Article suggestions: Difference between revisions

Please take note of the wiki's [[Consumer Rights Wiki:Inclusion guidelines|Inclusion criteria]] when submitting article suggestions. If you see article suggestions here which do not fit the Wiki, feel free to remove them, leaving your reasoning in an edit note.

==Example==

!Refs

|-

|Survey shows that more than half of websites set marketing cookies despite users opting out via Do Not Track header, Browser add-ons or by declining cookie banners. Google calles it a "misunderstanding of how their products work", Meta comments that according to the law an opt-out only prohibits selling of the data, not collecting it.

|<ref>{{Cite web |title= |url=https://www.404media.co/google-microsoft-meta-all-tracking-you-even-when-you-opt-out-according-to-an-independent-audit/}}</ref><ref>{{Cite web |title= |url=https://globalprivacyaudit.org/2026/california}}</ref>

|-

|In early March, 2026, the Apple TV application called 8Player began displaying a notice informing users who had already paid for the app, that the app would not continue to function unless they agreed to an ongoing subscription.  

The text of the notice says the following:

|[[ABC Financial Services]]

|Manages memberships and recurring service subscriptions for other companies. Prevents customers from being able to cancel a service by locking them into a never-ending cycle of auto renewals, and not allowing the customer to opt out of auto renewal.

|-

|Affinity / [[Canva]] page created needs editors to help

|Personal ID codes, purchase information and contact details of almost half of Estonian citizens and residents have been compromised in a mass data breach of the IT system operated by Allium UPI, a firm dealing with pharmacy and hospital products.

|<ref>{{Cite web |date=2024-04-04 |title=Cybercriminals steal data of around 700,000 Apotheka pharmacy customers |url=https://news.err.ee/1609302096/cybercriminals-steal-data-of-around-700-000-apotheka-pharmacy-customers |url-status=live |website=[[ERR]]}}</ref>

|-

|[[Apple]]

|The update that makes the iWork apps part of the new Apple Creator Studio subscription now adds tracking that is enabled by default and implemented as opt-out. The information about it is displayed in a first launch screen without any immediate way opt out, which qualifies as a dark pattern. Instead, the user has to go through a slightly convoluted path via the iPhone/iPad system settings app, and under the submenu "Apps" find each of the iWork apps and disable analytics there individually for each app. On Desktop, it is under a dedicated menu item under the "Pages"/"Numbers"/"Keynote" menu.

|<ref>{{Cite web |title=New versions of Keynote, Numbers, and Pages collect telemetry by default on iOS, iPadOS, and macOS |url=https://www.reddit.com/r/ios/comments/1qq7q9m/new_versions_of_keynote_numbers_and_pages_collect/ |archive-url=https://web.archive.org/web/20260223032029/https://old.reddit.com/r/ios/comments/1qq7q9m/new_versions_of_keynote_numbers_and_pages_collect/ |archive-date=23 Feb 2026}}</ref>

|-

|[[archive.today]] / archive.ph (Web Archival Service)

|[[ASUS]] (ROG)

|Releases bios updates via windows executable, meaning that you can't update your bios to the latest version to amend a security vulnerability or fix an issue unless you're running microsoft windows.  The windows executable simply extracts a binary file, that you can drop on a thumb drive.  This could be easily done via direct download to support other operating systems.

|

|-

|[[Bluesky]]

|Introduced ID check for Direct Messaging to comply with laws in certain states and abroad, despite both the company and community being against it.

