Microsoft Shares Windows 10 Telemetry Data With Third Parties (betanews.com) 175
An anonymous reader shares a report: To help with the smooth running of Windows 10, and to get an idea of how users interact with the operating system, Microsoft collects telemetry data, which includes information on the device Windows 10 is running on, a list of installed apps, crash dumps, and more. Telemetry data recorded by Windows 10 is, in a nutshell, just technical information about the device the OS is on, and how Windows and any installed software is performing, but it can occasionally include personal information. If you're worried about that, the news that Microsoft is sharing telemetry data with third parties might concern you. Microsoft recently struck a deal with security firm FireEye to provide access to Windows 10 telemetry data, in exchange for having FireEye's iSIGHT Threat Intelligence technology included in its Windows Defender Advanced Threat Protection service. WDATP is an enterprise security product that helps enterprises detect, investigate, and respond to advanced attacks on their networks and is different from the free version of Windows Defender. The upsides of the deal are obvious for both Microsoft and FireEye, and enterprise customers will certainly benefit from the partnership. It's not known exactly what data Microsoft has made available to FireEye, but in a detailed TechNet article on its telemetry gathering the software giant originally said: "Microsoft may share business reports with OEMs and third party partners that include aggregated and anonymized telemetry information. Data-sharing decisions are made by an internal team including privacy, legal, and data management."
Shocking turn of events (Score:3, Insightful)
...not really, you buy their product and then they sell you as a product.
I bet Airbus use Windows 10 (Score:1)
It's a trustworthy operating system.
Re: (Score:2)
I bet Airbus already share critical information with FireEye. A lot of major multi-nationals do.
Although I would never trust them.. (Score:2)
Re: (Score:2)
"You can change the level under Diagnostic and usage data and also set the Feedback frequency to Never if you simply want to opt out."
Re: (Score:2)
Re:Although I would never trust them.. (Score:5, Insightful)
"You can change the level under Diagnostic and usage data and also set the Feedback frequency to Never if you simply want to opt out."
To be frank, I don't believe you can actually "opt-out" of the monitoring and telelmetry, no matter what they claim.
I bet you could turn off every single telemetry-related setting and disable all of the "Diagnostic and usage data" widgets, and Windows would still be found to be sending all sorts of info back to Microsoft.
I just don't believe a word Microsoft says about monitoring or not monitoring users anymore, period.
Re: (Score:3)
Correct. That's just "Feedback frequency". You can't opt-out of telemetry completely, according to their own settings. You can only set "Diagnostics and usage data" to "Full (recommended)", "Enhanced", or "Basic."
This is the part that really bothers me. I'm completely fine with whatever default settings there are, but users should be able to turn it off. It wouldn't have even hurt Microsoft, since most people wouldn't have bothered, but instead they feel the need to force some minimal levels of data co
Re: (Score:2)
Re: (Score:2)
Is there any way to verify Microsoft isn't keylogging?
I doubt it. Perhaps by logging all the outbound traffic and inspecting it closely, but if they've encrypted it or obfuscated it in some way then you might not spot it. In short, I don't think you can trust MS with your sensitive info no matter what they say.
I do think that what you're doing,using a VM in Ubuntu, is probably pretty secure,
Re: (Score:2)
The lowest Microsoft will permit you to go is Basic unless you are using Enterprise Edition. If you are using Home or Pro, you cannot shut off Telemetry, nor can you shut off updates.
Re: (Score:1)
They do. FTFA: "You can change the level under Diagnostic and usage data and also set the Feedback frequency to Never if you simply want to opt out."
Which you will have to remember to RE-SET Every single time there's an Update, Security Patch, or it's Tuesday.
Re: (Score:1)
Re: (Score:2)
Re: (Score:1)
You cant even write to a TEXT FILE on Android without downloading an app from the store, with all its could features and telemetry...Android still doesnt have a file manager that Google is willing to show to users (its hidden). They tried removing the ability to read/write ext3/4 on Chrome...Google is the new MS.
Wait! I thought one of the Fandroids complaints about IOS was lack of access to the filesystem via a built-in file manager.
Now you're telling me that Android doesn't have a user-accessible File Manager either???
