Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I've seen examples of encrypted payloads being sent to various third parties on the internet, it would be very time consuming to try and determine what that data actually is.

In my opinion, the OS should let you deny the "internet" permission on any app, no reason why it should need it if I don't want to risk my data being uploaded without my consent.



I've seen examples of encrypted payloads being sent to various third parties on the internet

Do you mean sent via https or encrypted in JavaScript before transmission? If the former, that’s pretty par for the course.

it would be very time consuming to try and determine what that data actually is.

It would be easy for a researcher who wants to answer the question: what data is it?

JavaScript debugger + breakpoints.


You can just use GDPR and CCPA to demand the data they have on you if you want to find out.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: