privacy risks Archives

Winsage

February 27, 2026

Is Microsoft really spying on you with Windows telemetry?

Windows 10 was released in 2015 and faced criticism for its telemetry feature, which some viewed as a surveillance tool. In 2017, the Dutch Data Protection Authority found Microsoft's telemetry settings non-compliant with local privacy laws, leading to changes by Microsoft. Telemetry, termed diagnostic data by Microsoft, is essential for device reliability and security, with a baseline level of data collection set to "Required." Users can opt to limit data collection to this level. The Optional category of diagnostic data may include device settings and browsing history, raising privacy concerns. Microsoft introduced the Diagnostic Data Viewer in 2018 to enhance transparency, allowing users to inspect the telemetry data sent to them. As of now, Microsoft has over a billion monthly active Windows 11 users.

AppWizard

February 26, 2026

How Your Android Apps Keep Talking — Even When You’re Not Using Them

When connecting to public Wi-Fi, using a VPN is essential as it encrypts traffic and creates a secure tunnel between the device and a remote server, keeping activities concealed from the local network. Android devices continuously communicate in the background, performing tasks such as updating emails and syncing notes, which increases data visibility on public networks. Public Wi-Fi has become common due to remote work and shared spaces, leading to increased privacy risks as smartphones now store sensitive information like banking apps and personal photos. Users are encouraged to adopt simple security habits, including using a VPN when connecting to public networks. Android devices are always connected, making network-level protection important to safeguard background communications.

Tech Optimizer

February 25, 2026

Effective ways to prevent the download of malicious code

Malware is malicious software designed to disrupt normal system operations, often infiltrating devices through activities like web browsing or opening documents. In 2023, SonicWall Capture Labs reported over 6 billion malware attacks, an 11% increase from the previous year. Common types of malware include viruses, worms, Trojans, spyware, adware, ransomware, fileless malware, and bots. Malware spreads through email attachments, phishing links, compromised websites, fake apps, and removable media. Its effects can include performance issues, data theft, and financial damage. Signs of malware presence include sluggish performance, unexpected crashes, and unauthorized changes. Recommended actions if malware is suspected include disconnecting the device, running a malware scan, and changing passwords. Preventative measures include using security software, practicing safe browsing, keeping software updated, and building security awareness.

AppWizard

February 21, 2026

Unsecured AI apps are leaking personal data of Android users

Many unregulated or inadequately secured AI applications on platforms like the Google Play store pose significant privacy risks to users. A specific Android application, "Video AI Art Generator & Maker," linked to a data leak, compromised 1.5 million user images, over 385,000 videos, and millions of AI-generated media files due to a misconfiguration in a Google Cloud Storage bucket. Another app, IDMerit, exposed sensitive know-your-customer data from users in 25 countries, including full names, addresses, birthdates, IDs, and contact information, totaling a terabyte of data. Both developers addressed the vulnerabilities after being alerted by researchers. However, cybersecurity experts warn that lax security among AI applications is a widespread issue, with 72 percent of analyzed Google Play apps exhibiting security flaws, including the practice of "hardcoding secrets" in their source code.

AppWizard

January 28, 2026

Gemini keeps asking me to turn on Personal Intelligence, but I’m keeping it off

Gemini has introduced a feature called Personal Intelligence, which allows users to customize the data accessed from Google services like Gmail and Google Photos. This feature is opt-in and was launched on January 14. Users receive prompts to enable it and can choose to defer or start using it. Personal Intelligence replaces the previous feature, Personal Context, which is still active by default. Users can connect various Google apps to Gemini to enhance their experience, with the ability to control which data sources contribute to Personal Intelligence. Google emphasizes that app connections are off by default, and users have control over their data sharing.

Winsage

December 8, 2025

Microsoft’s AI Push in Windows Raises Privacy and Trust Concerns

Microsoft has integrated artificial intelligence (AI) into various components of its ecosystem, including the Windows operating system and productivity applications like Office and Teams. This integration has raised privacy concerns, particularly regarding features like Recall, which captures user activities. Microsoft postponed the rollout of Recall due to backlash over potential security risks. AI-driven advertisements and suggestions have also blurred the line between helpful tools and intrusive marketing, leading to debates about data ownership and ethical implications. Critics argue that Microsoft’s AI efforts do not align with user expectations and amplify privacy risks, especially with data collection practices in Bing and Edge browsers prompting regulatory scrutiny. Despite significant investments in AI, there are challenges in monetizing these advancements, as indicated by adjustments to sales growth targets. Microsoft has faced internal concerns about overbuilding infrastructure and the financial viability of scaling AI resources. While developers find promise in AI tools like Visual Studio and GitHub Copilot, which enhance workflows, there are associated risks such as security vulnerabilities. Microsoft acknowledges these dangers and advises caution among insiders testing new features. The company’s philosophical stance on AI emphasizes ethical development aligned with human values, although critics express concerns about the potential risks of rapid deployment without adequate safeguards. For customers, Microsoft’s focus on AI has led to frustrations due to bugs introduced by AI experiments and the unreliability of AI agents in enterprise settings. The company’s partnership with OpenAI aims for AI dominance, but questions remain about the technology's appeal to the masses. Microsoft must balance innovation with user-centric design while addressing privacy, security, and ethical concerns to maintain its leadership position in the AI landscape.