|

|-

|[[Carvana]]

|Saying cars that have been in accidents have not; Lies about inspection and does not replace brake pads even when worn down. Non-refundable $1,500 shipping fee. See [https://www.youtube.com/watch?v=r9yhOeTUEo4 Louis Rossmann's video]

|

|-

|In 2024, an Indian company that provides digital services to food-chains got trivially hacked/cracked, allowing anyone to get customer data and company revenue-stats across many countries

|<ref>https://web.archive.org/web/20240923081639/https://peabee.substack.com/p/whats-inside-the-qr-code-menu-at</ref>

|-

|[[E621]]

|FBI buys location data of US citizens

|<ref>{{Cite web |title=FBI is buying location data to track US citizens, director confirms |url=https://techcrunch.com/2026/03/18/fbi-is-buying-location-data-to-track-us-citizens-kash-patel-wyden/ |url-status=live |website=[[TechCrunch]]}}</ref>

|-

|[[Foxconn]]

|

|-

|Updater uses dark pattern to trick unsuspecting users into installing a trial version of their paid product. The checkbox is enabled again by default with each update in the hope that the user misses it by accident at some point.

|

|

|-

|Google apparently plans to reduce the interval of publishing source code of security patches they consider non-critical. This is another blow to the custom ROM community.

|<ref>{{Cite web |title=Exclusive: Google wants to make Android phones safer by switching to ‘risk-based’ security updates |url=https://www.androidauthority.com/android-risk-based-security-updates-3597466/ |archive-url=http://web.archive.org/web/20260107025310/https://www.androidauthority.com/android-risk-based-security-updates-3597466/ |archive-date=7 Jan 2026 |website=Android Authority}}</ref>

|-

|Google restricts data visible in Google Maps for users who are not signed in with an account (see [[Forced account]]). Reviews and photos are no longer visible without login. This also forces users to agree to Google's TOS and logs them into all other Google services, such as YouTube or Google Search so that now all their data in those other services is associated with their accounts. This also raises concerns that other services such as YouTube might follow.

|<ref>{{Cite web |date=14 Feb 2026 |title=Google Maps now forces you to sign-in |url=https://www.reddit.com/r/GoogleMaps/comments/1r4iauf/google_maps_now_forces_you_to_signin/ |archive-url=https://web.archive.org/web/20260223032117/https://old.reddit.com/r/GoogleMaps/comments/1r4iauf/google_maps_now_forces_you_to_signin/ |archive-date=23 Feb 2026 |website=Reddit}}</ref><ref>{{Cite web |date=17 Feb 2026 |title=Can't view images without logging in? |url=https://www.reddit.com/r/GoogleMaps/comments/1r74v0f/cant_view_images_without_logging_in/ |archive-url=https://web.archive.org/web/20260223032213/https://old.reddit.com/r/GoogleMaps/comments/1r74v0f/cant_view_images_without_logging_in/ |archive-date=23 Feb 2026 |website=Reddit}}</ref>

|-

|[[Google]], [[Mozilla]], [[Apple]], [[Microsoft]], but largely Google-led

|Google Chrome, Mozilla Firefox, and Safari are removing XSLT 1.0 support, which could break critical parts of government's websites worldwide<ref>{{Cite web |last=Dimant |first=Dimitrii "Mamut" |date=2025-08-10 |title=XSLT removal will break multiple government and regulatory sites across the world #11582 |url=https://github.com/whatwg/html/issues/11582 |url-status=live |archive-url=http://web.archive.org/web/20260211221059/https://github.com/whatwg/html/issues/11582 |archive-date=11 Feb 2026|access-date=2025-10-25 |website=Github (specifically the Web Hypertext Application Technology Working Group's HTML standards repo, controlled by Mozilla, Google, Microsoft and Apple)}}</ref>. There are valid security reasons for them to want to stop supporting this 1999-era standard, however they have had 26+ years to update to a newer standard (such as the 2017-era 3.1 standard, which is backwards compatible and would allow these sites to continue to work<ref>{{Cite web |date=2017-03-21 |title="XML Path Language (XPath) 3.1: W3C Recommendation 21 March 2017" |url=https://www.w3.org/TR/xpath-31/ |url-status=live |archive-url=http://web.archive.org/web/20260116015839/https://www.w3.org/TR/xpath-31/ |archive-date=16 Jan 2026|website=W3C}}</ref>). The single unpaid developer maintaining these libraries has more or less retired after getting flooded with impossible to satisfy security requests from these companies<ref>{{Cite web |last=Wellnhoffer |first=Nick |date=2025-05-08 |title=Triaging security issues reported by third parties |url=https://gitlab.gnome.org/GNOME/libxml2/-/issues/913 |url-status=live |archive-url=http://web.archive.org/web/20260131231248/https://gitlab.gnome.org/GNOME/libxml2/-/issues/913 |archive-date=31 Jan 2026|access-date=2025-10-25 |website=gitlab.gnome.org}}</ref>. There is an existing project called XRUST to implement the 3.1 standard<ref>{{Cite web |date=2025-05-09 |title=XRust: XPath, XQuery, and XSLT for Rust |url=https://gitlab.gnome.org/World/Rust/markup-rs/xrust |url-status=live |archive-url=http://web.archive.org/web/20260204085435/https://gitlab.gnome.org/World/Rust/markup-rs/xrust |archive-date=4 Feb 2026|access-date=2025-10-14 |website=gitlab.gnome.org}}</ref>, which is 2/3rds of the way through supporting all the features of 1.0 - the XSLT part fully supports all the 1.0 features at this point. XSLT is part of the W3C Consortium's open web standards for formatting and presenting XML, and is also how RSS works, so RSS feeds would stop working as well, disrupting the livelihoods of podcasters<ref>{{Cite web |last=Rijo |first=Luis |date=2025-08-20 |title=Google targets RSS feeds in new XSLT removal proposal |url=https://ppc.land/google-targets-rss-feeds-in-new-xslt-removal-proposal/ |url-status=live |archive-url=https://web.archive.org/web/20260222212228/https://ppc.land/google-targets-rss-feeds-in-new-xslt-removal-proposal/ |archive-date=22 Feb 2026|access-date=2025-10-14 |website=PPC-Land}}</ref>. This has led to questions of who owns the web - the public (including the government) who paid for and laid down the highways / web infrastructure - or a handful of large corporations? <ref>{{Cite web |last=Branscombe |first=Mary |date=2025-09-01 |title=XSLT Debate Leads to Bigger Questions of Web Governance |url=https://thenewstack.io/xslt-debate-leads-to-bigger-questions-of-web-governance/ |url-status=live |archive-url=http://web.archive.org/web/20260131231310/https://thenewstack.io/xslt-debate-leads-to-bigger-questions-of-web-governance/ |archive-date=31 Jan 2026|access-date=2025-10-14 |website=The New Stack}}</ref>

|

|-

|[[GoPro]] Hero 12

|GoPro Hero 12 requires the GoPro app to be installed before you can use the camera. Many currently used devices are not compatible with the app, therefore making use of the camera difficult to impossible for new owners or upon camera factory reset. There's also the question of what data the app collects and whether it requires login and or camera activation.

|

|-

|Indonesia

|<ref>{{Cite web |last=Delaney |first=John |date=2021-11-09 |title=Kangaroo Indoor + Outdoor Cam Review |url=https://www.pcmag.com/reviews/kangaroo-indoor-plus-outdoor-cam |url-status=live |archive-date=2024-08-11 |access-date=2026-04-01 |website=PCMag}}</ref><ref>https://www.bestbuy.com/product/kangaroo-indoor-outdoor-wired-1080p-security-camera-white/J3QLYYW64G/sku/6506997/reviews?pageSize=20</ref>

|-

|-

|[[Kohls]]

|

|-

|Used to be a good program, but over the last few years they've implemented a number of anti-user policies including extensive cool-downs for earning points on Bing, and making it more difficult to redeem points.  There are multiple reports on r/microsoftrewards of people getting banned or restricted when they have over $100 worth of points that they are trying to redeem.  They've also removed points opportunities that used to be interesting and engaging.

