In this report, we analyze the Windows, Android, and iOS versions of Tencent’s Sogou Input Method, the most popular Chinese-language input method in China. Our analysis found serious vulnerabilities in the app’s custom encryption system and how it encrypts sensitive data. These vulnerabilities could allow a network eavesdropper to decrypt sensitive communications sent by the app, including revealing all keystrokes being typed by the user. Following our disclosure of these vulnerabilities, Sogou released updated versions of the app that identified all of the issues we disclosed.
Vulnerabilities in Sogou Keyboard encryption expose keypresses to network eavesdropping.
It probably doesn’t though. Obviously it’s closed source making it harder to tell what’s actually happening, but there’s nothing stopping security analysts from looking at network usage and such. I would imagine that Google doesn’t install a keylogger on every Android phone, not out of the goodness of their hearts, but because they don’t want the bad publicity and lawsuits when it would inevitably be discovered.
they do collect usage stats by default though.
which include typed sentences passed through their ai model and words usage counts.
it can all be turned off and gboard seems to respect these options. it doesn’t access online services unless requested with these options off.
If you mean by “collect usage stats” train their AI model on-device and send the training result to Google, then yes. If you mean that the actual words get sent to Google’s servers, then no. There was a study shared recently that looked into this. Only metadata about what’s typed is sent. That’s not nothing of course, but it’s not what Tencent does at all.
Even if i had it, do you honestly think i would waste my life to be completely forgotten and left to rot for disclosing it like Snowden. Yep, no one will ever reveal anything after that shit show.
I’m going to guess you’re one of the people who defends tiktok and compares it to every other social media app by saying the US government is basically the same as the Chinese government
It seems, people can’t understand this. Am not American so i have an outside view that’s free from any patriotic feeling and spoon fed propaganda since childhood.
What the fuck are you talking about? This has nothing to do with America, the problem here is you’re falsely equating a horrifyingly authoritarian government and basically writing it off as the “sAmE aS gOoGlE”
How many times has the US military ever murdered 900+ protestors in broad daylight then censored it from all media and imprisoned anyone who talks about it decades later?
Educate yourself. Jesus fucking Christ.
For the record I don’t need to read more about the US government corruption, that’s known. The fact that you’re comparing the two is disturbing af
Starting with the native American or i don’t count it ?
I don’t know ? Is shooting a bus full of kids and laughing about it saying they’ll grow up to be terrorist anyway isn’t that far off and this is the tip of the iceberg buddy. USA is good at hiding murdering brown people by prefixing the word terrorists.
Ask the dude from Afghanistan that was randomly taken and tortured beyond belief for just being in the place in the wrong time. He was repeatedly raped with a broom and his pelvis shattered from getting kicked repeatedly on the groin area. Oh yeah, he died. How humans of them.
Several in fact. Most famously they bombed Tulsa oklahoma when black people there got too wealthy. But now multiple states are banning the teaching of it, alongside banning the teaching of our genocide of the Native Americans.
We do most of our murder of innocent people these days abroad though which isn’t really much better, but most Americans are apparently completely fine with children being murdered so long as they aren’t white and they aren’t here, or they aren’t in an American school being shot by one of their peers.
Did you read it ? Can you share the part with relevant info. I tried to read it but it kept going abouts how Gboard and the Microsoft keyboard both gather huge amount of data and that both are opaque and you can’t know what data is sent to the server backend.
Google doesn’t sell to data brokers. Not yet at least. They have a competitive advantage they will lose if they sold their data (our data) to third parties, especially third party resellers.
The people here acting like their Gboard doesn’t do the same is so funny.
Edit : never used nor installed tiktok.
It probably doesn’t though. Obviously it’s closed source making it harder to tell what’s actually happening, but there’s nothing stopping security analysts from looking at network usage and such. I would imagine that Google doesn’t install a keylogger on every Android phone, not out of the goodness of their hearts, but because they don’t want the bad publicity and lawsuits when it would inevitably be discovered.
they do collect usage stats by default though.
which include typed sentences passed through their ai model and words usage counts.
it can all be turned off and gboard seems to respect these options. it doesn’t access online services unless requested with these options off.
If you mean by “collect usage stats” train their AI model on-device and send the training result to Google, then yes. If you mean that the actual words get sent to Google’s servers, then no. There was a study shared recently that looked into this. Only metadata about what’s typed is sent. That’s not nothing of course, but it’s not what Tencent does at all.
E: Found it.
If you have any evidence that it does, it would be big news. Please share.
Even if i had it, do you honestly think i would waste my life to be completely forgotten and left to rot for disclosing it like Snowden. Yep, no one will ever reveal anything after that shit show.
I’m going to guess you’re one of the people who defends tiktok and compares it to every other social media app by saying the US government is basically the same as the Chinese government
deleted by creator
No it’s not a “warning,” it’s just boring old whataboutism.
The first part of your comment is like a textbook example of the fallacy.
I’m not so sure. The China apologists are in every thread like this and I don’t think it’s something to dismiss
It seems, people can’t understand this. Am not American so i have an outside view that’s free from any patriotic feeling and spoon fed propaganda since childhood.
I will now answer any questions that boils down to “but we’re the good guys” to “not American”
What the fuck are you talking about? This has nothing to do with America, the problem here is you’re falsely equating a horrifyingly authoritarian government and basically writing it off as the “sAmE aS gOoGlE”
I don’t know. What i read on Wikileaks made me believe they’re not that different you know. Go read it, it will open your mind.
How many times has the US military ever murdered 900+ protestors in broad daylight then censored it from all media and imprisoned anyone who talks about it decades later?
Educate yourself. Jesus fucking Christ.
For the record I don’t need to read more about the US government corruption, that’s known. The fact that you’re comparing the two is disturbing af
Starting with the native American or i don’t count it ? I don’t know ? Is shooting a bus full of kids and laughing about it saying they’ll grow up to be terrorist anyway isn’t that far off and this is the tip of the iceberg buddy. USA is good at hiding murdering brown people by prefixing the word terrorists.
And yet you won’t face life in prison for writing that. Yeah you’re right, SAME
Ask the dude from Afghanistan that was randomly taken and tortured beyond belief for just being in the place in the wrong time. He was repeatedly raped with a broom and his pelvis shattered from getting kicked repeatedly on the groin area. Oh yeah, he died. How humans of them.
Several in fact. Most famously they bombed Tulsa oklahoma when black people there got too wealthy. But now multiple states are banning the teaching of it, alongside banning the teaching of our genocide of the Native Americans.
We do most of our murder of innocent people these days abroad though which isn’t really much better, but most Americans are apparently completely fine with children being murdered so long as they aren’t white and they aren’t here, or they aren’t in an American school being shot by one of their peers.
No one is acting. It doesn’t do the same. There you have it.
Did you read it ? Can you share the part with relevant info. I tried to read it but it kept going abouts how Gboard and the Microsoft keyboard both gather huge amount of data and that both are opaque and you can’t know what data is sent to the server backend.
Also, ever heard of 5,9 and 14 eyes ?
Oh shit, Google is sending my stuff to China?
It depends. Ever heard of databrokers ?
Google doesn’t sell to data brokers. Not yet at least. They have a competitive advantage they will lose if they sold their data (our data) to third parties, especially third party resellers.