1478

By Jeremy Hsu on September 24, 2024


Popular smart TV models made by Samsung and LG can take multiple snapshots of what you are watching every second – even when they are being used as external displays for your laptop or video game console.

Smart TV manufacturers use these frequent screenshots, as well as audio recordings, in their automatic content recognition systems, which track viewing habits in order to target people with specific advertising. But researchers showed this tracking by some of the world’s most popular smart TV brands – Samsung TVs can take screenshots every 500 milliseconds and LG TVs every 10 milliseconds – can occur when people least expect it.

“When a user connects their laptop via HDMI just to browse stuff on their laptop on a bigger screen by using the TV as a ‘dumb’ display, they are unsuspecting of their activity being screenshotted,” says Yash Vekaria at the University of California, Davis. Samsung and LG did not respond to a request for comment.

Vekaria and his colleagues connected smart TVs from Samsung and LG to their own computer server. Their server, which was equipped with software for analysing network traffic, acted as a middleman to see what visual snapshots or audio data the TVs were uploading.

They found the smart TVs did not appear to upload any screenshots or audio data when streaming from Netflix or other third-party apps, mirroring YouTube content streamed on a separate phone or laptop or when sitting idle. But the smart TVs did upload snapshots when showing broadcasts from the TV antenna or content from an HDMI-connected device.

The researchers also discovered country-specific differences when users streamed the free ad-supported TV channel provided by Samsung or LG platforms. Such user activities were uploaded when the TV was operating in the US but not in the UK.

By recording user activity even when it’s coming from connected laptops, smart TVs might capture sensitive data, says Vekaria. For example, it might record if people are browsing for baby products or other personal items.

Customers can opt out of such tracking for Samsung and LG TVs. But the process requires customers to either enable or disable between six and 11 different options in the TV settings.

“This is the sort of privacy-intrusive technology that should require people to opt into sharing their data with clear language explaining exactly what they’re agreeing to, not baked into initial setup agreements that people tend to speed through,” says Thorin Klosowski at the Electronic Frontier Foundation, a digital privacy non-profit based in California.

https://www.newscientist.com/article/2449198-smart-tvs-take-snapshots-of-what-you-watch-multiple-times-per-second/ (paywall!!)

top 50 comments
sorted by: hot top controversial new old
[-] solsangraal@lemmy.zip 362 points 3 months ago

LOL "if it was opt-in, no one would do it!"

no fucking shit. there is nothing worth watching that i would buy a smart tv for

[-] tal@lemmy.today 119 points 3 months ago* (last edited 3 months ago)

One issue that has come up recently in discussions on here is that it's hard to get dumb TVs or computer monitors in large format in 2024.

Not impossible, but surprisingly difficult. I went looking for a large computer monitor for some user who wanted a large one. I eventually found an older one on Amazon still for sale, but it's not that easy to get large computer monitors, which I think is part of what drives people to use smart TVs as computer monitors.

You can get projectors, but that's not what everyone's after.

[-] Fermion@feddit.nl 65 points 3 months ago

A smart tv without an internet connection is usually close enough to a dumb TV. It's not like your TV needs regular security updates so leaving it off your home network is fine.

[-] TexasDrunk@lemmy.world 54 points 3 months ago

I do not know how true it is, but I've heard that some of them will create a mesh network if your neighbor has the same brand and it's connected to the internet.

I've always meant to look into it but I have big dumb TVs that work for now.

[-] SkyNTP@lemmy.ml 41 points 3 months ago

Open the tv and rip out the antenna. Y'all already forgot the classic secret agent trope of checking the hotel room for bugs? Now we all get to play that game!

[-] Anivia@feddit.org 33 points 3 months ago

Nowadays the antenna is often embedded into the pcb, so no way to rip it out other than scraping off the traces

load more comments (2 replies)
load more comments (5 replies)
load more comments (1 replies)
load more comments (2 replies)
[-] Asafum@feddit.nl 68 points 3 months ago

if it was opt-in, no one would do it!

Which should be telling them that not only does no one want it, but maybe just maybe we already paid for your fucking TV. Either raise the price or stop being so fucking goddamn greedy to the point that you force us to make the government force you to stop.

Of course the bought and paid for US government won't, but hopefully EU governments will.

[-] CosmicTurtle0@lemmy.dbzer0.com 31 points 3 months ago

If they raise the price, then they only get money once. If they sell your data, now they have an income stream.

[-] grue@lemmy.world 253 points 3 months ago

These are criminal violations of the Computer Fraud and Abuse Act. Jail the motherfucking felon CEOs!

[-] Shark_Ra_Thanos@lemmy.ml 51 points 3 months ago

But the supreme court ruled to save the conviction for the election.

load more comments (4 replies)
load more comments (3 replies)
[-] _number8_@lemmy.world 220 points 3 months ago

awful ethics aside what a disgusting waste of processing power. software already barely runs

[-] nickwitha_k@lemmy.sdf.org 181 points 3 months ago

Would be nice if we could have some technological privacy laws written in this century.

