, and scroll activity, and can play back exactly what you saw on your browser window from its backend dashboard as a video. This is called session replay. There are pre-made libraries for this you can import so it's super common, I believe Mouseflow is one of the biggest providers.

When a mobile app, Windows app, or even website crashes nowadays, it automatically sends the crash dump to the app developer/OS vendor (the OS often does this whether the app requests it or not because the OS developer themselves are interested in what apps crash and in what ways). We're talking full memory dump, so whatever private data was in the app's memory when it crashed gets uploaded to a server somewhere without your consent, and almost certainly kept forever. God help you if the OS itself crashes because your entire computer's state is getting reported to the devs.

Your phone's gyroscope can record what you say by sensing vibrations in the air. It may or may not be something humans will recognize as speech if played back because the frequency range is too limited, but it's been shown that there's enough information for a speech recognition AI to decode. Good chance the accelerometer and other sensors can be used in the same way, and using them together will increase the fidelity making it easier to decode. Oh did I mention no device has ever implemented permission controls for sensors so any app or even website can access them without your consent or knowledge?

[–] Truscape@lemmy.blahaj.zone 33 points 1 day ago

Correction: GrapheneOS has implemented permission controls for sensors. It also has sandboxing and permission scopes to prevent many of those leaks.

However, Graphene is not available to everyone, and it's still problematic due to bystanders/passerby.

[–] bountygiver@lemmy.ml 24 points 2 days ago (4 children)

nah only the minidump is reported back which only contains the memory the crashing stack is using. Sending the full dump would requires uploading gigabytes of data which would cripple any home internet as they mostly have very limited upstream bandwidth.

load more comments (4 replies)

[–] Dr_Vindaloo@lemmy.ml 95 points 2 days ago (5 children)

Most modern cars are SIM-enabled and are constantly sending data back to the mothership. But even those that aren't will still collect data locally and that data will be collected when you send the car to an "official/licenced/authorized" repair shop.

[–] kalpol@lemmy.ca 5 points 1 day ago

I have heard firsthand that investigators just go for the car instead of the phone since it is way easier to get data from the car.

[–] sonstwas@sh.itjust.works 22 points 1 day ago

Earlier this year during the CCC security conference it was revealed that the tracking info of 800k Volkswagen cars was publicly accessible...

The talk is available in English as well I believe: https://media.ccc.de/v/38c3-wir-wissen-wo-dein-auto-steht-volksdaten-von-volkswagen

[–] DarkFuture@lemmy.world 39 points 2 days ago (1 children)

I hate this.

I'm still driving a '99 vehicle and the most advanced thing about it are the power windows. I dread upgrading to a vehicle that can break in so many new ways. I hate that everything has touch screens and the software on many is awful and if it breaks, surprise, you have no music in your car now.

[–] plantfanatic@sh.itjust.works 14 points 2 days ago* (last edited 2 days ago) (4 children)

Those still have an ECU that stores most of the same data. It knows you speed, it knows how hard you brake, etc. anything with an OBD will store data. And that’s carssince the 70s

load more comments (4 replies)

[–] modus@lemmy.world 5 points 1 day ago (1 children)

So where's the directory of where to find the transmitter/SIM in specific vehicles?

load more comments (1 replies)

[–] atomicbocks@sh.itjust.works 112 points 2 days ago (4 children)

If you don’t connect your Fire TV or other Amazon device to the internet it will talk to your next door neighbors Echo or whatever to send your data back to Amazon.

load more comments (4 replies)

[–] JustVik@lemmy.ml 39 points 2 days ago* (last edited 2 days ago) (17 children)

Maybe this. Most smartphones have a modem inside, this modem has a separate closed-sourced operating system and it usually has the main priority in controlling the smartphone relative to the processor running the main operating system, such as Android. Sometimes the modem has access to the microphone or memory, even bypassing the CPU. Although maybe everyone already knows that.

[–] HugeNerd@lemmy.ca 3 points 1 day ago

Well if you have a better way of designing a hard RTOS I'd like to hear it.

[–] Buddahriffic@lemmy.world 8 points 2 days ago (1 children)

I've wondered for a while if something like this is why Google allowed their bootloaders to be unlocked, because they can get at everything anyways.

And I bet that if that was the case, they've backed off that for future phones because of those stories about law enforcement seeing having those phones as suspicious, which could hurt sales, since I bet the majority of pixel users don't switch operating systems.

[–] Truscape@lemmy.blahaj.zone 6 points 1 day ago

Wouldn't that lead to a "Clipper Chip" situation where somone figured out how to isolate the issue? I think the Graphene team already did it.

[–] Evil_Shrubbery@thelemmy.club 7 points 2 days ago

Snowden gave us this info, right?

load more comments (14 replies)

[–] markz@suppo.fi 117 points 2 days ago* (last edited 2 days ago)

Well just recently learned that some printers exfiltrate data from air gapped networks through ink cartridges.

https://lemmy.world/post/37486114

[–] mukt@lemmy.ml 71 points 2 days ago (8 children)

Photos taken by digital cameras are also trackable in a similar way as prints taken from a printer. I recall reading they were trying to identify the device after a Harry Potter book was leaked by someone taking digital photographs.

[–] who@feddit.org 12 points 1 day ago* (last edited 1 day ago)

To be clear, this is not about EXIF data (which is its own problem).

Digital cameras can be fingerprinted from the images they produce, due to variations between pixels in any given sensor. If you're concerned about an image being traced back to your camera, you might consider some post-processing before distributing it.

[–] clif@lemmy.world 19 points 2 days ago (1 children)

EXIF data?

https://en.wikipedia.org/wiki/Exif

[–] mukt@lemmy.ml 3 points 1 day ago

Apparently! Just looked it up and reports presently say that the Serial Number of device was found to be 560151117 from EXIF data. Camera make : Canon Rebel 350 (also known as the Canon EOS 350D or Canon Digital Rebel XT);

[–] belated_frog_pants@beehaw.org 16 points 2 days ago (3 children)

Exif data. It can be removed with various apps but its in photos by default on most devices

[–] mukt@lemmy.ml 1 points 1 day ago

In that case, looks like they didn't remove the EXIF data.

load more comments (2 replies)

load more comments (5 replies)

[–] cypherpunks@lemmy.ml 46 points 2 days ago

Social graph connections can be automatically inferred from location data. This has been done by governments (example) for a long time and is also done by private companies (sorry I can't find a link at the moment).

[–] nimpnin@sopuli.xyz 38 points 2 days ago (32 children)

That ATM cash tracking thing comes to mind

load more comments (32 replies)

[–] Core_of_Arden@lemmy.ml 22 points 2 days ago* (last edited 2 days ago) (13 children)

Isn't it common knowledge? I've known about it for at least two decades...

BTW - you can easily work around it. Get someone else to buy your printer for you, or trade with someone who has the same printer... Now, they will still be able to match it to the printer, if they find it at your home, but other that that, you are free...

PS. Don't use your printer to blackmail FBI or CIA. ;-)

load more comments (13 replies)

load more comments