Most active commenters
  • ragequittah(3)

←back to thread

ChatGPT Atlas

(chatgpt.com)
763 points easton | 28 comments | 21 Oct 25 17:18 UTC | HN request time: 0.604s | source | bottom
1. sloankev ◴[21 Oct 25 18:55 UTC] No.45660016[source]
Im still weary of OpenAI being legally required to retain all of your data even if you delete it [0] . This means everything you expose to this tool will be permanently stored somewhere. Why isn’t this a bigger problem for people?

Even privacy concerns aside… this would be the world’s most catastrophic data leak.

[0]: https://openai.com/index/response-to-nyt-data-demands/

replies(12): >>45660060 #>>45660212 #>>45660248 #>>45660394 #>>45660540 #>>45660638 #>>45660778 #>>45661038 #>>45661050 #>>45661466 #>>45661508 #>>45665850 #
2. sloankev ◴[21 Oct 25 18:58 UTC] No.45660060[source]
They literally created a precedent that’s it’s for use in legal cases if required… why would you want your entire digital life subject to subpoena?
replies(1): >>45661687 #
3. tempestn ◴[21 Oct 25 19:08 UTC] No.45660212[source]
I think you mean wary, not weary.
replies(1): >>45660481 #
4. ragequittah ◴[21 Oct 25 19:10 UTC] No.45660248[source]
I'm not so sure this is much worse than Chrome. Really in today's world if you're not browsing the web like multiple people are looking over your shoulder you're probably doing it wrong. And most of the steps people do to mitigate privacy violations (TOR, pihole, VPNs, etc.) probably make any signal you do put out more scrutinized. The one solution I do like is the iCloud private relay which I hope some reputable VPN vendors pick up soon.
replies(4): >>45660287 #>>45660356 #>>45660588 #>>45661146 #
5. throitallaway ◴[21 Oct 25 19:13 UTC] No.45660287[source]
Does Google have my .env files that I've opened via Chrome?
replies(1): >>45660760 #
6. darepublic ◴[21 Oct 25 19:18 UTC] No.45660356[source]
My general understanding is that they browser fingerprint you. And then if that fingerprint is ever detected on a site that also knows your pii they have you. Is that the gist of it or are there more shenanigans I'm unaware of
replies(2): >>45660820 #>>45661398 #
7. ◴[21 Oct 25 19:21 UTC] No.45660394[source]
8. gulfofamerica ◴[21 Oct 25 19:27 UTC] No.45660481[source]
Por que no los dos.
replies(1): >>45661868 #
9. granzymes ◴[21 Oct 25 19:30 UTC] No.45660540[source]
Thankfully the New York Times lost their attempt to force OpenAI to continue preserving all logs on an ongoing basis, but they still need to keep some of the records they retained before September.

https://mashable.com/article/openai-court-ordered-chat-gpt-p...

10. mvieira38 ◴[21 Oct 25 19:34 UTC] No.45660588[source]
> And most of the steps people do to mitigate privacy violations (TOR, pihole, VPNs, etc.) probably make any signal you do put out more scrutinized.

If you're using them correctly there is no way to scrutinize your traffic more, these comments just spread FUD for no good reason. How are "they" unable to catch darkweb criminals for years and even decades, but somehow can tell if it's me browsing reddit over Tor?

replies(2): >>45660912 #>>45661449 #
11. p1esk ◴[21 Oct 25 19:38 UTC] No.45660638[source]
this would be the world’s most catastrophic data leak.

Why?

replies(1): >>45660690 #
12. runjake ◴[21 Oct 25 19:42 UTC] No.45660690[source]
Because sama has mentioned that a heck of a lot of people use ChatGPT to discuss some of their deepest secrets and fantasies.
replies(1): >>45661230 #
13. bdangubic ◴[21 Oct 25 19:47 UTC] No.45660760{3}[source]
it has yours and your next door neighbour's as well
14. ◴[21 Oct 25 19:48 UTC] No.45660778[source]
15. nerdponx ◴[21 Oct 25 19:52 UTC] No.45660820{3}[source]
"They" aren't that interested in PII. They're interested in assigning a unique identifier for you and building as detailed of a profile about you as possible, for targeting ads to you, and more recently tailoring prices to maximize value extraction when you buy something. Focusing on the narrow definition of "PII" as it usually is defined in law is a total distraction. Your email address and name are irrelevant for all of that.
16. alganet ◴[21 Oct 25 19:58 UTC] No.45660912{3}[source]
There are two distinct concerns here.

