@wildmanjeff42
I thought I was just paranoid with security, now I think I am not taking it seriously enough. And I realize I know very little about it. There is a LOT of shady things out there. Thank You for keeping us informed !
@UserHandle0702
Rob, as always you provide quality content. Very grateful to have discovered your channel for the last 2 years now. I noticed on the Brax2 had many certificates from various places I unchecked many of then after some research;)
@MartinMaat
This is quite an eye opener. I just browsed the list of trusted root certificates on my Windows machine which includes some that obviously did not come with Windows and yet they are there. Apparently any installer can drop whatever certificate in there without me being asked whether I trust this party. This makes the PKI infrastructure quite pointless. I would expect my OS to ask me if I'm OK with a particular certificate when an installer tries to add a root certificate.
@vobaboba
As an IT support from Russia I can confirm that we forced to install "fake" CA. But I didn't saw any evidence that it have been misused in any way. And Russia been forced to do this CA only because of sanctions, when "real" CAs revoked many certificates from banks and businesses after well known events. I am writing it only to say, that there is no need for this "bad authoritarian government doing mass surveillance" bullshit. There was literally no other chose in that situation for economy to function, and it is good they did it. But yeah, antivirus part is actually happening. I once saw Kaspersky doing this trick with browser CA, and I immediately disabled it. I like this video for been educational, and hate lack of evidence and historical perspective. Hidden informant is cringe af though. P.S. I know that this video mostly about possibility to perform MITM, but this actually can apply to any network and every CA, not just Russian or any other "authoritarian government". Problem here not a regime, but PKI itself. You blindly trust every big tech entity by default this days. The only way out is to build your own Internet resources and share only with people you trust.
@starmap
This is good information. People should pay attention. It's all a trust system. You elect who you trust to keep your data secure.
@phil2768
This is a common practice in large companies. The company I work for has done it. It's called SSL/TLS inspection or SSL/TLS interception. The traffic between the source web browser and the 'encrypted' target website that an employee goes to, when using a company PC or Laptop, is kept logged for some period of time. The company will say that this is to ensure that corporate information isn't being leaked/shared. It is what governments really want to happen on every citizens PC, Laptop, Mobile, etc so they can snoop on everyone.
@iTeerRex
Itβs getting worse and worse. Stay safe and private.
@anthonysach
Many years ago I downloaded software callled KGB. I tested it on a spare PC and found it keylogged everything and took screenshots of visited websites and sent them to me in an email. If this software can do it 15 years ago then the capabilities must be much greater now.
@ThePaulSIN
Wow, love what you are doing here on this channel, please continue :)
@BorlandC452
Also, because Windows is proprietary software. you don't actually know that dragging the Microsoft certs to the "untrusted" section is actually doing anything. They might have coded the graphics that make it look like it does, but you'll never truly know because you do not have access to the source code.
@Sayonara301
NWO have "agents" in the government and corporations that manipulate "diligent" staffs. So when you make general bad assumption you will be sacked for spreading bad news about the government or company. Of course it is not the government agenda in most countries except in US. It is hidden.
@Xzxzkanal
In Mother Russia, internet accesses you.
@zyxzevn
The EU is planning to eliminate encryption too, with device installed scanners.
@cozmickitty7730
The US Gov has the keys to the kingdom( CAs are compromised).
@TheSillybits
The downside of technology is showing up more clearly every day. I am considering to withdraw and move back to pre-internet practices.
@johann3029
I'm getting sea sick by watching this video. π Great stuff! Much love for your videos!
@rambubaobon6803
Nice video but the AVAST Part made me giggle... AV Companys do insert their own Cert the reason is not shady stuff instead its because they could not technicaly do it any different if you want them to scan you web traffic for malware they need to issue their own cert in between to make the stuff readable and still give you the green lock. So if you dont want this turn it off in the Av software you use mostly under the category "TLS Protection"
@VickyGRUENBLAT
Rob... thanks for validating everything I've experienced.
@mentecriptica3163
Thank you for this valuable info. I apply your advice to my habits.
@Legomanfred