AppWizard

November 3, 2025

“Whatsapp Killer?” Elon Musk Reveals X Chat, a Bitcoin-Style Encrypted Messaging App

Elon Musk has announced a new messaging platform called X Chat, which prioritizes user privacy and security by utilizing a peer-to-peer encryption system similar to Bitcoin's technology. The app is currently being tested and is expected to launch in the coming months. X Chat will not include advertising hooks or collect user data for targeted advertising, aiming to eliminate privacy risks associated with such practices. It is designed to allow users to send text messages, share files, and conduct audio and video calls. Musk claims it will be more secure than existing messaging platforms like WhatsApp.

AppWizard

November 2, 2025

Tracking whatever you do: IIT study finds Android apps are gathering far more information than users think

A recent investigation by IIT Delhi found that Android applications with precise location access can gather extensive information about users, including whether they are indoors or outdoors, the presence of crowded environments, and details about room layouts and activities, without using the phone’s camera or microphone. The study, led by MTech student Soham Nag and Professor Smruti R Sarangi, utilized a system called AndroCon, which analyzes low-level GPS signals to detect user activity and contextual information. AndroCon achieved up to 99% accuracy in identifying surroundings and over 87% accuracy in recognizing human activities, including subtle gestures. The research highlights significant privacy risks, as applications with fine-grained location permissions can extract sensitive data without user consent. The findings were published in the ACM Transactions on Sensor Networks.

AppWizard

October 30, 2025

IIT study warns of privacy risks from location permissions on Android apps

A study by researchers at the Indian Institute of Technology (IIT) Delhi revealed that Android apps requiring precise location permissions can access extensive information about users' environments and activities. The research introduced AndroCon, a system that uses fine-grained GPS data to determine users' surroundings and activities without the need for cameras or microphones. It analyzes nine GPS parameters to identify whether a person is seated, standing, or lying down, and can recognize specific locations such as being on public transport or in a crowded area. The study demonstrated that AndroCon could achieve up to 99% accuracy in detecting surroundings and over 87% accuracy in recognizing human activities. The findings raise significant privacy concerns regarding the potential for apps to infer sensitive user information.

Tech Optimizer

September 5, 2025

New Malware Exploits Windows Character Map to Evade Defender and Mine Crypto

Darktrace's autonomous detection system identified suspicious activity when a desktop initiated an unusual HTTP connection using a PowerShell user agent. The attack began with the download of a PowerShell script named “infect.ps1” from the IP address 45.141.87[.]195:8000, which dropped both legitimate and malicious binaries into the user’s AppData directory, including a signed version of AutoIt.exe and various encoded payloads. The attackers exploited Windows’ built-in Character Map (charmap.exe) to inject the miner code into its process space, evading antivirus detection. The loader performed checks for task manager presence, user privileges, and antivirus software, and bypassed User Account Control prompts. Once activated, the cryptominer operated discreetly, connecting to external mining pools like asia.ravenminer.com and monerooceans[.]stream. The malware was designed for persistence, re-downloading itself if terminated. Darktrace monitored the infected device, noting DNS requests and connections to Monero mining endpoints, which triggered high-fidelity alerts. Darktrace's Rapid Autonomous Response blocked the device’s outbound communications, preventing the malware from connecting to the mining pool and stopping over 130 attempted calls to external endpoints. The malware exhibited significant obfuscation, utilized legitimate binaries for side-loading, manipulated registry keys for persistence, and injected processes into trusted Windows applications. The incident underscores the threat posed by adaptive cryptojacking malware, which can drain productivity and inflate energy costs. Darktrace's AI-driven detection intercepted the attack early, mapping the kill chain and enabling rapid mitigation. Indicators of Compromise (IoCs) include: - 45.141.87[.]195:8000/infect.ps1 – Malicious PowerShell script - gulf.moneroocean[.]stream – Monero Endpoint - monerooceans[.]stream – Monero Endpoint - 152.53.121[.]6:10001 – Monero Endpoint - 152.53.121[.]6 – Monero Endpoint - https://api[.]chimera-hosting[.]zip/frfnhis/zdpaGgLMav/nbminer[.]exe – NBMiner executable - Db3534826b4f4dfd9f4a0de78e225ebb – NBMiner loader hash