(I know many of you already know it but this incident I experienced made me so paranoid about using smartphones)

To start off, I’m not that deep into privacy rabbit hole but I do as much I can possibly to be private on my phone. But for the rest of phones in my family, I generally don’t care because they are not tech savvy and pushing them towards privacy would make their lives hard.

So, the other day I pirated a movie for my family and since it was on Netflix, it was a direct rip with full HD. I was explaining to my family how this looks so good as this is an direct rip off from the Netflix platform, and not a recording of a screening in a cinema hall(camrip). It was a small 2min discussion in my native language with only English words used are record, piracy and Netflix.

Later I walk off and open YouTube, and I see a 2 recommendations pop-up on my homepage, “How to record Netflix shows” & “Why can’t you screen record Netflix”. THE WHAT NOW. I felt insanely insecure as I was sure never in my life I looked this shit up and it was purely based on those words I just spoke 5min back.

I am pretty secure on my device afaik and pretty sure all the listening happened on other devices in my family. Later that day, I went and saw which all apps had microphone access, moved most of them to Ask everytime and disabled Google app which literally has all the permissions enabled.

Overall a scary and saddening experience as this might be happening to almost everyone and made me feel it the journey I took to privacy-focused, all worth it.

      • davel [he/him]@lemmy.ml
        link
        fedilink
        English
        arrow-up
        0
        ·
        23 days ago

        Exactly, it is “A community of privacy and FOSS enthusiasts, run by Lemmy’s developers,” and not a community for spreading nonsense like Google secretly listening to your conversations to better recommend YouTube videos to you.

  • The 8232 Project@lemmy.ml
    link
    fedilink
    arrow-up
    0
    ·
    edit-2
    24 days ago

    First off, if you’re concerned about phone privacy, consider a custom OS for your phone that respects privacy such as GrapheneOS.

    It’s easy to figure out that your device isn’t listening to a constant audio stream 24/7, since that would drain battery and send a lot of noticeable data over the network. However, it is entirely possible to listen for certain keywords as you mentioned, and send them encrypted with another seemingly legitimate packet. There’s no way to be 100% certain, but it is possible in theory without draining too much battery.

    The steps you took are good, making sure that apps don’t have any permissions they don’t need. Privacy is a spectrum, so it’s not “all or nothing”. As I mentioned before, if you’re seriously concerned about mobile privacy and want a solution, you can get a custom operating system that can remove any privacy invasive elements. GrapheneOS also allows you to disable the camera and microphone system-wide (although this functionality is present on some other Android builds).

    If it eases you any, a lot of these advertisements happen to be coincidence and trigger confirmation bias. It could be that those ads happened to show up by coincidence, or that advertisers managed predicted your interests, or that you got tracked by some other means while downloading the movie. The possibilities are nearly endless.

    • bruce965@lemmy.ml
      link
      fedilink
      arrow-up
      0
      ·
      24 days ago

      You should install Rethink and see how much garbage your phone constantly transmits and receives. And this is not even a kernel-level firewall, so who knows how much data Google actually exfiltrates…

      I don’t know about a constant audio stream, nor about keywords, but I noticed that Google Keyboard sends out some data every time you type anything. It’s not even that subtle.

      • The 8232 Project@lemmy.ml
        link
        fedilink
        arrow-up
        0
        ·
        24 days ago

        If anything, I love GrapheneOS for its “Network” permission toggle. It’s nice knowing that my keyboard (or any other unnecessary apps) can’t phone home.

        • bruce965@lemmy.ml
          link
          fedilink
          arrow-up
          0
          ·
          24 days ago

          GrapheneOS is certainly on my wishlist too, but Pixels are quite pricey. I guess Rethink is the poor man’s version. Just a per-app firewall.

          • EngineerGaming@feddit.nl
            link
            fedilink
            arrow-up
            0
            ·
            24 days ago

            Maybe Divest/Lineage could be an option instead. Although you have to choose a device wisely (and even among supported ones, some have trouble unlocking the bootloader), there is a chance you’d find a suitable cheaper one.

            Personally no regrets spending $300 on a Pixel 7a but still painful to hand over this much.

