undefined | Better HN

0 pointssitkack1y ago0 comments

If you aren't running an encrypted disk on any cloud provider you should absolutely fundamentally understand that your data has been scanned and that your VM data is "business data" so a copy gets sent to whomever wants it, in bulk.

0 comments

sidibe1y ago

Maybe it's good to assume that but at this point that is not going to purposely happen at a company like Google or Amazon. The risk, which is a near certainty to bear out if they have any decent employees among the tens of thousands (esp. with the weekly "I'm leaving because I hate this company" screeds these companies yield), isn't worth whatever little reward they might find in your data.

orthecreedence1y ago

In this case, usually the infrastructure provider owns the keys, and if not, they would have easy access to them. So I don't see how encrypted disk really solves anything besides accidental leakage to a peer infra user, or someone sneaking into the datacenter and physically removing the disks.

ripped_britches1y ago

Maybe if you are like a high profile target of a state actor, but otherwise this is a paranoid take

hulitu1y ago

Taking into accout that, the first thing Firefox does, is connect to a Google server (e100.net) , i would say it is a good founded concern.

Tijdreiziger1y ago

Proof for this claim?

j / k navigate · click thread line to collapse