Re: (Score:2)
Re: (Score:1)
"It has been an evil company from day 1"
Evil or not they were able to build MS into one of the most successful and influential companies in the world. Their dominance was achieved by building a platform that ran on commodity hardware instead of Apple's proprietary hardware model. Early non-MS application competitors willingly sold their technologies to MS instead of trying to compete. Word Perfect, Lotus 1-2-3, and the Borland application development stack are just a few examples. Netscape dominated the bro
Re: (Score:3)
They do. It's enterprise edition. Currently only available to companies with Software Assurance, but they are apparently planning on making it available to us plebes on a subscription basis ($8/month, I believe)
Re: (Score:3)
Re: (Score:2)
True, but then you're promising to only use the licenses for development purposes. MSDN subscriptions are not permitted for production (ie: end user) user.
Re: (Score:1)
...it is too bad they do not offer a paid version of the OS without the spyware. This behavior is the best thing to happen for Apple sales in a long time.
I agree.
Apple not only doesn't care to market user data, it has additionally found that PRIVACY is actually a marketable and DISTINGUISHABLE FEATURE.
Re: (Score:2)
You pay equivalent prices to get equivalent products from Apple's competitors, Hateboi. What Apple doesn't do is make $400 POS specials.
Re: (Score:1)
Re: (Score:1)
Even low end machines run very well with Gnome3/Unity/Cinnamon (and there's XFCE, if needed...): no need to buy overpriced stuff to run real OSes
Real OSes without real Application support, you mean...
Re: Although I would never trust them.. (Score:1)
Re: (Score:1)
You still live in the early 2000's? It's 2016: even virtualization (if needed) runs well on low end hardware now
Oh, for example, has Adobe ported their apps to Linux, and if so, which Distro?
And if you are talking about running stuff under WINE (since we all know the answer to the question regarding Adobe Creative Cloud running directly on Linux), the answer still appears to be "not so much" [quora.com]...
Re: (Score:1)
VMware player...
That's no more "not running Windows" than it would be to use BootCamp, Parallels, or VMWare Fusion on a Mac.
Being "Free from Windows" MEANS JUST EXACTLY THAT. WINE Counts (but it will never "catch up"); but Virtualization and dual-booting does NOT, regardless if you are dual-booting on a "Wintel" machine that you consider a "Linux machine", or a Mac that you consider a "macOS" machine.
Re: (Score:2)
You pay equivalent prices to get equivalent products from Apple's competitors, Hateboi. What Apple doesn't do is make $400 POS specials.
There is a special kind of PC user. For some reason he has to hate the competition. As you noted, if you are going to buy a comparable product, you will pay a comparable price.
Unfortunately, these guys think that it is somehow appropriate to compare the cheapest Black Friday Windows machine as an exact equivalent of a Mac Pro. And tryinf to reason with them is like talking to post-truth acolytes.
Re: (Score:2)
Standard-issue Hateboi selective comparison, more likely. Sure, your ASUS has a faster processor - and is two pounds heavier, or has a cheap display, or half the battery life, etc etc. SSDD.
Re: (Score:2)
Utter BS. My laptop is FAR superior to any Macbook and cost significantly less.
What is it?
Re: (Score:2)
Alienware 17 (2016)
Core i7 6820HK @ 4.1GHz 32GB DDR4 RAM GeForce GTX 1060 w/6GB GDDR5 VRAM 17" 3840x2160 matte IPS display 500GB SSD 1TB 7200 RPM SATA HDD
Total cost was about $2300.
I understand. Cheaper than a mac by a factor of 100. My bottom level ipad air cost me my entire life's savings,
Re: (Score:2)
A desktop replacement that weights as much as two Macbook Pro's put together? So much for comparing comparable products.
Re: (Score:2)
Far be it from me to begrudge someone the occasional sarcastic remark, but that doesn't explain why you tried to bring a wildly different product when the subject is comparable products.
Then don't fucking buy one. Buy whatever it is you want that does what you want. Do you hang around car lots and sneer at anyo
Re: (Score:2)
Basically ignoring the fact that Apple does not compete in every segment of the market, and then chugging Hatorade over it. I said equivalent products for equivalent prices for a reason. That Apple doesn't make a 6 lbs gaming laptop with SLI graphics cards does not mean their 15" laptop sucks. It means they don't have an equivalent product in that segment.
