No.32828
This thread is dedicated to corps you should not trust
Do not buy hardware, software from them, do not use their services (avoid if possible).
When posting others, write their name down, and add their exploits/shenanigans/problems next to them. If it all goes well, we should ask the CEO of Jinteki Industries to host and save the list. I will start by the obvious ones:
Microsoft: win10 telemetry, xbone-1984-fun
Google: infamous botnet shazbots
Lenovo : Sole known manufacturer and seller of the infamous henghzi chip (no public specifications known) , Superfish incident, Lenovo Service Engine bloatware/botnet software
Intel : The memory sinkhole , (can't find source right now) some motherboard chipsets have a special IC which can send data without the computer knowing it
Sercomm: hidden firmware backdoor in routers
Amazon : tracks you like mad shit
Verizon : hands over all call data to the iNfamouS Admins
Yahoo: same as google
Some food for the thought:
http://defensetech.org/2012/05/30/smoking-gun-proof-that-military-chips-from-china-are-infected/
No.32835
No.32836
>trusting any corps
Fuck off reformist.
No.32837
>>32828
>Lenovo
A-are you saying my Thinkpad™ isn't safe?
No.32840
>>32837
Hengzhi chip was news back in '05/'06; don't think there's much of a danger for laptops made for the foreign market that weren't part of a government/corporate contract, especially since the US Gov. allegedly launched an investigation into the chips after ordering several thousand ThinkPads. More information would be greatly appreciated since I could only find two decent articles on the thing.
Superfish seems to only be an issue for laptops manufactured since Dec. 2014, but they've released a tool that supposedly lets you remove it, though most antivirus software now regards it as malware and will deal with it accordingly. Reformatting the HDD (which you should've done in the first place) would probably get rid of it as well.
As for the bloatware/botnet shit, every manufacturer does that these days unfortunately. Reformat the HDD and slap your preferred flavor of Linux on it, and it should be a non-issue.
No.32841
>>32840
Oh hey, actual input, nice
I have to ask the question:
Would you trust a manufacturer which already had this much problems surfaced? I would not
No.32846
>>32841
>Would you trust a manufacturer which already had this much problems surfaced? I would not
Can't say I would, either.
No.32852
No.32855
L E N O V O C O M P R O M I S E D S M A R T P H O N E S
http://www.amazon.com/Lenovo-Screen-Android-Qualcomm-Snapdragon/product-reviews/B00SUWBROI
https://securelist.com/blog/mobile/71981/taking-root/
DO NOT BUY LENOVO
DO NOT BUY CHINESE
CONSIDER THEM COMPROMISED AUTOMATICALLY
IF YOU OWN ANY DEVICES LIKE THIS, SELL THEM
No.32856
>>32828
I suppose I should not use a car because the NSA has 2spooki4mi bugs in my car. Should also not use a computer or any phone ever again because the boogeyman NSA is errywhere. Fucking hell some of you are so paranoid, we're not that interesting, they just want to occasionally make sure you're not planning on blowing up a skytower.
No.32859
>trusting any corps
You learned nothing from cyberpunk, right?
No.32863
No.32869
>>32828
>we should ask the CEO of Jinteki Industries to host and save the list
Absolutely, we will gladly rehost this content. Jinteki Industries is a freedom-respecting Japanese megacorp that seeks to improve quality-of-life through dynamic, cross-platform, IoT, synergistic, cloud-based biotechnology through mesh-based mobile applications, crowdfunded hyperconverged systems, and other disruptive technology. The rumors of unethical retirement of clones, black ICE, and corporate backdoors in our clones and *roid products are nothing but that - unsubstantiated rumors. Chairman Hiro stands by the statement that that our Cerebral Cast(tm) does NOT cause brain damage when jacking in, and that the "Fetal AI" project was nothing but propaganda from our corporate rivals.
