你的车正在监视你,从你的性生活到你走多快
2023-09-11 20:48阅读:
根据Mozilla的说法,汽车制造商收集的数据比他们需要的要多,分享并出售给其他人,他们的记录表明,他们的网络安全措施没有充分保护消费者。
作者:塞巴斯蒂安·贝尔
2023年9月10日08:30
在Mozilla的隐私研究团队研究过的所有产品类别中,汽车是最糟糕的。它所关注的所有25个品牌都因其对消费者数据的处理不当而获得了“不包括隐私”警告标签。
该研究发现,它所关注的所有品牌收集的数据都超过了运行其连接服务所需的数据。这使他们能够找到你可能期望的东西 -
你开车的地方,你走多快,你播放的歌曲 - 以及一些你可能意想不到的事情,比如关于你的遗传和性生活的信息 - 不开玩笑。
“日产因收集我们见过的一些最令人毛骨悚然的数据类别而排名倒数第二,”
Mozilla在其报告中指出。“值得完整阅读评论,但你应该知道它包括你的”性活动”。起亚也不甘示弱,还提到他们可以在他们的隐私政策中收集有关您的“性生活”的
信息。哦,还有六家汽车公司说他们可以收集你的“遗传信息”或“遗传特征”。是的,阅读汽车隐私政策是一项可怕的努力。
阅读:自动驾驶汽车就像警察车轮上的监控摄像头
几乎所有品牌(84%)都将
这些数据共享给第三方公司,如服务提供商、数据经纪人等。此外,76%的汽车制造商的隐私协议允许他们出售您的个人数据。超过一半的人表示,他们将根据请求而不是法院命令与地方政府和执法机构共享信息。
Mozilla发现
,雷诺和达契亚是仅有的两个表示所有司机都有权删除其个人数据的品牌。同时,其他人认为,如果您进入他们的车辆,您已经阅读并同意了隐私协议。更糟糕的是,一些品牌认为任何将智能设备连接到车辆的乘员都同意,一些品牌明确表示,车主有责任告知他们隐私协议。即使您阅读了隐私协议,也可能找不到您想知道的所有内容。
“尽管我们研究的汽车品牌都有几项冗长的隐私政策(
丰田以12个排前),但我们找不到任何品牌符合我们最低安全标准的确认,”Mozilla写道。“对我们来说,约会应用程序和性玩具比汽车发布更详细的安全信息,这对我们来说太奇怪了。
由于联网车辆保留了如此多的信息,因此令人震惊的是,它们的网络安全记录如此糟糕。Mozilla声称,回顾过去三年,68%的品牌因泄漏,黑客攻击和威胁驾驶员隐私的违规行为
而获得了“不良记录”。
更多:丰田数据泄露使超过二百万车主的车辆信息暴露了十年
尽管Mozilla关注的几乎所有汽车制造商都是汽车创新联盟的成员,该联盟支持良好的隐私政策,如数据最小化,透明度和消费者选择,但没有一个品牌真正遵循这些原则。
这个问题无处不在的真正问题是,它让消费者没有追索权。随着没有这些连接功能的汽车逐渐退出市场,将您的个人数据交给一家不小心处理它的公司几乎是不可避免的。
“我们研究的所有汽车品牌都得到了我们的'数据使用'和'安全'叮当声——大多数品牌都因为糟糕的数据控制和糟糕的跟踪记录而获得叮叮当当!”Mozilla写道。“对于整个
产品指南来说,获得警告标签是多么糟糕和不正常,我们怎么强调都不为过。
然而,Mozilla确实认为,通过向汽车行业施压,它可以被迫做得更好。让汽车制造商对数据泄露和过度挖掘负责,比如政府监管,可能会更有帮助。
Your Car Is Spying On You, From Your Sex Life To How
Fast You Go
According to Mozilla, automakers collect more data than they need,
share and sell it to others, and their track record suggests that
their cybersecurity measures do not adequately protect
consumers
by
Sebastien
Bell
September 10, 2023 at 08:30
Of all product categories that Mozilla’s team of privacy
researchers have ever examined, automobiles are the worst. All 25
brands it looked at earned its “Privacy Not Included” warning label
for their poor treatment of consumer data.
The study found that all of the brands it looked at collected
more data than necessary to run their connected services. That
allows them to find out things that you might expect – where you
drive, how fast you go, the songs you play – and some you might not
expect, such as information about your genetics and your sex life –
no kidding.
“Nissan earned its second-to-last spot for collecting some of the
creepiest categories of data we have ever seen,” notes
Mozilla in its report. “It’s worth reading the review in full,
but you should know it includes your “sexual activity.” Not to be
out done, Kia also mentions they can collect information about your
“sex life” in their privacy policy. Oh, and six car companies say
they can collect your “genetic information” or “genetic
characteristics.” Yes, reading car privacy policies is a scary
endeavor.”
Read:
Self-Driving Cars Are Like Surveillance Cameras On Wheels
For Police
Almost all of the brands (84 percent) share
that data to third party
companies such service providers, data brokers, and more. In
addition, 76 percent of carmakers’ privacy agreements allow them to
sell your personal data. Over half say they will share information
with local governments and law enforcement agencies in response to
a request, not a court order.
Mozilla found
that
Renault and Dacia were the only two brands that say all drivers
have the right to delete their personal data. Meanwhile, others
assume that if you enter their vehicle, you’ve read the privacy
agreement and consent to it. Worse still, some of the brands
assumed that any occupant who connects their smart device to the
vehicle has consented, and some explicitly say that it is the
owner’s responsibility to inform them about the privacy agreement.
Even if you read the privacy agreement, you may not find everything
you’d like to know.
“Even though the car brands we researched each had several
long-winded privacy policies (
Toyota wins with 12),
we couldn’t find confirmation that any of the brands meet our
Minimum Security Standards,” Mozilla wrote. “It’s so strange to us
that dating apps and sex toys publish more detailed security
information than cars.”
Since connected vehicles keep so much of your information, it’s
alarming that their track record for cybersecurity is so bad.
Mozilla claims that looking back at the last three years, 68
percent of brands earned its “bad track record”
for leaks, hacks, and breaches that threatened driver’s
privacy.
More:
Toyota Data Leak Left Over 2 Million Owners’ Vehicle
Information Exposed For A Decade
Even though almost every automaker that Mozilla looked at was a
member of the Alliance for Automotive Innovation, which espouses
good privacy policies such as data minimization, transparency, and
consumer choice, none of the brands actually followed those
principles.
The real problem with the ubiquity of the problem is that it leaves
consumers with no recourse. As cars without these connected
features slowly age out of the market, handing your personal data
over to a company that does not treat it with care will be almost
inevitable.
“All of the car brands we researched got our ‘data use’ and
‘security’ dings – and most earned dings for poor data control and
bad track records too!” Mozilla wrote. “We can’t stress enough how
bad and not normal this is for an entire
product guide to earn warning labels.”
However, Mozilla does believe that by pressuring the automotive
industry, it can be forced to do better. Keeping automakers
accountable for data breaches and over-mining with things like
government regulation may help even more.
TAGS INDUSTRY
REPORTS
STUDY
TEC
