Comment by runjake
7 days ago
I can think of several ways to exfiltrate data, even with the limited information you provided, so, yes.
But is it happening? Who knows. Maybe it doesn't now, but a future firmware update will. Who knows. Given your wise threat model, I'd avoid buying stuff from AliExpress.
What makes you think "American" products aren't just rebranded AliExpress products essentially?
Nothing. I didn't mention anything about American products. I only said it was wise, given OP's security posture, not to buy electronics off of AliExpress, which is specifically what they were asking about.
Is it any better if it's Sony or Audi that has my data?
Of course, for Audi you're at least 100% sure your data (everywhere your car was, what its service status is and where you live) is already public. [0] No need to wonder anymore :P
[0]:https://www.bleepingcomputer.com/news/security/audi-volkswag...
No but I think it’s more likely the data is going back to the original manufacturer and the white labeler has no idea it’s happening.
Despite assuredly rigid QC and security testing /s.