No.32874
AT&T: totally compliant with NSA's meddlihng, locks down phones
Windows: "telemetry"
No.32895
>>32869
>"Fetal AI"
>megacorp
j p . t e i m o t o . v i r t u a l m e c h . i n f o ~ s e c u r e d a t a l i n k w i t h J a p a n e s e C o r p.
No.32994
>>32874
>tfw you have both
>tfw you bought a windows phone before coming to /cyber/
No.32999
No.33000
>>32999 (Checked)
Trips of truth. Avoid corps at all costs.
No.33015
Motorola allows you to unlock your bootloader. All they ask for is the identity of your device so they can be sure you don't try to return your brick on warranty.
No.33016
>>33015
Motorola is Google, though.
Also, asking for permission to unlock the bootloader is pretty dumb. Not many people unlock their bootloaders, and of those not many brick their phones. It seems like an attempt to track everyone unlocking bootloaders.
No.33042
No.33046
>Chinese programs infecting millitary hardware
No.33061
>tfw made a truly cyber thread and noone contributed
this whole site is a honeypot
ALL IS LOST
No.33066
>>33061
>being a revisionist corporate cuck is /cyber/
>implying the OP isn't a marketing honeypot
Kek. Fuck off. Your thread was shit from the beginning.
No.33067
>>33066
kill yourself shitposting shazbot
keep spammind the music threads with shit unrelated stuff, that will surely help us
No.33070
>>33067
>implying I ever post in any of those threads
There's no such thing as a "compromised" corporation; they are all your enemy. Why don't you go read an actual cyberpunk novel instead of shitposting on /cyber/, since apparently one of the most central and obvious themes in cyberpunk literature has went over your head.
No.33072
>>33070
Yeah cool, the world works like the world that is written in a novel
No.33075
>>33070
Don't be a fucking idiot, it's all relative. And fuck me for wasting my time on you, troll.
No.33086
>>33070
>Believes all corporations are your enemy
>Still hits the matrix on his Ono Sendai Cyberspace 7
No.33089
>>33072
>it's only okay to post about how we cyberpunk now when it fits with my worldview
>>33075
This has literally nothing to do with the post you replied to.
>>33086
Oh, right, let me just go and make my own deck from scratch with all those factories and mines that I have ownership of so that I can authentically fight the megacorps.
No.33091
No.33094
Stop fight tell some trusted corps
No.33095
>>33094
I only trust org's user, never coprs.
The linux guys,
IETF
IEEE
FSF
GNU foundation
I wish there were more trustable hardware manufacturers, most of them seem to be in bed with the NefariouS chAracters.
No.33096
>>32840
>Reformatting the HDD (which you should've done in the first place) would probably get rid of it as well.
This was actually a problem, the firmware was reinstalling spyware to fresh (non OEM) MS windows installs.
http://www.theregister.co.uk/2015/08/12/lenovo_firmware_nasty/
No.33106
No.33115
>>33091
>being sarcasm-impaired
Also nice meme.
No.33117
>>33095
>IETF
This are compromised. We were going to have full end to end encryption mandatory in IPv6. The FBI and NSA, et. al. had a few words with them and they silently dropped encryption from the protocol; The better to spy on you with, my dear.
The friend of my enemy is also my enemy.
No.33118
Verisign - The first and original SSL certificate authority. Meanwhile they were selling a "Security Product" to governments which could see into encrypted connections.
HTTPS has never been, and is still not today, secure.
No.33122
>>33106
Props to this friend for actually posting relative information to the thread. Can we stop arguing about literally meaningless shit and talk about untrustworthy corporations? Undermining corporations is a pretty core theme to this board but apparently y'all are incapable of even that
No.33130
>>33106
>I wish there were more places to find comprehensive lists of a companies' security and privacy transgressions.
