cross-posted from: https://covert.nexus/post/27235
The FTC released a staff report in 2021 analyzing the privacy practices of six major U.S. Internet Service Providers. The report found that these ISPs collect as much, if not more, data on their customers’ browsing habits than popular advertisers like Google and Facebook. Additionally, some of these ISPs either operate their own advertising businesses or sell the data to third parties, such as the NSA.
Maybe I’m just not getting it, but if we’ve mostly transitioned to HTTPS and encrypted DNS… what exactly can the ISP learn other than the address they serve and MAC of your gateway? Is this report for those who use their ISP’s DNS?
deleted by creator
I’m going to need a source on both those claims to better understand how they can happen.
For an ISP to mitm, they’d need to sign and send the website certs themselves, and that’d show up in most browsers as a big red flag.
As far as Facebook goes, I was sure that’s just javascript and tracking cookies that they’re paying websites to use. No mitm there.
deleted by creator
Removed by mod