Even after disabling remote control and [1]officially ending support for early Nest Learning Thermostats, Google is [2]still receiving detailed sensor and activity data from these devices , including temperature changes, motion, and ambient light. The Verge reports:

> After digging into the backend, security researcher Cody Kociemba found that the first- and second-generation Nest Learning Thermostats are still sending Google information about manual temperature changes, whether a person is present in the room, if sunlight is hitting the device, and more. Kociemba made the discovery while participating in a bounty program [3]created by FULU , a right-to-repair advocacy organization cofounded by electronics repair technician and YouTuber Louis Rossmann.

>

> FULU [4]challenged developers to come up with a solution to restore smart functionality to Nest devices no longer supported by Google, and that's exactly what Kociemba did with his open-source No Longer Evil project. But after cloning Google's API to create this custom software, he started receiving a [5]trove of logs from customer devices , which he turned off. "On these devices, while they [Google] turned off access to remotely control them, they did leave in the ability for the devices to upload logs. And the logs are pretty extensive," Kociemba tells The Verge. [...] "I was under the impression that the Google connection would be severed along with the remote functionality, however that connection is not severed, and instead is a one-way street," Kociemba says.



[1] https://tech.slashdot.org/story/25/04/25/2052237/google-is-killing-software-support-for-early-nest-thermostats

[2] https://www.theverge.com/news/820600/google-nest-learning-thermostat-downgraded-data-collection

[3] https://bounties.fulu.org/

[4] https://www.youtube.com/watch?v=LsI6P2lxcHM

[5] https://pastebin.com/fkQDkSwu