this post was submitted on 12 Apr 2024
309 points (90.6% liked)

Privacy

32442 readers
746 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I saw this on infinity for Reddit earlier, I don't know if there's a workaround for this or not.

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 99 points 8 months ago (4 children)

They talk as if they're protecting our privacy when it's really a global surveillance net. The spin doctoring is insane.

[–] [email protected] 51 points 8 months ago* (last edited 8 months ago) (5 children)

Friendly reminder that Bluetooth has a larger network stack than Wi-Fi. Much more code, much larger available attack base. There have been many numerous Bluetooth vulnerabilities that allow remote code execution or theft of files.

This is truly becoming a surveillance state, in no way that can be debated. That want to be able to access everyone's innermost thoughts (texts, notes, recordings, calendars, contacts, photos, you get it) without any chance of someone being able to protect against it.

Reminder that Google was the 2nd or 3rd company to commit to NSA's PRISM program of feeding American's data for future analysis.

load more comments (5 replies)
[–] [email protected] 20 points 8 months ago (3 children)

"Privacy Sandbox" is just Google-controlled surveillance carried out with your phone/PC as the primary data provider. We've reached maximum perversion of the English language.

load more comments (3 replies)
[–] [email protected] 19 points 8 months ago (1 children)

Straight up 1984 Newspeak, where the Ministry of Truth is really concerned with lies, the Ministry of Peace is concerned with war, the Ministry of Love is concerned with torture, and the Ministry of Plenty is concerned with starvation.

[–] [email protected] 5 points 8 months ago

It's honestly Doublethink.

Whenever Google gets exposed for bad practices, people ignore it. And they believe this stuff is good or don't care.

load more comments (1 replies)
[–] [email protected] 71 points 8 months ago (4 children)

According to the posted link, the network can be turned off entirely if you wish, and you could just not use Google Play Services on your device, and that should also stop this.

[–] [email protected] 22 points 8 months ago (11 children)

GrapheneOS w/o Google tools Schoulf be safe.

[–] [email protected] 11 points 8 months ago (1 children)

It appears to require a Google account to do the tracking. So yeah, without Google services, you should be perfectly safe. Since you have no Google account registered on device and no services that run rogue in the background,

[–] [email protected] 13 points 8 months ago (5 children)

If the Bluetooth module itself is still running, it will be trackable

[–] [email protected] 14 points 8 months ago

The article did not say specifically how it was getting added to Android 15, because if it's in AOSP, then yeah, there's definitely a problem. But if it's in Google Play Services, which seems likely, then it would not be as big of an issue.

load more comments (4 replies)
load more comments (10 replies)
[–] [email protected] 18 points 8 months ago (1 children)

While I like those options, they are definitely not for everyone. Those problems are collective, protecting the privacy of 1% of the population is as good as protecting nobody.

[–] [email protected] 11 points 8 months ago (1 children)

That's definitely true. We definitely need more people to care about their privacy as well.

load more comments (1 replies)
load more comments (2 replies)
[–] [email protected] 50 points 8 months ago (4 children)

the new google massive surveillance apparatus is ready to be deployed

[–] [email protected] 15 points 8 months ago

What do you think Google Maps and GSF are

[–] [email protected] 12 points 8 months ago

More like, already deployed, this is just the announcement.

[–] [email protected] 9 points 8 months ago (1 children)

Apple already does it with their iPhone, just saying.

load more comments (1 replies)
load more comments (1 replies)
[–] LaggyKar 36 points 8 months ago (7 children)

Where is that mentioned? I can't find that in the article

[–] [email protected] 23 points 8 months ago (1 children)

I also couldn't find a mention, and it definitely does not make sense (and likely isn't even possible) to run Bluetooth without Android itself running

...which uses a crowdsourced device-locating network to help you find your lost or misplaced devices and belongings quickly – even when they’re offline.

Maybe this line is being misinterpreted?

load more comments (1 replies)
[–] [email protected] 15 points 8 months ago (1 children)

It's mentioned in the linked article about Find My Device.

This is what it says

1. Locate offline devices

Locate your compatible Android phone and tablet by ringing them or viewing their location on a map in the app — even when they’re offline. And thanks to specialized Pixel hardware, Pixel 8 and 8 Pro owners will also be able to find their devices if they’re powered off or the battery is dead.

[–] [email protected] 13 points 8 months ago

I don't know that means Bluetooth will be running when the device is off. "Specialized hardware" could mean a full Bluetooth modem on backup power, but more likely it's means there's a low power beacon. Would be interesting if anyone does a teardown of the Pixel 8.

For non-Pixel 8 devices, definitely not. I assume "Offline" refers to the case where your device doesn't have WiFi/LTE, but can still use Bluetooth to communicate with devices that do.

load more comments (5 replies)
[–] [email protected] 34 points 8 months ago (3 children)

Didn't iPhone been doing it for years so you can still track your lost phone even if it's turned off?

But this is Android, I'm sure there'll be work around if you don't want it. Personally I think it could be helpful.

[–] [email protected] 9 points 8 months ago (1 children)

You turn it off. It says so in the link.

User Controls: Android users always have full control over which of their devices participate in the Find My Device network and how those devices participate. Users can either stick with the default and contribute to aggregated location reporting, opt into contributing non-aggregated locations, or turn the network off altogether.

load more comments (1 replies)
[–] onlinepersona 6 points 8 months ago* (last edited 8 months ago) (5 children)

Didn’t iPhone been doing it for years

You're trying to describe an action that has started in the past and is still taking place. "Didn't" is simple past which indicates a concluded action. The correct tense you'd want to use here is present perfect progressive --> "Hasn't iPhone been doing it for years".

Edit: Although, I missed the "been" in your sentence, so you just picked the wrong verb. Not too far off 👍

Anti Commercial-AI license

load more comments (5 replies)
[–] [email protected] 5 points 8 months ago (1 children)

I'm sure there'll be work around if you don't want it.

Take the battery out of the phone. No battery no energy to run bluetooth

[–] [email protected] 14 points 8 months ago (2 children)

phone batteries used to be removable on the user level. hasn't been that way in like 10 years.

[–] [email protected] 11 points 8 months ago

There still are phones that can do this, and from 2027, all phones sold in the EU must allow user-replacement of batteries.

load more comments (1 replies)
[–] [email protected] 30 points 8 months ago (1 children)

Pixel 7 with GrapheneOS is looking like a good long term choice right now.

[–] [email protected] 7 points 8 months ago (2 children)

Graphene is built on Android. If you enable all the gsf on graphene with android 15 it can probably still run in the background while off.

[–] [email protected] 20 points 8 months ago (1 children)

"Probably" is doing a lot of heavy lifting there.

load more comments (1 replies)
[–] [email protected] 7 points 8 months ago (1 children)

kinda what @[email protected] said, we should probably wait for graphineOS's expert opinion on the matter.

[–] [email protected] 25 points 8 months ago (2 children)
[–] [email protected] 11 points 8 months ago

Not a single mention in the article about whether Bluetooth is turned on or off.

Samsung has an opt in option for the Smart thing network. I guess Google will go the same route.

load more comments (1 replies)
[–] [email protected] 25 points 8 months ago

It seems like a waste of battery

[–] [email protected] 15 points 8 months ago (1 children)
[–] [email protected] 9 points 8 months ago (1 children)

Depends how it's implemented, my bluetooth "smartwatch" runs for around 2 years on a single CR2032.

load more comments (1 replies)
[–] [email protected] 13 points 8 months ago* (last edited 8 months ago) (2 children)

Can someone explain where the code for this will be located (aosp, gsf)? How can I make sure that it will never ever be activated? What Graphene's response? etc

[–] [email protected] 8 points 8 months ago* (last edited 8 months ago) (8 children)

it looks like its going to be a hardware feature. if the main CPU is off, it implies the radio circuitry and its CPU (the BBM) are still powered. give google this at least, the special new Bluetooth API will be accessible to whatever OS is alive and awake to send commands (even if I don't trust that "off" means "off"). the fact that its using encryption (that's too complicated to be made out of Integrated Circut logic) means its likely another software feature added to the BBM co-processor (it handles all radio tasks on the phone). this all but confirms the BBM (at least going forward) will still get power, be awake and have access to the (transmit (TX) and reseave (RX) functions of the) radios even when everything else is properly off.

EDIT: or it could be an abuse of a generic BLE beacon mechanism that's "just there for whatever the consumer would need it for". but if they are doing proprietary encryption like they claim, that's not really possible without updating the BBM's software to add another feature.

load more comments (8 replies)
[–] [email protected] 10 points 8 months ago

The question is: when a phone is turned off is it really turned off? The amount of software that needs to be running to manage Bluetooth leds to to believe they simply kill all applications (including the UI) and most services and leave the kernel and a few other things running. I might be wrong, but I would like to see some clarification on that.

[–] [email protected] 8 points 8 months ago (1 children)

You can turn off the phone???

load more comments (1 replies)
load more comments
view more: next ›