Friendly forums for passionate Dems!
More than 91 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Latest Breaking News»Firmware Secretly Sent Te...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Latest Breaking News

Related: General Discussion, Editorials & Other Articles

Renew Deal

(81,856 posts) Thu Nov 17, 2016, 12:40 PM Nov 2016

Firmware Secretly Sent Text, Call Data On Android Users To China

Source: Dark Reading

Several Android smartphone models sold in the US, including via major online retailers like Amazon and BestBuy, had firmware in them that surreptitiously collected and sent detailed personally identifiable information on users and devices to a server based in China.

An employee working for DARPA-funded security firm Kryptowire stumbled upon the issue when using a burner phone from Miami-based BLU Products he had purchased for a trip overseas. When setting up the device, the Kryptowire employee noticed some strange network activity and started poking around.

The investigation led to the discovery of firmware on the phone designed to actively transmit device identifying data and user information, including the complete content of text messages, full contact lists, call history data, and other information to a server based in Shanghai.

The firmware bypassed Android’s permission model and also collected and transmitted information on the use of applications installed on the device, Kryptowire announced in an alert this week. “It executed remote commands with escalated (system) privileges, and was able to remotely reprogram the devices,” the security firm said.
<snip>

Read more: http://www.darkreading.com/mobile/firmware-secretly-sent-text-call-data-on-android-users-to-china/d/d-id/1327498

InfoView thread info, including edit history TrashPut this thread in your Trash Can (My DU » Trash Can) BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks) 2 replies, 387 views
ShareGet links to this post and/or share on social media AlertAlert this post for a rule violation PowersThere are no powers you can use on this post EditCannot edit other people's posts ReplyReply to this post EditCannot edit other people's posts Rec (10) ReplyReply to this post
2 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
Firmware Secretly Sent Text, Call Data On Android Users To China (Original Post) Renew Deal Nov 2016 OP
Uh-hnuh....a firmware developed for a few specific users ended up on tens of thousands of phones... haele Nov 2016 #1
If they got mine they were bored to death. leftyladyfrommo Nov 2016 #2

haele

(12,650 posts)
1. Uh-hnuh....a firmware developed for a few specific users ended up on tens of thousands of phones...
Reply to Renew Deal (Original post)
Thu Nov 17, 2016, 01:11 PM
Nov 2016

And the company just didn't notice the unusually huge server activity and storage requirements for a monitoring system that was built at the request for maybe 25 - 50 users. Totally innocent mistake - and a bit of incompetence, as hundreds of thousands(if not a million or more) of dollars would be wasted on the required upgrade and maintenance to support the tracking of all those additional thousands of phone users. All due to an apparent lack of system oversight.
What was their sysadmin doing, and why wasn't s/he fired along with someone high up in manufacturing and sales within the first month - since the company wasn't planning on doing more than making a specific firmware change to support a request of a couple dozen wealthy users to easily track and winnow out spam and other junk communications?
Just a mistake? Sure....


Haele

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

leftyladyfrommo

(18,868 posts)
2. If they got mine they were bored to death.
Reply to Renew Deal (Original post)
Thu Nov 17, 2016, 02:49 PM
Nov 2016

I don't put anything on my phone that is personal. I don't email anything that the whole world can't see.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
Reply to this discussion
Latest Discussions»Latest Breaking News»Firmware Secretly Sent Te...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2024 Democratic Underground, LLC. Thank you for visiting.