Re: (Score:2)
No, it means they don't compete in the $400 POS special or 8 lbs desktop replacements the way Dell does, Hateboi. Do you think that the Prius is an overpriced car and Toyota is a shit company because they don't compete in the dually diesel pickup truck market?
Re: (Score:2)
Basically every high end windows product blows an equivalently priced mac out of the water. Thats why everyone has spent the last few years complaining about apple, and why the latest refresh has been such a disappointment for people.
...and that must by why the latest refresh of the MacBook Pro are breaking all Sales Records [appleinsider.com], right?
Re: (Score:2)
To get Mac OS, you have to buy a heavily overpriced computer.
My overpriced 2006 Black MacBook (yes, I paid the extra $200 for the black version) is still ticking along. Running Mint Linux instead of Mac OS X. If I wanted to, I can install Windows 10 and it run just fine.
Re: (Score:1)
Re: (Score:2)
... but MacOS, the SO the hardware was made for, bring your machine to it's knees, no?
I still have a Snow Leopard OS X partition that works fine. However, since Apple stopped supporting 32-bit processors, third-party updates for 32-bit software stopped coming. Since the web browser is my primary tool, I installed an OS that supported 32-bit processors for security updates.
Re: (Score:2)
If the web browser is your primary tool, why do you post here?
Slashdot exists to keep me amuse while I'm waiting for a script to finish running at work. I loved trolling the trolls.
Re: (Score:2)
Five bucks says you can't get Win 10 running on that hardware without resorting to a VM.
Pay up! See 5:15 of the YouTube link.
The 8-Bit Guy: Is it Obsolete - The Core Duo MacBook?
https://www.youtube.com/watch?v=FJw8aSxEFwQ [youtube.com]
Re: (Score:2, Insightful)
That means they would have to loudly announce they have a spyware version.
As it is, the vast majority of people don't know Windows is sharing their data. They just know Windows 10 forced itself on to their computer and kinda sucks.
Re: (Score:2, Insightful)
I expect that they will introduce a subscription model next (they wanted to do this fore Windows 7, IIRC, but was axed because they Ballmer didn't have to cojones to pull it off), or an a la carte Windows licensing model, where you only pay for the features you want (which sounds great in theory, but only means that you'll end up paying 3x more for the feature you already have now).
Uh, no, Microsoft just realized that:
a) PCs are a declining market
b) PCs remain viable far longer than they used to
c) Very few Windows users upgrade their OS - they "upgrade" when they buy a new computer
d) The world is going mobile, multi-platform, and cloud-based
All this means that it's better for MS to just sell (it's no longer free, in case you forgot) one perpetually-updating version of Windows to reduce long-term support commitments, and to encourage as many people as possible to get on board. Windows
Re: (Score:2)
Booth your examples are badly incorrect (government of Venezuela can be socialist only in the name, like in "Democratic Republic of North Korea" or the name of the nazi party in Germany before WWII)
Re: (Score:1)
Re: Although I would never trust them.. (Score:1)
Re: (Score:2)
Duh (Score:1)
Of course they do. (Score:5, Insightful)
Duh.
Flabberghasted! (Score:2, Interesting)
---
Windows 10--the world's first Freemium OS!
Re: (Score:3)
You can change the level under Diagnostic and usage data and also set the Feedback frequency to Never if you simply want to opt out.
Re: (Score:1)
Re: (Score:2)
Re:Flabberghasted! (Score:5, Informative)
Except that's not true (unless Microsoft has changed their minds again).
The lowest Microsoft will permit you to go is Basic unless you are using Enterprise Edition.
Re: (Score:1)
Go figure... (Score:2)
Re:Go figure... (Score:5, Informative)
I found it funny that the Windows 10 Anniversary Update can't install on any of my systems at home because the updater thinks my SSD's are USB sticks and it won't install on USB sticks.
That's a problem with the firmware on SSD's that were released to work with the Windows 7 broken SSD support. SP1 fixed SSD support unfortunately the workaround used by the SSD manufacturers for pre SP1 made them appear as removable devices. Most SSD manufacturers released firmware updates to address the issue. I would check to see if there are firmware updates for yours even if you don't intend to upgrade to windows 10.
Re: (Score:2)
Most SSD manufacturers released firmware updates to address the issue.
No firmware update available for my SSD model that came out last year. Windows 10 was already installed on the hard drive before I got the SSD drives. I had no trouble migrating from HDD to SSD.
Re: (Score:2)
Most SSD manufacturers released firmware updates to address the issue.
No firmware update available for my SSD model that came out last year. Windows 10 was already installed on the hard drive before I got the SSD drives. I had no trouble migrating from HDD to SSD.
Try switching the SSD from AHCI to legacy IDE mode in the BIOS and see if the installer will accept it. No chance that the installer will see it as removable if its in IDE mode. If it works, before switching back to AHCI set HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\storahci\StartOverride from 3 to 0, or the system might not boot
Re: (Score:1)
Most SSD manufacturers released firmware updates to address the issue.
No firmware update available for my SSD model that came out last year. Windows 10 was already installed on the hard drive before I got the SSD drives. I had no trouble migrating from HDD to SSD.
Try switching the SSD from AHCI to legacy IDE mode in the BIOS and see if the installer will accept it. No chance that the installer will see it as removable if its in IDE mode. If it works, before switching back to AHCI set HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\storahci\StartOverride from 3 to 0, or the system might not boot
Wow! Windows is making installing LINUX look easy!
Re: (Score:2)
Wow! Windows is making installing LINUX look easy!
You obviously haven't attempted a Linux Distribution install in a long time. Now-day's even Debian has a pretty straight-forward "click Next a bunch of times" Installer.
Rest In Peace Ian Murdock
Microsoft does respect user privacy (Score:5, Informative)
I was a software engineer in Windows Client, back in the good old Vista days. Microsoft's telemetry relies on Event Tracing for Windows (ETW), the lowest latency logging mechanism possible in the operating system, and the ETL files produced therein are usually post-processed by a performance analyst or software engineer to review timing, call stack, and memory utilization. Older OS tools like Dr. Watson were components of the Windows Customer Experience Program, and we would get crash dumps and other data from people who opted in.
Once, I wanted to look directly at a willing customer's machine remotely so I could gather some more information and do a debugging session. Remember, this was a willing customer who volunteered for this in his crash report. To do this, I had to go to a special training class on privacy and get permission from my management chain, just to look at the crash dump info.
This except is from Microsoft's current telemetry policy, found here: https://technet.microsoft.com/itpro/windows/manage/configure-windows-telemetry-in-your-organization
These are the same policies we had to follow then. We really had to follow them, or be fired. It's real.
However, before more data is gathered, Microsoft’s privacy governance team, including privacy and other subject matter experts, must approve the diagnostics request made by a Microsoft engineer. If the request is approved, Microsoft engineers can use the following capabilities to get the information:
Ability to run a limited, pre-approved list of Microsoft certified diagnostic tools, such as msinfo32.exe, powercfg.exe, and dxdiag.exe.
Ability to get registry keys.
All crash dump types, including heap dumps and full dumps.
Re: (Score:1)
How does this apply to them wholesale sending data to 3rd parties who are not subject to their internal policies?
Re: (Score:2)
How does this apply to them wholesale sending data to 3rd parties who are not subject to their internal policies?
Who said anything about wholesale data?
From what anyone knows they are getting part of the telemetry data. What does that mean? No one knows, because we don't even know what's being collected in the first place.
Re:Microsoft does respect user privacy (Score:5, Insightful)
Re: (Score:2)
If Microsoft did respect user privacy, then Microsoft would not collect the telemetry data in Windows 10 and subsequently sell that data to third parties.
Not all data is equal. You want to share crash reports of mine? Go ahead. You want to share what's currently on my screen? GTFO!
All we know is that in the grand scheme of things we know nothing because we don't know what is collected, we don't know how it is anonymised, and we don't know what or how it's shared.
They could be protecting your privacy very well. They could also be sharing videos of you naked at your computer along with your name and telephone number.
Re: (Score:1)
FYI: Crash dump may contain system memory, including the webcam.
Re: (Score:3, Insightful)
The bullshit floweth over. If MS is so concerned with privacy, then why can't I as a paying customer shut the fucking telemetry off?
Privacy only works as a policy implemented from top to bottom with no holes in between. I don't give two flying fucks whether you had to go to a "special training class". That just enforces the fact that the wall you speak of was indeed the strongest link in the entire privacy chain.
The weakest? Do I even need to say it? Constantly sending data over the public internet to
Re: (Score:1)
I don't know how this got modded up as high as it has. Your statement is not much more than 'selective' ancient facts mixed with 'selective' current facts and blended into a nice little story that doesn't represent any of the real facts.
I was a software engineer in Windows Client, back in the good old Vista days
That doesn't qualify you to say squat about windows 10. That's no better than saying "I was a mechanic back in the good old Model T days" like it gives you any expertise to comment on a modern fuel-injected auto mobile when all you've ever worked on are carburetors and cra
Re: (Score:2)
This is a good time to mention https://blogs.technet.microsof... [microsoft.com]
MS at least does have an attempt to protect privacy in crash dumps (dating long before Win10 BTW): https://blogs.msdn.microsoft.c... [microsoft.com]
Re: (Score:2)
I was a software engineer in Windows Client, back in the good old Vista days. Microsoft's telemetry relies on Event Tracing for Windows (ETW), the lowest latency logging mechanism possible in the operating system, and the ETL files produced therein are usually post-processed by a performance analyst or software engineer to review timing, call stack, and memory utilization. Older OS tools like Dr. Watson were components of the Windows Customer Experience Program, and we would get crash dumps and other data from people who opted in.
Once, I wanted to look directly at a willing customer's machine remotely so I could gather some more information and do a debugging session. Remember, this was a willing customer who volunteered for this in his crash report. To do this, I had to go to a special training class on privacy and get permission from my management chain, just to look at the crash dump info.
This except is from Microsoft's current telemetry policy, found here: https://technet.microsoft.com/... [microsoft.com]
Ability to run a limited, pre-approved list of Microsoft certified diagnostic tools, such as msinfo32.exe, powercfg.exe, and dxdiag.exe.
Ability to get registry keys.
All crash dump types, including heap dumps and full dumps.
Nice try Microsoft Shill - DEFAULT "privacy" settings for Windows 10 grants MS this access. There is no OPT-IN or people explicitly granting anything there is only an IMPLICIT reliance on IGNORANCE.... You know those foolish enough to buy a computer and just use it as-is. They "deserve" what they get right?
There is no dialogue or prompt or message the user sees to control or approve of explicit data being EXFILTRATED from their systems WITHOUT THEIR KNOWLEDGE. You don't even obtain EXPLICIT CONSENT. Wha
Re: (Score:2)
Is this 2.0 version of "security through obscurity"...now it's "security through anecdote"?
Re: (Score:1)
For microsoft to force users to surrender telemetry data, and then have the audacity to claim that they respect user privacy, is beyond the pale. You are completely and utterly out of touch with reality. The very fact that you have the opportunity to access users' data without their express permission is the problem; what you do with that data once you've taken it is beside the point.
Re: (Score:2)
Policies are for the little people... like you.
If the EULA basically translates to, "We do what the fuck we want and we can change our minds at any time and you automatically agree to said changes without even seeing them", then I'm not dealing with such a company.
Re: (Score:2)
These are the same policies we had to follow then. We really had to follow them, or be fired. It's real.
While I have no reason to believe the veracity of your story, I will take it at its face value and give you some advice: The reason you were made to go to the class about privacy and such is because you are an engineer. This data is not for you. If you had been in marketing, the same data would have been available to you but without all of those pesky controls.
Overblown comments on this story! (Score:1)
I don't see an issue here. This company is no different than AVG and Kaspersky when it comes to anti-virus services. Both AVG and Kaspersky collect info to better detect threats. The new anti-virus feature that will be implemented into DEFENDER will greatly help against cyber threats. I doubt MS is monetizing your personal data. Regardless of what the patriot act says It's illegal for any company to take what ever is on your hard drive(personal files) and sell it to third parties.