[-] ruk_n_rul@monyet.cc 41 points 3 months ago* (last edited 3 months ago)

We need all the boomers in Capitol Senior Care Home to vacate first

load more comments (5 replies)
load more comments (1 replies)
[-] InternetPerson@lemmings.world 160 points 3 months ago

For example, it might record if people are browsing for baby products or other personal items.

Don't mind baby products and dildos or whatever.

They could see bank activity and even login credentials when someone is temporarily displaying their own passwords.

This basically ignores all security measures regarding everything. Sensitive communication, company secrets and so on.

That's fucking seriously huge. What the fuck?!

load more comments (13 replies)
[-] AlexWIWA@lemmy.ml 125 points 3 months ago
load more comments (5 replies)
[-] Blackmist@feddit.uk 104 points 3 months ago

Actual paper here.

https://arxiv.org/html/2409.06203v1

It is not sending full screenshots as anybody technical would already have guessed. It's a few KB over an hour, so it's content recognition hashes.

Opt out anyway. Their study shows the opt out option does indeed opt you out of it.

load more comments (12 replies)
[-] Slovene@feddit.nl 96 points 3 months ago* (last edited 3 months ago)

THIS is piracy. Along with all the other personal data selling.

[-] Badland9085@lemm.ee 90 points 3 months ago

Imagine the amount of bandwidth and energy saved, if they didn’t do any of this bullshit.

They are essentially using someone else’s money to get themselves more money. Fuck these people!

load more comments (5 replies)
[-] werefreeatlast@lemmy.world 81 points 3 months ago

You hear that? It's a whisper.... It's a multinational multibillion dollar class action lawsuit coming after Samsung and LG. WTF!

[-] Drunemeton@lemmy.world 80 points 3 months ago

Okay. So how do we turn it off!? I’ve read nothing in my Samsung manuals about this “feature” and here no instructions for turning it off.

[-] dhork@lemmy.world 119 points 3 months ago

Just don't hook it up to your wifi. Don't use any of its included apps. If you must stream get a separate device to do it.

[-] WhatAmLemmy@lemmy.world 42 points 3 months ago* (last edited 3 months ago)

This is the correct answer. I actually disabled LG's version of it when I first heard about it. A few months later it had been reactivated in an update, so I just factory reset it and connected an old laptop.

You can't trust anyone — corporation or government — to protect or respect your privacy. Ever. If it's not open source and E2EE, assume that a criminal is going to view and process it for profit.

[-] grue@lemmy.world 33 points 3 months ago* (last edited 3 months ago)

No it is not the correct answer! The correct answer is to put the CEOs who perpetrate this criminal shit in prison for millions of counts of hacking and stalking!

Merely shrugging and implementing a technological workaround is not an appropriate response to someone perpetrating a felony against you!

load more comments (3 replies)
[-] archomrade@midwest.social 31 points 3 months ago

I have a Samsung smart TV that is not connected to any networks, and every few days it will display a 'detecting device' loading screen when switching to my input that fails after 30 seconds or until I cancel it (canceling does not seem to impact its functioning)

I have no evidence but I strongly suspect this to be related to attempting to record and send device data to a remote server.

load more comments (1 replies)
load more comments (5 replies)
[-] roofuskit@lemmy.world 47 points 3 months ago

No Internet for the device

load more comments (1 replies)
load more comments (26 replies)
[-] random_character_a@lemmy.world 64 points 3 months ago* (last edited 2 months ago)

Yeah. My Samsung claws my firewall like a squirrel trapped in a box. It intensifies on certain hours of the day. I'm quite sure it also tries to send what devices are connected and what filenames are in attached memory sticks. Maybe also some media file checksums.

load more comments (12 replies)
[-] TheLowestStone@lemmy.world 55 points 3 months ago

This is why our "smart" TV is not allowed to be connected to the internet.

But can you really be sure that it doesn't connect to another network? i have to check again but if i recall correctly there are TVs that try to connect to other open networks or even look for other TVs from the same manufacturer and connect through those to the internet. I have to double check this again, so take this with a grain of salt

load more comments (1 replies)
load more comments (20 replies)
[-] Tja@programming.dev 53 points 3 months ago

Something doesn't add up. How can a TV take 100 Screenshots of 4k content per second? No wifi has that bandwidth. No embedded processor has that capacity.

[-] WoahWoah@lemmy.world 90 points 3 months ago* (last edited 3 months ago)

It doesn't need a 4K screenshot. It needs enough data/metrics from any given single frame to run it through analytics and an algorithm to tailor ads. Backend surveillance like this isn't interested in fidelity to the human viewing experience. It needs identifying data. That can be had through a combination of low quality data scrapes done numerous times.

