By Jeremy Hsu on September 24, 2024

Popular smart TV models made by Samsung and LG can take multiple snapshots of what you are watching every second – even when they are being used as external displays for your laptop or video game console.

Smart TV manufacturers use these frequent screenshots, as well as audio recordings, in their automatic content recognition systems, which track viewing habits in order to target people with specific advertising. But researchers showed this tracking by some of the world’s most popular smart TV brands – Samsung TVs can take screenshots every 500 milliseconds and LG TVs every 10 milliseconds – can occur when people least expect it.

“When a user connects their laptop via HDMI just to browse stuff on their laptop on a bigger screen by using the TV as a ‘dumb’ display, they are unsuspecting of their activity being screenshotted,” says Yash Vekaria at the University of California, Davis. Samsung and LG did not respond to a request for comment.

Vekaria and his colleagues connected smart TVs from Samsung and LG to their own computer server. Their server, which was equipped with software for analysing network traffic, acted as a middleman to see what visual snapshots or audio data the TVs were uploading.

They found the smart TVs did not appear to upload any screenshots or audio data when streaming from Netflix or other third-party apps, mirroring YouTube content streamed on a separate phone or laptop or when sitting idle. But the smart TVs did upload snapshots when showing broadcasts from the TV antenna or content from an HDMI-connected device.

The researchers also discovered country-specific differences when users streamed the free ad-supported TV channel provided by Samsung or LG platforms. Such user activities were uploaded when the TV was operating in the US but not in the UK.

By recording user activity even when it’s coming from connected laptops, smart TVs might capture sensitive data, says Vekaria. For example, it might record if people are browsing for baby products or other personal items.

Customers can opt out of such tracking for Samsung and LG TVs. But the process requires customers to either enable or disable between six and 11 different options in the TV settings.

“This is the sort of privacy-intrusive technology that should require people to opt into sharing their data with clear language explaining exactly what they’re agreeing to, not baked into initial setup agreements that people tend to speed through,” says Thorin Klosowski at the Electronic Frontier Foundation, a digital privacy non-profit based in California.

https://www.newscientist.com/article/2449198-smart-tvs-take-snapshots-of-what-you-watch-multiple-times-per-second/ (paywall!!)

  • Random_Character_AEnglish
    649 months ago

    Yeah. My Samsung claws my firewall like a squirrel trapped in a box. It intensifies on certain hours of the day. I’m quite sure it also tries to send what devices are connected and what filenames are in attached memory sticks. Maybe also some media file checksums.

  • @werefreeatlast@lemmy.worldEnglish
    829 months ago

    You hear that? It’s a whisper… It’s a multinational multibillion dollar class action lawsuit coming after Samsung and LG. WTF!

  • @Badland9085@lemm.eeEnglish
    889 months ago

    Imagine the amount of bandwidth and energy saved, if they didn’t do any of this bullshit.

    They are essentially using someone else’s money to get themselves more money. Fuck these people!

    • @dubyakay@lemmy.caEnglish
      119 months ago

      Did you go beyond the headline?

      They found the smart TVs did not appear to upload any screenshots or audio data when streaming from Netflix or other third-party apps, mirroring YouTube content streamed on a separate phone or laptop or when sitting idle. But the smart TVs did upload snapshots when showing broadcasts from the TV antenna or content from an HDMI-connected device.

        • @dubyakay@lemmy.caEnglish
          29 months ago

          Says who?

          You are allowed to take screenshots of Netflix, even under the DMCA on DRM protected material. You are not allowed to use it commercially though. Personal use only.

      • @seejur@lemmy.worldEnglish
        59 months ago

        Does it means that it broadcast my chrome browser if connected through HDMI? If I check for a password in the password manager in chrome, it fucking sends my password to Samsung?

        • @dubyakay@lemmy.caEnglish
          29 months ago

          Yes and no. Supposedly the resolution is not in 4K or even 1080p, but something much lower that is still enough to identify content, like shows, movies and ads, but not enough to make out minute detail.