That was the original idea when this thread was made
No.33132
>>33070
>has went over your head.
has gone over your head.*
Maybe if you read shit other than crude William Gibson knock-offs, you would know how to speak English. ;o
No.33133
>>33095
>FSF
>GNU foundation
Untrustworthy and compromised. Stallman puts his personal beliefs over other people's rights and attempts to deceptively trick people, such as Torvalds, into using GPLv3, which shits all over the freedom that GPLv2 established.
No.33145
>>33133
You just pulled all that from your ass from one of those "STALLMAN IS A COMMUNIST" troll /tech/ threads, right?
No.33146
>>33117
Wait, they wanted to put end-to-end encryption in a routing protocol? The moNstoruS mAn didn't even need to interfere, that's a retarded idea. Anyway do you have any proof or is it one of those "just makes sense" things people know these days?
>>33118
Verisign and CA structure-
https://nakedsecurity.sophos.com/2011/08/16/defcon-2011-ssl-and-the-future-of-authenticity/
>>33130
A chan thread isn't the best way to organize information for people to find, I think.
No.33148
>>32828
Supermarket loyalty cards.
They track every purchase. Without exception, if you scan the card, it's tracked it. Then they use the data to tailor their stock ordering for the majority and send you vouchers.
You know that cider you like? Here's a voucher for it. That chocolate bar you bought the other month? Two for one.
No.33149
>>33118
You actually can't decrypt traffic sent through SSL, but considering how fucking retarded the whole CA thing is, it would be trivial for the NSA to get any CA (look at all those possible points of failure, for fuck's sake) to emit a valid certificate for a website they want to spy on and then proceed to MITM the connection towards the end of a single person they want to spy on or towards the end of the server, which would allow them to spy anyone connecting there.
HTTPS is only fucked because of that. The rest is fairly solid if we don't take into account OpenSSL is a clusterfuck and there may be thousands of bugs waiting to be exploited.
Certificates applied to a Namecoin-like platform will be the only thing that might be able to save us in the future.
No.33161
No.34093
>>32828
https://www.youbetrayedus.org/
CISA is a mass surveillance bill posing as a “cybersecurity” bill.
Apple
Microsoft
Adobe
Oracle Corp.
Symantec
IBM
Autodesk
Salesforce/Heroku
No.34115
>>32828
Intel - Active Management Engine is a literal backdoor. They also put in remote unique CPU identifier capabilities known as "anti theft" and "identity protect", which allow remote calls to your CPU to identify you uniquely out of band.
https://en.wikipedia.org/wiki/Intel_Active_Management_Technology
Any laptop marketed as an "Ultrabook", one of the requirements of being an ultrabook is to have the intel backdoor and identifier capabilities.
https://en.wikipedia.org/wiki/Ultrabook
Microsoft - has a deal with the NSA to share info from its products including skype and webmail
https://en.wikipedia.org/wiki/PRISM_%28surveillance_program%29#Extent_of_the_program
If you're interested in boycotting for more than just tech reasons, the app Buycott is useful for checking the evil shit each product supports in the supermarket.
http://buycott.com/
No.34206
>>34093
Does blanket immunity mean exactly what I think it does?
Is it just the laws that are noted there, or all of them? Because that's pretty much asking for those criminal megacorps.
No.34212
No.35916
No.35925
>>32856
>i have nothing to hide
>so i have no problem being tracked 24/7
some people enjoy their right to privacy, just because you're an exhibitionist doesn't mean they're paranoid.
No.35926
>>32856
>I suppose I should not use a car
Correct. Jews invented spark plugs to control global traffic.
No.35928
>>32828
Is the T400 Thinkpad compromised? Hope not, I love this thing. Plus, well, it hasn't exactly got a gigantic resale value.
No.35932
>>33148
It's a mutually beneficial service. And what could they possibly glean from the oh-so-private data of what you bought for food?
I'm not saying you should completely surrender your privacy, but if you think about it, many instances of your secrecy are silly.
No.35938
>>35932
It tells them where I was at the moment I bought the item, how many people are living at my house (based on quantity of food) and a variety of other things. They wouldn't have the rewards card program if it didn't give them useful information. That information is used to manipulate people on a grand scale and I have no need to encourage that sort of thing.