"Screenshot" is more like a metaphor here. Sort of like how your Apple or Google photos are "private," but the data and analytics taken from them you've given away. It's like if you told me I could look at all the photos on your phone and take as many notes and subject them to as much analysis as I wanted, but I promised not to actually physically keep your phone/photos. Probably makes you feel like your photos are securely still in your possession, but I got what I wanted. Your data is technically private, but my data about your data is mine.

load more comments (2 replies)
load more comments (15 replies)
[-] Ibaudia@lemmy.world 48 points 3 months ago

Do not connect your Smart TVs to network people, seriously. Just a bad idea. Use a media center PC or some other device that allows you to stream content, and make sure the TV itself is just a big monitor, nothing more.

load more comments (16 replies)
[-] Zip2@feddit.uk 48 points 3 months ago

LG by now will have several weeks of footage of me scrolling through streaming services and failing to find anything to watch.

load more comments (7 replies)
[-] Zementid@feddit.nl 46 points 3 months ago

Theoretically I could display highly illegal stuff and they would distribute it making them complicit?

Can the API be hacked to flood their servers with petabytes of cat pictures?

What is happening with the data? Where are the data savers?

load more comments (2 replies)
[-] mox@lemmy.sdf.org 44 points 3 months ago

Friendly reminder that gaming console monitors, computer monitors, projectors, dumb TVs, and commercial displays exist.

Yes, I could hack a smart TV to disable its networking capabilities. (Merely withholding my wifi password is not reliable.) But that would still be showing the manufacturers that I find spyware TVs acceptable, and supporting the production of those models.

Also, this would be a good time to pressure our legislators into criminalizing this nonsense.

load more comments (20 replies)
[-] MonkderVierte@lemmy.ml 44 points 3 months ago

Btw, is there a firmware hacking/flashing scene for smart TVs?

load more comments (8 replies)
[-] DirkMcCallahan@lemmy.ml 41 points 3 months ago

So what do we do when smart TVs force us to connect to the Internet, and refuse to work until we do?

This is exhausting. We're speeding towards a horrible, privacy-less future.

load more comments (11 replies)
[-] HangingFruit@lemmy.world 40 points 3 months ago

The question now is, even if I don’t connect the TV to Internet, what TV brand should I buy? Currently I have LG, but no way I’m supporting that even without Internet connection.

load more comments (17 replies)
[-] some_guy@lemmy.sdf.org 35 points 3 months ago

The only sensible way to operate these TVs is with no internet connection. We run our entertainment through an AppleTV. If that ever starts showing ads at rest, I’ll replace it with a Mac mini or a NUC. Fuck these companies and their race to the bottom.

[-] Ragnarok314159@sopuli.xyz 35 points 3 months ago

They collect all this data and then still cancel the most watched/best shows.

Morons.

[-] L0rdMathias@sh.itjust.works 35 points 3 months ago

"They found the smart TVs did not appear to upload any screenshots or audio data when streaming from Netflix or other third-party apps, mirroring YouTube content streamed on a separate phone or laptop or when sitting idle. But the smart TVs did upload snapshots when showing broadcasts from the TV antenna or content from an HDMI-connected device."

The world is owned by a big club, and you're not in it.

[-] SuperFola@programming.dev 34 points 3 months ago

So they are allowed to pirate content actually? Even if it’s not Netflix or YouTube they take screenshots of potentially copyrighted content

load more comments (6 replies)
[-] Corporate_Hippie@lemm.ee 33 points 3 months ago

Use a pihole people, don't go barebacking the internet

[-] Onsotumenh@discuss.tchncs.de 34 points 3 months ago

Doesn't help if the device has a baked in DNS address and just ignores your settings tho. Amazon and Google devices seem prone to that. After blocking everything on the common DNS ports except the PiHole, some of my devices have been acting kinda sluggish.

load more comments (7 replies)
load more comments (2 replies)
[-] dan@upvote.au 32 points 3 months ago* (last edited 3 months ago)

Don't let your TV connect to the internet. I have mine on my wifi so I can control them using Home Assistant, but they're on an isolated VLAN with no internet access.

Edit: Of course, this only works if you use an external box for streaming, like an Nvidia Shield, Apple TV, Google Chromecast TV or whatever they call it now, etc.

load more comments (10 replies)
[-] MystikIncarnate@lemmy.ca 31 points 3 months ago

I've said it before and I'll say it again, corporations treat you like a product. Whether you buy something from them or not. People are becoming the product that they sell.

I usually don't care very much until it starts to affect pricing for stuff based on some algorithms impression of how desperate you are. That algorithm started with travel (airlines, online booking fees for hotels and stuff) and has expanded.

If I need a new computer because mine isn't working, I don't really care that advertisers come at me with ads for their computer products. I need one, they want me to buy one, it's marketing. No worries.

If I need a new computer and suddenly all the prices for new systems goes up by $100 because it thinks I'm desperate enough to pay that, now I have a problem.

I still don't like them selling my data, and I'll do what I can to avoid it, but marketing is going to do marketing things.

load more comments (2 replies)
[-] toiletobserver@lemmy.world 31 points 3 months ago* (last edited 3 months ago)

I run a pi hole and it blocks 1000 attempts per minute from a single Samsung TV, then it outright denies requests from the tv. Duck those douches.

load more comments (7 replies)
load more comments
view more: next ›
this post was submitted on 26 Sep 2024
1478 points (99.3% liked)

Technology

60112 readers
4270 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS