Thai Database Leaks 8.3B Internet Records

by nexus7556 on 5/25/2020, 7:19 AM with 74 comments
  • by cbg0 on 5/25/2020, 8:21 AM

    > To be clear: DoH and/or DoT would have stopped the gathering of DNS query data in this case. It's simple to set up, and it's just a smart thing to do for anyone concerned about their privacy.

    Actually, for most people that are not technically savvy this is definitely not an easy thing to set up, nor are they even aware that DoH/DoT exist.

    Unless this feature starts being turned on by default in routers and popular software, the average user's DNS lookups will not be protected.

  • by baicunko on 5/25/2020, 8:45 AM

    This is something that the average user fails to understand. One thing is saying I don't care they check on what I visit but once you aggregate enough information, it can become something of a "Big Brother".

    With enough DNS data I can assure you I can see when you leave to work, get back, determine the moment when you leave for vacation and no one is home, etc.

  • by on 5/25/2020, 5:21 PM

    undefined

  • by kernyan on 5/25/2020, 4:29 PM

    > Interestingly enough AWN had this DNS dashboard saved with a filter specifically looking at Facebook traffic. It's unclear why they would be particularly interested in who was going to Facebook.

    One likely non-malicious explanation is that the telco is offering some plan with data caps based on social media such as instagram, facebook, etc. Searching around, I found the offering below for unlimited data on 9 social media apps http://www.ais.co.th/one-2-call/simcard/en/super_social.html...

    I'm guessing one way the telco implements the selective cap is by tracking user's DNS, and is probably interested to know traffic to facebook

  • by Dolores12 on 5/25/2020, 10:02 AM

    AIS is mobile operator hence assign you random IP from the pool every time you reconnect to the network. IP address could be used by many different users during a day, definitely not a household as author states. Looks like useless data for me.

  • by dirtylowprofile on 5/25/2020, 11:54 AM

    Can someone enlighten me who and what is rainbowtabl.es?

  • by lisk1 on 5/25/2020, 8:51 AM

    Solution for this is to tunnel the traffic through encrypted connection to servers in countries that respect persons privacy(if that is true nowadays). The easiest way is to use WireGuard, easy to set up uses only one port and have clients for many devices.

  • by on 5/25/2020, 8:48 AM

    undefined

  • by cm2187 on 5/25/2020, 9:58 AM

    There is a special place in hell for software developers who write server software with no authentication by default.