One of them is personal privacy. For example, an activist being individually targeted.

The other is behavioral targeting, which has no business in catching criminals. It wants to know how large flocks of people behave online.

17. qmr ◴[21 Oct 25 20:10 UTC] No.45661038[source]
I think you meant wary.

wear·y /ˈwirē/ adjective 1. feeling or showing extreme tiredness, especially as a result of excessive exertion. "he gave a long, weary sigh" 2. reluctant to see or experience any more of; tired of. "she was weary of their constant arguments" verb 1. cause to become tired. "she was wearied by her persistent cough" 2. grow tired of or bored with. "she wearied of the sameness of her life"

/ˈwerē/ adjective feeling or showing caution about possible dangers or problems. "dogs that have been mistreated often remain very wary of strangers"

18. MisterTea ◴[21 Oct 25 20:11 UTC] No.45661050[source]
> Why isn’t this a bigger problem for people?

I have friends who are in tech and perfectly aware of the implications but prefer the low effort route. They feel that A. they are not important enough for someone else to care about and B. there is so much data that it is unlikely their data will be seen by anyone.

19. zghst ◴[21 Oct 25 20:19 UTC] No.45661146[source]
You are so me, exactly.
20. The_Rob ◴[21 Oct 25 20:26 UTC] No.45661230{3}[source]
So the world's most embarrassing data leak, but "catastrophic" is stretching it.
21. boston_clone ◴[21 Oct 25 20:39 UTC] No.45661398{3}[source]
By default, I believe that anything you put in the "omnibox" is sent to Google - even if you don't press enter. So, if you use it as a clipboard of sorts and paste a secret / token / key, it should be considered compromised.

You can validate this by going to chrome://omnibox

22. ragequittah ◴[21 Oct 25 20:43 UTC] No.45661449{3}[source]
My take: if you do it correctly you're a very small minority of people and most would probably be concerned at your level of paranoia if you told them every detail of your setup. Turns out opsec is pretty difficult to achieve. Also unless you're a criminal you're probably wasting a lot of time for no real gain.

I use a pihole, ublock, a vpn for some devices, and I'm using my own OPNSense router w/ very strict settings. The amount of privacy I think I have from all that is next to nothing if someone were actually interested in what I was doing. I'd probably just get one of my boxes shelled and that's the end of that. Mostly what I'm trying to do is block 1) Some for the lulz Russian teenager 2) the shady ad networks hoovering up everything all the time and 3) my IoT devices like TVs and Hue light bulbs from ever accessing any part of the rest of my network.

You'll also notice that darkweb criminals are getting caught more and more frequently these days because governments have decided to no longer tolerate it. I feel bad for you if you're in a ransomware gang these days.

replies(1): >>45672427 #
23. greyman ◴[21 Oct 25 20:44 UTC] No.45661466[source]
I conditioned myself to not type too-revealing texts about myself into the computer. It isn't ideal but of course this is quite a big problem.
24. chrisweekly ◴[21 Oct 25 20:49 UTC] No.45661508[source]
Weary (tired) or wary (afraid)?
25. ragequittah ◴[21 Oct 25 21:04 UTC] No.45661687[source]
Given that most of society already uses chrome with Google search on their adware ridden android phones it's not much of a change from that.
26. Wistar ◴[21 Oct 25 21:20 UTC] No.45661868{3}[source]
Si, si.
27. WA ◴[22 Oct 25 07:23 UTC] No.45665850[source]
> Why isn’t this a bigger problem for people?

Same reason why Chrome and Gmail won. People don't care. Even most people on HN don't care if the tool is slightly better than the competition.

28. mvieira38 ◴[22 Oct 25 17:32 UTC] No.45672427{4}[source]
And if you do follow these arrests you'll notice that it's old-fashioned investigations that catch them, by tracing behavior, log in times, etc. The comment I was answering was implying you lose anonymity by using these tools, which you don't