No.35939
>>35938
Color me unconvinced. I recently got a roommate, but still buy the same quantity of food; It seems to me like they might tell if you're married or not, but I don't understand how they could use this information to sell you more stuff.
>They wouldn't have rewards card programs if they didn't give them useful information
Sure they would, it encourages consumer loyalty. I don't bother going to shop and the expensive supermarket because I already have a rewards card for the one I usually go to.
No.35949
>>35939
Have you ever considered that the rewards you get are less worth than the info you're giving them?
No.35951
>>35949
That's literally what I did in my post, and my conclusion was "no"
No.35955
>>35951
>but I don't understand how they could use this information
Then maybe you should research how much they pay for customer data, how much they invest into the technology and stop posting till you revise your conclusion.
No.35966
>>35955
Despite those schway dubs you're still a shazbot for not mentioning any specifics. A quick google search got me nowhere, if you know something I don't, spill it already.
No.36310
>>35932
How would you like to have your insurance costs fluctuate based on your dietary choices, and without your knowledge?
A little too much soda in your purchase list? Maybe they'll hike up your costs more than the average.
Buy a cigarette once in a while and happen to get diagnosed with cancer? Well, it must've been a self-inflicted one and no more coverage for you.
Just because the information being collected is benign, it doesn't mean it can't be used to harm you in unexpected ways. We've already learned that lesson with geolocation data – coordinates themselves are harmless, but they can be used to malicious ends.
No.38134
>>35932
>what could they possibly glean from the oh-so-private data of what you bought for food?
Well, on the surface level, you've pretty much giving your life story away to health insurers, as >>36310 pointed out. But I don't think you grasp the fundamental threat that is Big Data and neural net pattern-matching. Take a look at this:
http://www.siliconvalleywatcher.com/mt/archives/2013/03/big_data_and_yo.php
>a recently published study by researchers at Cambridge University in the UK and Microsoft Research, used an automated analysis of 58,000 volunteers' Facebook "likes" to make highly accurate predictions about a person's private and very sensitive personal attributes
>these attributes included sexual orientation, ethnicity, religious and political views, personality traits, intelligence, happiness, use of addictive substances, parental separation, age, and gender
Remember, this is barely scratching the surface. Its only a small project by a university research group. Pattern-matching is only gonna get more sophisticated as corps jump on the bandwagon and determining your soul's inner secrets becomes a multi-billion-dollar enterprise. But hey, if you're cool with some faceless marketing exec basically being able to read your mind, you go ahead and sell your soul for the convenience of card payments.
No.38168
>>33016
correction.. motorola WAS google but is NOW LENOVO!
DUBBLE SHAZBOT!
… still planning to buy moto x style.. does a para android version help?
No.38174
>>32828
> xbone-1984-fun
So we can just make up things that never happened now?
No.38177
>xbone
What' with the thing now?
>>32852
>AT&T
Oh shit nigga, what good ISPs don't sell your anus to the alphabet soup?
>>33148
Go to the korean/local stores, they have a wider variety of produce than chains.
>>34093
>Oracle Corp
So, how far could this extend?
No.38179
>>38168
Motorola and Lenovo are AIDS. I use a blackphone + signal, they be pretty /cyber/. Totally recommend it / 10. But I still don't do anything serious there because phones are insecure by design. I just call mom and gf, I don't even store work related stuff in it. For all the other stuff I use my Gibsons.
No.38195
>>38174
>make up things that never happened
what? these things alongside with "smarttvs" are literal 1984 type telescreens. they dont even listen to you but record you with their camera.
at one point (i think) samsung even announced you shouldnt discuss personal things in front of their "smarttv" because the voice recognition is done by a 3rd party. (yes they send this through the internet).
this shit is real an people spend brouzouf on it.
you should probably consider everything with "smart" in its name compromised