That's not what the article tells us.
There are two concerns in that article:
1. Transmission of telemetry occurs non-encrypted.
That doesn't equal "sent to 3rd parties". It only means someone along the way could read those data. BUT: they have to be in the network path already. Of course, it would be better if the data was encrypted. A small concern, really, but a real concern too.
2. The new network api allows Apple apps (and the system) to bypass network analysers (like Little Snitch).
That's a real concern. If malware would use this path, it would make 3rd party firewalls pretty useless. It sure smells of gov spying. That has been going on like forever. Remember Echelon? That's over 20 years ago.
He also writes that, since October 2020, Apple is part of Prism. I fear that could be true. And I fear it has happened a long time ago too, not in 2020. Do you think others don't belong to Prism? I mean, the main RedHat customer is the US military. Tor is owned by the military. There are taps on every major network point. Have been for decades. Etc.
I'm not blind for Apple's faults. I've raged about it enough. But the others are also doing it. There are some threads about some Linux distro's sending telemetry to their makers. Default on. Of course, you can switch it off, if you know about it.
What I wanted to say is: Apple is no better than the others, except they don't sell data to commercial 3rd parties. Of course, they will have to cooperate with gov. Just like the others.
I don't like gov looking into "my" data. But I understand the need for it.
I do mind, however, "my" data being sold to data aggregators so they can spam me even more. It hasn't happened, AFAIK, but that data could be used to trigger a mass compromise in case the aggregator's database gets broken into.
And if you are a target, like working in any industry that is interesting too spies, you'd better watch out. There will always be a way to get to your data, whatever OS you use. Even Qubes doesn't cater for that case.
There are two concerns in that article:
1. Transmission of telemetry occurs non-encrypted.
That doesn't equal "sent to 3rd parties". It only means someone along the way could read those data. BUT: they have to be in the network path already. Of course, it would be better if the data was encrypted. A small concern, really, but a real concern too.
2. The new network api allows Apple apps (and the system) to bypass network analysers (like Little Snitch).
That's a real concern. If malware would use this path, it would make 3rd party firewalls pretty useless. It sure smells of gov spying. That has been going on like forever. Remember Echelon? That's over 20 years ago.
He also writes that, since October 2020, Apple is part of Prism. I fear that could be true. And I fear it has happened a long time ago too, not in 2020. Do you think others don't belong to Prism? I mean, the main RedHat customer is the US military. Tor is owned by the military. There are taps on every major network point. Have been for decades. Etc.
I'm not blind for Apple's faults. I've raged about it enough. But the others are also doing it. There are some threads about some Linux distro's sending telemetry to their makers. Default on. Of course, you can switch it off, if you know about it.
What I wanted to say is: Apple is no better than the others, except they don't sell data to commercial 3rd parties. Of course, they will have to cooperate with gov. Just like the others.
I don't like gov looking into "my" data. But I understand the need for it.
I do mind, however, "my" data being sold to data aggregators so they can spam me even more. It hasn't happened, AFAIK, but that data could be used to trigger a mass compromise in case the aggregator's database gets broken into.
And if you are a target, like working in any industry that is interesting too spies, you'd better watch out. There will always be a way to get to your data, whatever OS you use. Even Qubes doesn't cater for that case.