|

|<ref>{{Cite web |date=Apr 16, 2019 |title=Fact Sheet: Cases Tossed Out of Court Because of Forced Arbitration Causes and Class Action Bans |url=https://www.centerjd.org/content/fact-sheet-cases-tossed-out-court-because-forced-arbitration-causes-and-class-action-bans#_ftn1 |access-date=Feb 12, 2026 |website=Center for Justice & Democracy at New York Law School |url-status=live |archive-url=http://web.archive.org/web/20251013145327/https://centerjd.org/content/fact-sheet-cases-tossed-out-court-because-forced-arbitration-causes-and-class-action-bans |archive-date=13 Oct 2025}}</ref>

|-

|Releasing more and more subscription sound packs while previously released one-time purchase sound packs are full of bugs/issues and have gone without updates for sometimes over a year. They have also increased the price of one-time purchase packs by about 500% while still providing no additional or improved functionality.  

They also added unsolicited popups advertising their paid sound packs at startup of the open source MuseScore application, as well as buttons and commands for their cloud service to the home screen, which cannot be disabled. They previously ran into controversy when changing the privacy policy of Audacity and tried to add tracking. The closed-source MuseHub application (which is required to download the free sound packs) connects to tracking services with neither a real opt-in nor an opt-out option. Newer versions of MuseHub now seem to [[Forced account|require an account]] to download free sound packs and sound effects, which previously was not the case. Muse Hub starts at every system launch by default and stays active in the background despite this not being required for its functionality. They also added proprietary parts to MuseScore (like the MuseSample), which is kept closed source. They also bought StaffPad and seem to have quietly ceased its development without publishing any statements.

|<ref>{{Cite web |date=2026-03-16 |title=450 FSFE supporters affected: Payment provider Nexi cancelled us |url=https://fsfe.org/news/2026/news-20260316-01.en.html |url-status=live |archive-url=https://web.archive.org/web/20260317162959/https://fsfe.org/news/2026/news-20260316-01.en.html |archive-date=2026-03-17 |access-date=2026-03-17 |website=FSFE - Free Software Foundation Europe}}</ref>

|-

|Odido is an internet service provider in the Netherlands with a 10-15% market share [[https://www.acm.nl/nl/publicaties/acm-telecommonitor-derde-kwartaal-2025 79]]. On the 3rd of March 2026 a user reported that his Odido Zyxel EX5601-T1 router was (illegally) sending analytics data to a Turkish AI-company [[https://www.linkedin.com/pulse/odido-router-verzamelt-analytics-van-je-huishouden-sipke-mellema-0uoie/ 80]]. The user reported on the 8th of March 2026 that the router silently stopped sending this data with no formal mention/patch from Odido. The user reported on the poor security of the router and that the analytics data contained the unencrypted names of local networks, the names of devices connected to these networks, and MAC-addresses. The poor security of Odido's routers follows a massive data leak of 6.2 million customers' full legal names, phone numbers, emails, bank account numbers, passport numbers and more [[https://tweakers.net/nieuws/244656/odido-waarschuwt-voor-datalek-miljoenen-klantgegevens-gestolen-bij-cyberaanval.html 81]].

|<ref>{{Cite web |title=ACM Telecommonitor derde kwartaal 2025 |url=https://www.acm.nl/nl/publicaties/acm-telecommonitor-derde-kwartaal-2025 |url-status=live}}</ref><ref>{{Cite web |title=Odido-router verzamelt analytics van je huishouden |url=https://www.linkedin.com/pulse/odido-router-verzamelt-analytics-van-je-huishouden-sipke-mellema-0uoie/ |url-status=live}}</ref><ref>{{Cite web |title=Odido waarschuwt voor datalek: miljoenen klantgegevens gestolen bij cyberaanval |url=https://tweakers.net/nieuws/244656/odido-waarschuwt-voor-datalek-miljoenen-klantgegevens-gestolen-bij-cyberaanval.html |url-status=live}}</ref>

|Pearl Abyss

|Crimson Desert engaged in hardware gatekeeping by purposely locking out support for Intel GPUs. Their response when people asked what was going on was, “Get a refund.” They failed to mention in their hardware requirements that Intel GPUs were not supported. Intel also reached out to Pearl Abyss over the course of Crimson Desert’s development to offer support but was ignored. Pearl Abyss has now backpedaled after public backlash and says they will offer Intel GPU support.