        • andrew_bidlawEnglish
          29 months ago

          It may be them either not trespassing their territory (as a part of a deal or as a precaution) or TV apps sharing\telegraphing that info without the need of screen cap analysis as they work on TV itself and may as well be special modified apks. At least, they differed

          Laptop sends only it’s video and audio outputs, apps’ code executes at it’s hardware, so TV needs a workaround to know what you are watching. And as it’s incapable of such analysis itself, it channels that data to it’s real owner.

        • @dubyakay@lemmy.caEnglish
          29 months ago

          No, the point here is that if you use the “smart” features, which includes running apps from their appstore, like Netflix or Disney+, it will not send the data. But if you connect your laptop via HDMI and then play Netflix in your browser, it will, because it’s not smart enough to recognize and differentiafe video and audio data coming in through that port. I don’t think it matters if it’s a DRM enabled browser or not. It should be acting as a second monitor only in those cases, nothing more.

      • @Takumidesh@lemmy.worldEnglish
        99 months ago

        So an HDMI connected device that is streaming Netflix is getting screenshot?

        I mean, even if it wasn’t a streaming service, but let’s say, video game content, or a blu ray, that is still a violation, and of course, if I’m playing content I made, then it’s violating my copyright.

  • DUMBASSEnglish
    19 months ago

    Hahah my friends made fun of me for buying some cheap as fuck “smart” TV instead of an expensive LG one like them, my TV can barely run a web browser, no chance in hell that things spying on me.

    • @JordanZ@lemmy.worldEnglish
      139 months ago

      I don’t think my TV has ever been connected to the internet. As a safe guard to ensure that it never is I banned its wired and wireless MAC address from my network. So even if someone did plug it in…nothing.

        • @JordanZ@lemmy.worldEnglish
          29 months ago

          There is usually two types of MAC randomization and they both apply to wireless. One is pre-auth and is part of the IEEE 802.11aq Pre-Association Service Discovery spec. It makes it harder to track a user just because they got in range of an AP.

          The other is when they actually connect to an SSID. Win10 and mobile OS’s started supporting this but it maintains a relationship between a MAC/SSID pairing otherwise you would have all kinds of network/auth weirdness if it didn’t.

          Regardless if I noticed a device on my network behaving poorly by randomizing its MAC on every connection then I’d swap my network over to a grant list of MAC addresses and it can happily knock itself offline as much as it wants. Utilize a guest networks for visitors to avoid the headache of list management when a friend stops by and wants WiFi.

          I can say I’ve never seen that behavior across all my devices though.

      • @KamikazeRusher@lemm.eeEnglish
        69 months ago

        I’ve jokingly said this before, but just wait until manufacturers start adding 4G/5G to TVs explicitly for ads and telemetry…

        • @rustyredox@lemmy.worldEnglish
          39 months ago

          Just like modern cars… I wish there was some kind legislation that would limit phone-home telemetry to emergency service telecommunication frequencies, and be opt-in only. That way any OEM operating under commercial cellular frequencies would thus be unlicensed, and subject to FCC violations and import bans. Like what OnStar was originally pitched as; only auto dialing to 911, and 911 only, if you were unresponsive after airbags deployed. OEM couldn’t use the telecommunication frequencies for anything other than networking with emergency service endpoints on the same VLAN.

          Anything recorded by the vehicle would be required to stay on the vehicle due privacy regulations, like the black box recorder for warranted forensic investigations. OTA updates could also be distributed offline for users to download and flash via USB, like any motherboard bios, so transactions would be write only.

  • @taiyang@lemmy.worldEnglish
    39 months ago

    I had to update my LG recently and it had to get approval for all sorts of weird shit. Oddly enough, it let me continue using just about everything even after I denied all the very invasive checkboxes. I guess even they can’t deny use of your own tv if you reject the agreement lol

    • @usrtrv@lemmy.mlEnglish
      59 months ago

      For future reference, you can update LG TVs via USB so you can avoid connecting it to a network.