  • Synapse@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    edit-2
    24 days ago

    This may be a simple coincidence. Maybe you had similar YouTube suggestions in the past but you didn’t pay attention because they come at random times. Like if you drive a Honda Civic, you tend to spot all the Honda Civic in the street.

    There would be an interesting experiment to make though:

    1. Take a snapshot of your YouTube recommandations
    2. Choose a subject that has nothing to do with any of the recommandations, let’s say “travel to the Bahamas”
    3. Hold a conversation with someone with both your phone’s present, mention several time going to the Bahamas.
    4. Check YouTube again, si if the topic of Bahamas is appearing.
    5. Choose another topic not covered by your recommendations, let’s say collecting stamps
    6. Put your phones away, have a conversation about collecting stamps
    7. Check YouTube recommandations
    • Kanzar@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      24 days ago

      The problem comes is the suggestion of travelling to destination X (in your case, the Bahamas) doesn’t just pop up out of thin air - friends may have travelled there recently, perhaps there has been a recent advertising push, etc.

      Another family member looking up some destinations to travel, then speaking with you later - same external IP of the home wifi being reported, bam you get advertised the destinations they looked at the most.

      Choosing a “random” topic again also doesn’t come out of thin air.

  • Broken@lemmy.ml
    link
    fedilink
    arrow-up
    0
    ·
    24 days ago

    I’ll second the recommendation for GrapheneOS. One of the available options I use is to keep mic, camera, and location off at all times until I need them. That simple toggle ability changes your privacy stance greatly.

    • Tehdastehdas@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      22 days ago

      A phone can notice when it’s in the hands of a security expert and start acting normal. Before dieselgate, Volkswagen cars had been emissions tested for years without finding anything suspicious. Turned out VW used the car’s sensors to detect when it was being tested.

      • ganymede@lemmy.ml
        link
        fedilink
        arrow-up
        0
        ·
        edit-2
        22 days ago

        correct.

        the level of unsubstantiated cope in this thread is mind boggling. from people many of whom should honestly know better.

    • ganymede@lemmy.ml
      link
      fedilink
      arrow-up
      0
      ·
      edit-2
      24 days ago

      no, they don’t

      Please be careful with your claims.

      In my experience, whenever investigating these claims and refutations we usually find when digging past the pop media headlines into the actual academic claims, that noone has proven it’s not happening. If you know of a conclusive study, please link.

      Regarding the article you have linked we don’t even need to dig past the article to the actual academic claims.

      The very article you linked states quite clearly:

      The researchers weren’t comfortable saying for sure that your phone isn’t secretly listening to you in part because there are some scenarios not covered by their study.

      Will you take a moment to reflect on which factors may have contributed to your eagerness to misrepresent the conclusions of the studies cited in your article? (Genuine question)

      • .Donuts@lemmy.world
        link
        fedilink
        arrow-up
        0
        ·
        24 days ago

        Of course a researcher is never sure something is 100% ruled out. That’s part of how academic research works.

        My eagerness stems from being tired of anecdotes presented as evidence supporting a weird privacy conspiracy. This takes away from the actual issue at hand, which is your digital footprint and how your data is used.

        • ganymede@lemmy.ml
          link
          fedilink
          arrow-up
          0
          ·
          edit-2
          24 days ago

          Of course a researcher is never sure something is 100% ruled out. That’s part of how academic research works.

          once again, that isn’t what they were reported to have said. [and researchers don’t need to repeat the basic precepts of the scientific method in every paper they write, so perhaps its worthwhile to note what they were reported to say about that, rather than write it off as a generic ‘noone can be 100% certain of anything’] it’s a bit rich to blame someone for lacking rigor while repeatedly misrepresenting what your own article even says.

          what the article actually said is

          because there are some scenarios not covered by their study

          and even within the subset of scenarios they did study, the article notes various caveats of the study:

          Their phones were being operated by an automated program, not by actual humans, so they might not have triggered apps the same way a flesh-and-blood user would. And the phones were in a controlled environment, not wandering the world in a way that might trigger them: For the first few months of the study the phones were near students in a lab at Northeastern University and thus surrounded by ambient conversation, but the phones made so much noise, as apps were constantly being played with on them, that they were eventually moved into a closet

          there’s so much more research to be done on this topic, we’re FAR FAR from proving it conclusively (to the standards of modern science, not some mythical scientifically impossible certainty).

          presenting to the public that is a proven science, when the state of research afaict has made no such claim is muddying the waters.

          which comes to your main point, you may feel as i do that the responsible collection of even witness reports should include some acknowledgement or attempted elimination of the plethora of other channels for such correlations to be realised (not withstanding ofc there’s also the possibility of sheer random chance). then that’s fine, i agree.

          pretending its solved when its not even close merely further detracts from worthwhile discussions about non-voice surveillance channels & inferences thereof

          i don’t really blame you personally, the news media repeatedly fails to present the current state of research accurately. from my observation many popular headlines state “its not happening” even when the very article itself doesn’t say that. its frankly dishonest or extremely lazy “journalism”. and i don’t mean the typical failure of popsci reporting to fully capture the finer details of a study, i mean literally the popsci headline doesn’t even match their own article body.

          • .Donuts@lemmy.world
            link
            fedilink
            arrow-up
            0
            ·
            24 days ago

            I’ve said this elsewhere but it would be piss easy to prove. I think it’s weird that we’re talking about how something can be true because it hasn’t been disproven, but not that something can’t be true because it hasn’t been proven.

            • ganymede@lemmy.ml
              link
              fedilink
              arrow-up
              0
              ·
              edit-2
              24 days ago

              piss easy

              many domain experts dedicating significant resources to it’s study

              pick one.

              when your sources repeatedly don’t say what you claim they say, maybe its time to revisit your claims ;)

                • ganymede@lemmy.ml
                  link
                  fedilink
                  arrow-up
                  0
                  ·
                  edit-2
                  24 days ago

                  always listening

                  i never claimed always, i specifically advised op to refrain from claiming always.

                  how can you pretend to represent a sound scientific approach when you misrepresent the scientific claims made in sources you cite

        • GolfNovemberUniform@lemmy.ml
          link
          fedilink
          arrow-up
          0
          ·
          24 days ago

          Listen, mister/miss. I tried it once and the reaction was bad because geopolitical reasons. Do I want to get banned by admin abuse? No. Do I want to start a fight in a nice thread? Also no.

      • .Donuts@lemmy.world
        link
        fedilink
        arrow-up
        0
        ·
        24 days ago

        If they actually prove something, I’d be happy to give them a watch. 40 minutes of some dudebro’s podcast with a phone in his hands doesn’t count

    • Nougat@fedia.io
      link
      fedilink
      arrow-up
      0
      ·
      24 days ago

      tl;dr: “Strike that, reverse it.”

      They can bid all they want to put ads in front of me, I ain’t gonna see them. Of course, they probably know that, too.

    • zerozaku@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      24 days ago

      I will watch these later. But recently one of the Facebook’s employee’s chat was leaked saying they listen to customer mics 24/7 via a third party. Google blocked the alleged third party and Facebook has ended ties with them too.

      What about it?

      • .Donuts@lemmy.world
        link
        fedilink
        arrow-up
        0
        ·
        24 days ago

        It was an ad partner’s pitch deck, not much to do with Facebook itself. And it didn’t really explain how it would be listening anyway.

        Besides, if they were recording, processing and / or transferring audio, that would mean there’s data usage, battery usage, etc - stuff that’s easy to prove.

        The truth is a lot simpler (and scarier) and you will find that in the links I provided.

    • zerozaku@lemmy.worldOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      24 days ago

      There is one more thing I haven’t mentioned here. The device where I pirated the movie is different and is on different Google account and my Google account on which I opened the YouTube was different.

      • N4CHEM@lemmy.ml
        link
        fedilink
        arrow-up
        0
        ·
        24 days ago

        You just mentioned 2 different Google accounts: if your devices are connected to Google accounts they are already getting a lot of information from you that way, and Google knows that those 2 accounts are related.

        • zerozaku@lemmy.worldOP
          link
          fedilink
          English
          arrow-up
          0
          ·
          24 days ago

          That’s absurd to think they link two different Google accounts and recommend stuff on YouTube. This is less believable than them listening to mic 24/7.

          Also the device I pirated content on, has only one Google account registered.

          • N4CHEM@lemmy.ml
            link
            fedilink
            arrow-up
            0
            ·
            edit-2
            24 days ago

            It’s not absurd at all. They know the IPs, they know those devices use the same network, and they also know where they are located pretty accurately: the Google Street View cars also scan for WiFi networks and map then to their location.

            2 devices consistently connected to the same router, to the same network, in the same place… must belong to the same person or to 2 people sharing a home. If cookies set by other websites and seen by Google show similar browsing habits, it’s probably the same person.

          • AnEilifintChorcra@sopuli.xyz
            link
            fedilink
            arrow-up
            0
            ·
            24 days ago

            2 accounts consistently reporting the same IP, location and user habits etc being linked is more absurd than nobody ever noticing excessive uploaded data from their phones? It is very easy to monitor the amount of uploaded and downloaded data on a device, lots of people would have noticed by now. The amount of storage, bandwidth and processing power that would be required to monitor the audio from hundreds of millions of android users globally 24/7 would make this the dumbest business decision ever when there are so many easier and efficient ways to track users.

          • davel [he/him]@lemmy.ml
            link
            fedilink
            English
            arrow-up
            0
            ·
            24 days ago

            This is very much believable, and a thousand times more believable than your phone listening to you to send you ads.

          • DarkSirrush@lemmy.ca
            link
            fedilink
            arrow-up
            0
            ·
            24 days ago

            Doesn’t matter, google is well known for tracking related accounts using a variety of methods - be it location data, connected IP, tracking cookies, device proximity, even things like usage habits, etc.

            • TranquilTurbulence@lemmy.zip
              link
              fedilink
              arrow-up
              0
              ·
              24 days ago

              Can confirm. I have a few accounts for keeping different interests separate in YT. I also keep those accounts in different container tabs, but recommendations tend to leak anyway. Google knows what I’m up to.

    • Kairos@lemmy.today
      link
      fedilink
      arrow-up
      0
      ·
      24 days ago

      That’s not how that works. There were likely ads on the page which brings in Google cookies and shows the page the user is on.

      OP make sure all third party cookies are blocked. They’re not needed anymore.

  • transscribe7891@lemmy.dbzer0.com
    link
    fedilink
    English
    arrow-up
    0
    ·
    edit-2
    24 days ago

    I understand completely. It’s happened to me too many times now to be a coincidence. For a while there whenever I talked to myself “alone” I would sometimes pretend I was also talking to LaMDA, the AI. Now I know it’s probably not LaMDA. But it’s not outside the scope of possibility for Google or Meta to be listening 24/7 if it’s an AI overseeing the panopticon.

    I said it has happened to me mulitple times, and I have done experiments. I have given the listeners false information to see if and when it will spread. I have seen whole products pop up out of nowhere in nearby stores because of this. I have seen shitty half-assed tv shows and movies suddenly show up on billboards, as if with only an understanding of the bullet points of my overall speech, and even then with the shaky understanding of an AI trying to fill in the blanks.

    Only thing I can think to suggest (that hasn’t been suggested already) is to purposely poison the well by sometimes loading it with falsities for obscuration.

  • zephorah@lemm.ee
    link
    fedilink
    arrow-up
    0
    ·
    24 days ago

    In addition to all the GrapheneOS recommendations, there are also faraday bags. Drop the phone in while at home or wherever.

    • LostXOR@fedia.io
      link
      fedilink
      arrow-up
      0
      ·
      24 days ago

      That doesn’t really help unless the bag is also soundproof; it could just as easily store what you say and send it off later.

  • Lightscription@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    24 days ago

    Don’t get things for free! Ever! The producers aren’t rich enough yet to pay the artists a living wage for their creative work. Homeland will extra-judicially use weapon systems on you even if you don’t pirate because all it takes is false accusation and then you will be tortured and never allowed to reproduce anywhere in the US sphere of influence (or TPP or UN).

  • Rolando@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    24 days ago

    The youtube algorithm determined the following: people who watch the kind of videos in your history, are also interested in recording netflix shows. And it was right, because you are in fact interested in that (general) topic. This is another possible explanation.