|-

|[[Persona]] (Age verification service)

|[[Universal Audio]]

|Product: UAD (Volt) Audio Interfaces

|<ref>{{Cite web |title=Official UAD setup guide for "Volt" audio interfaces |url=https://help.uaudio.com/hc/en-us/articles/4409233546644-How-to-set-up-your-Volt-Interface}}</ref><ref>{{Cite web |title=Review of Volt 876 audio interface by Julian Krause |url=https://youtu.be/CCnttwq9jMw?si=DcwA97e3pSfp5rlr&t=803}}</ref>

|-

|

|-

|Some of the bread makers have anti repair screws in them to prevent people from repairing them themselves. Needs more citations.

|

|[[Content delivery network]] ([[CDN]])

|[[wikipedia:Content_delivery_network|WP]], see also [[Cloud (service)]]. While helpful, they can infer the browsing history of millions of users across sites. The bigger their monopoly, the more cross-site tracking power they have. Even GDPR has been against using CDNs in some situations. Examples of CDN: [[wikipedia:Amazon_CloudFront|CloudFront]] (see [[Amazon]] [[wikipedia:Amazon_Web_Services|AWS]]), [[Cloudflare]], [[Microsoft]] [[wikipedia:Microsoft_Azure|Azure]], [[wikipedia:Fastly|Fastly]], etc...

|

|}

|The new Fairphones (5th and 6th generation) are availible with stock android as well as e/os, which is a fork of lineage os and a european alternative cloud provider (murena) instead of google. This has many privacy features (app tracker blocker, tor network usage, and gps spoofing) availible in a few clicks. Also degoogle apps (microg, safetynet, ...) are preinstalled therefore it is w´possible to install everything also from playstore with an anonymous account. As e/os is a fork of lineage os and there is an official guide to flash the fairphone with e/os and is officially supported, flashing lineage os is very easy.

|<ref>{{Cite web |date=2026-02-24 |title=How to manually install Android on your Fairphone |url=https://support.fairphone.com/hc/en-us/articles/18896094650513-How-to-manually-install-Android-on-your-Fairphone |url-status=live}}</ref><ref>{{Cite web |title=The Fairphone (Gen. 6) with privacy first /e/OS |url=https://shop.fairphone.com/the-fairphone-gen-6-e-operating-system |url-status=live}}</ref>

|-

|Home Assistant

|Reticulum is an open-source, decentralized networking stack designed to communicate between practically any wireless device, even without internet. Its purpose is to provide fully anonymous end-to-end encrypted communication by default, especially in the age of government surveillance. The Reticulum network, protocol, and hardware are not tied any company in particular but were initially created by Github user 'markqvist'. Honorable mention to NomadNet, which is a network of nodes that serve webpages, similar to the internet, that communicate via Reticulum.

|<ref>{{Cite web |last=markqvist |title=Reticulum Network |url=https://reticulum.network/ |access-date=2026-02-15 |website=Reticulum |archive-url=http://web.archive.org/web/20260222180553/https://reticulum.network/ |archive-date=22 Feb 2026}}</ref>

|-

|stevesgames.co.uk

|The company offers a tutorial on how users can mix their own fog juice to use with Ulanzi mini fog machines from readily available low-cost ingredients, whereas competitors sell proprietary fog juice at extortionate prices, refuse to release the formula and refuse to honour the warranty if users use anything but the OEM brand with their machines.

|<ref>{{Cite web |title=Tutorial {{!}} How to DIY Ulanzi FM01 Fog Machine Juice? |url=https://www.youtube.com/watch?v=qiq1B6-dcEM |type=Video}} ([https://preservetube.com/watch?v=qiq1B6-dcEM Archived])</ref>

|}