Data transmission in F-Secure and other AV vendors.
""Many Internet users are concerned about who has access to their personal information and what is
done with it. After revelations by Edward Snowden regarding the extent of eavesdropping by the US-
American NSA, users have become increasingly aware of privacy issues. Computer security software has
legitimate grounds for sending its makers some information about the system it’s running on; in
particular, details of malware found on the machine have to be sent to the manufacturer in order to
protect the user effectively. however, this does not mean that a program should have carte blanche to
send any and all personal information found on a computer to the manufacturer (other than with the
specific knowledge and agreement of the system’s owner). This report gives some insight into data-
sending by popular security programs."
Interesting that the only AVs that do not send Personal data are Ahnlab and Emisoft.
Under Personal information-"Are visited URLs (malicious and non-malicious URLs) transmitted?"-like most of the AV vendors listed F-Secure did transmit these URLs. Can I ask whether these URLs were transmitted as plain text or as hashes?