  • Boomkop3@reddthat.com
    link
    fedilink
    arrow-up
    0
    ·
    23 days ago
    • A family member might have searched it
    • An ad network might have reported on your piracy (especially now with privacy sandbox)
    • Your media player might just be doing some tracking and/or insecure searching for metadata
    • Siri or something might have popped open
    • You googled to get to the piracy website
    • You may have just looked up the movie, and the movie was popular with pirates

    Don’t get too paranoid

  • edric@lemm.ee
    link
    fedilink
    arrow-up
    0
    ·
    24 days ago

    No, your phone doesn’t listen to you 24/7. With that out of the way, there are a number of places where youtube may have gotten that info. One possibility is that someone in your household looked up the movie and maybe checked if stuff ripped from netflix is indeed full HD. And since everyone in your family is using the same NAT IP, then it’s easy for youtube to target recommendations at everyone in that household.

    • beefbot@lemmy.blahaj.zone
      link
      fedilink
      arrow-up
      0
      ·
      24 days ago

      I don’t doubt you, but it’s worth asking if your reasons for stating that our phones don’t listen to us 24/7 haven’t changed since you first formed the opinion.

      Lots of things are meso-facts (a true fact at rhetorical time we learn it, but no longer true later). Tech moves quickly. It’s worth not assuming anyone is right here, & asking: under what conditions could our phones be listening (enough to produce what OP experienced)?

        • beefbot@lemmy.blahaj.zone
          link
          fedilink
          arrow-up
          0
          ·
          24 days ago

          But again, what I’m getting at here is, are we so sure it takes all that much anymore. Processing could take place in a shorter way now, more than it could when our current opinion was still true.

      • Chozo@fedia.io
        link
        fedilink
        arrow-up
        0
        ·
        24 days ago

        Watchdog groups have been monitoring these services for years now and have yet to find the “your phone is listening 24/7” smoking gun.

      • edric@lemm.ee
        link
        fedilink
        arrow-up
        0
        ·
        edit-2
        24 days ago

        The conditions would be that all the controls that are in place to prevent it from happening are bypassed, which no one has proven yet. For example, Apple has developed their devices (assuming not jailbroken) in such a way where the camera and microphone usage indicators are hardwired and can’t easily be bypassed by software hacks. So if your phone was listening to you all the time, then the microphone indicator light would always be on. Listening 24/7 would also drain the phone’s battery and use up so much data it would be noticeable. Another example is Siri. It is actually designed in a way where there are 2 components. The first one is local on the phone and separate from the actual Siri component. It is what’s actively listening for you to call it. Once you call it, it then activates the actual Siri that transmits your voice inputs online.

        • zerozaku@lemmy.worldOP
          link
          fedilink
          English
          arrow-up
          0
          ·
          24 days ago

          People saying it hurts battery usage, sends crazy amounts of network etc don’t seem to use the latest features from Google.

          Now playing, Adaptive audio are some features of android system that Google has given in recent years which listen to our microphones all the time and serve their purpose. I have used them in the past, although it said it consumes battery, I never experienced huge battery brain. Google also says these services work on device and never leaves the device, but I assume extracting few words from my audio and sending them to their servers at frequent times wouldn’t be such a technically demanding process like everyone are stating here on this post. It entirely possible and probably happening.

  • TranquilTurbulence@lemmy.zip
    link
    fedilink
    arrow-up
    0
    ·
    24 days ago

    Here’s a fun little experiment you can try. Make a list of random topics and have a discussion about each of them on separate days. Make sure each topic is something that could result in creepy suggestions or ads on YT. If even one of these topics produces the expected result, you could be on to something.

    • otp@sh.itjust.works
      link
      fedilink
      arrow-up
      0
      ·
      24 days ago

      Fun, sure, but not an experiment that would actually be meaningful.

      The data from your phone’s microphone doesn’t magically appear in Google’s advertising servers. It would have to go through a lot of steps before it gets there, and one of the first steps is in your home (if you’re on WiFi). One can analyze the traffic/data that leaves their phone.

      It’s good to be cautious, but worrying about your phone’s microphone is potentially like worrying about your windows while leaving your front door open.