Vulnerabilities in Sogou Keyboard encryption expose keypresses to network eavesdropping.

    • Steeve@lemmy.ca
      link
      fedilink
      English
      arrow-up
      47
      arrow-down
      12
      ·
      edit-2
      1 year ago

      Every single time something sketchy is happening in Chinese tech a Lemmy user will slide the conversation and accusations to American tech. It’s a rule.

      • ZeroHora@lemmy.ml
        link
        fedilink
        English
        arrow-up
        19
        arrow-down
        6
        ·
        1 year ago

        Is not about American/Chinese government, is about privacy. ANY company or government storing your data can be extremely problematic in the future.

        Yeah the Sogou Keyboard send data to Tencent, the same thing happens or could happens with others proprietary keyboards in the future. How about trying a FOSS one?

        • Steeve@lemmy.ca
          link
          fedilink
          English
          arrow-up
          11
          arrow-down
          5
          ·
          edit-2
          1 year ago

          It’s absolutely about the American/Chinese government, I don’t see comments forum sliding into Chinese tech on every post about Google.

          But no, swift and gboard don’t send your data to the American government.

          There’s also a dangerous misconception around here that FOSS == privacy safe. It doesn’t.

          • Aurenkin@sh.itjust.works
            link
            fedilink
            English
            arrow-up
            2
            ·
            1 year ago

            There is also a differece between invading your privacy and compromising your security. Both are bad, but one is much worse at least in my view. Keylogging and then sending those keystrokes back to base with a dodgey custom rolled encryption framework is not just a breach of privacy.

      • SnowdenHeroOfOurTime@unilem.org
        link
        fedilink
        English
        arrow-up
        12
        arrow-down
        8
        ·
        1 year ago

        On all social media, that seems to happen and it makes me sick.

        People not knowing how scary the Chinese government is speaks volumes about the future of other countries. We had all the opportunity to see it happen and avoid it and these morons dismiss the truth and whatabout every damned thing

      • Aurenkin@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        Well, we have actual evidence here of dodgy shit happening, but what about this other thing I assume is also happening based on absolutely nothing? See, both just as bad!

        • Aurenkin@sh.itjust.works
          link
          fedilink
          English
          arrow-up
          30
          arrow-down
          4
          ·
          edit-2
          1 year ago

          Any data you submit to Google is stored and analysed. That’s different from sending keystrokes as they happen though.

          I’m all for criticising invasive data use and collection which Google is definitely guilty of. It’s not the same as keylogging though which is not just a privacy concern but a pretty serious security one as well. Also we have actual evidence here of Tencent doing this which makes a difference to me at least.

      • supercheesecake@aussie.zone
        link
        fedilink
        English
        arrow-up
        9
        arrow-down
        5
        ·
        1 year ago

        I’m not sure if that’s true. You know, it’s Google. Every keystroke in your gmail email is analysed, so can’t imagine gboard is any different to them.

    • fmstrat@lemmy.nowsci.com
      link
      fedilink
      English
      arrow-up
      7
      ·
      1 year ago

      While GBoard is closed source, they have documented that they use federated learning. Meaning their model is generated on-device and only the inferences are sent to Google.

      That being said, I use OpenBoard.

      • august_senpai@lemm.ee
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        The fork even has support for swipe, autocorrect, word prediction, clipboard management, etc, and is way more lightweight than Gboard and the rest. Zero reason to use anything else at the moment.

        • portside@monyet.cc
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          What’s the fork? I’ve been using Florisboard beta (ehich is also opensource) and pretty happy with it. The only things I miss is swipe for dictionary words

    • Engywuck@lemm.ee
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      Not if you block internet connection at system level. I think it can be done if GBoard in installed as an user app, not as a system one.

        • Engywuck@lemm.ee
          link
          fedilink
          English
          arrow-up
          1
          ·
          1 year ago

          Of course. My “problem” is that I need to write in 3 languages at the same time and switching languages manually in Open board is a bit cumbersome, while in GBoard it happens automatically.

    • SnowdenHeroOfOurTime@unilem.org
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      8
      ·
      1 year ago

      This “they’re all bad” shit aimed at the Chinese government makes me so sad. How many of you dullards have even heard of Tienanmen square

      • SnowdenHeroOfOurTime@unilem.org
        link
        fedilink
        English
        arrow-up
        7
        arrow-down
        4
        ·
        1 year ago

        The downvotes tell me some people need to Google Tienanmen square. From outside China. Inside china, it didn’t happen. Erases from history

        • addie@feddit.uk
          link
          fedilink
          English
          arrow-up
          8
          ·
          1 year ago

          It’s not called the ‘Tiananmen Square’ by the Chinese - that’s just the name of the place. Either 六四屠殺 (June 4 massacre) or 六四鎮壓 (June 4 crackdown) would be more likely. And yes, expect loads of downvoting on Lemmy if you’re ever critical of China.