Re: (Score:1)
any serious business had really used this shit? I think not...
Re: (Score:2)
This company is no different than AVG and Kaspersky when it comes to anti-virus services.
It's very different. With software from AVG or anyone else, you have a choice. If you object to their collection practices, you can simply not use their software. That's not really the case with Windows for most people. You're locked in, and you can't turn the collection off.
Re: (Score:2)
For the most part, they do keep SQM and crash dumps etc separate from ad tracking though.
I'm worried, but not concerned (Score:2, Insightful)
If you're worried about that, the news that Microsoft is sharing telemetry data with third parties might concern you.
I'm worried about this, but not concerned, because my worry motivated me to drop Microsoft entirely.
Re: I'm worried, but not concerned (Score:2)
You only just now decided to do that? I jumped off that sinking ship known as XP when the dark storm known as Vista started approaching and became too close for comfort. This was 2004-2006... there was a brief transition period during tht time when I was dual-booting but almost always using Linux, but since I blew away those NTFS partitions I never looked back. It's been great.
Re: (Score:1)
You only just now decided to do that? I jumped off that sinking ship known as XP when the dark storm known as Vista started approaching and became too close for comfort. This was 2004-2006... there was a brief transition period during tht time when I was dual-booting but almost always using Linux, but since I blew away those NTFS partitions I never looked back. It's been great.
And I've never OWNED a Windows-based computer. My only experiences with them have been through employers, or others that asked me to troubleshoot their (many and varied) Windows issues.
For that, I am forever grateful that I don't have to deal with that crap on my Apple gear. Because I am their Customer, not their Product.
Spybot Anti Beacon (Score:2)
Just get Spybot anti beacon, and you're good to go, no more phoning home.
Re: (Score:2)
FireEye has a product called iSIGHT?? (Score:2)
Hope they've put aside some money to defend against a lawsuit from Apple
"Telemetry" Is More Than It Sounds... (Score:1)
Telemetry data recorded by Windows 10 is, in a nutshell, just technical information about the device the OS is on, and how Windows and any installed software is performing, but it can occasionally include personal information.
That bit "about any installed software," includes per Microsoft's own documentation on the mandatory Basic telemetry level [microsoft.com]:
App usage data. Includes how an app is used, including how long an app is used, when the app has focus, and when the app is started
So basically a record of every p
Re: (Score:2)
Mod parent informative.
Surprised there is so much to share (Score:1)
Microsoft Shares Windows 10 Telemetry Data
Back when I used Windows there were many times I wanted to throw the computer across the room, but I never actually did it...
Windows 10 must be one hell of an update.
Use Shut Up Windows 10 (Score:2)
If you're on Win 10 and you care, use Shut Up Windows 10 ( https://www.oo-software.com/en... [oo-software.com] ).
You'll have less telemetry than Windows 7 or 8, MacOS, and probably Ubuntu (I forget, are they spying this month or not?).
Re: (Score:2)
If you're on Win 10 and you care
Those two are mutually exclusive. If you care about your privacy, you aren't on Windows 10.
Re: (Score:2)
You use what you need to. Sometimes I use Windows, sometimes I use BSD, sometimes I use MacOS, sometimes I use Debian, sometimes CentOS yadda yadda yadda. The craftsman skill is to know the strengths and weaknesses of each one and how to fix them. They're all sgreat in various ways and all shit in various ways and they can all be redeemed if you know how.
Or you can just hold your nose and be RMS tootling his recorder while dancing in a tutu.
Only use Microsoft for games (Score:2)
Using normal user data to help enterprise. Strange (Score:2)
Ever notice? (Score:2)
The post truth is strong in the Slashdeflectors.
As proof, watch this get modded down as flamebiat or troll in 3..2..1..
Enterprise customers benefit? (Score:2)
The only thing enterprise customers benefit from is the ability to turn it off.
Re: (Score:1)
How many times do you see "In order to better serve our customers....." , and how many times do you believe it?
Re: (Score:2)
Re: (Score:3, Insightful)
If it were up to me, stories about Windows spyware would be in the news constantly. Why shouldn't it be? Do you want people to forget that it's there?
Re: (Score:1)