homepage Welcome to WebmasterWorld Guest from 107.20.25.215
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Become a Pro Member

Visit PubCon.com
Home / Forums Index / Local / Foo
Forum Library, Charter, Moderators: incrediBILL & lawman

Foo Forum

    
Your Smartphone is tattling on you
Android specific
tangor




msg:4392841
 8:52 am on Dec 1, 2011 (gmt 0)

An Android app developer has published what he says is conclusive proof that millions of smartphones are secretly monitoring the key presses, geographic locations, and received messages of its users.

In a YouTube video posted on Monday, Trevor Eckhart showed how software from a Silicon Valley company known as Carrier IQ recorded in real time the keys he pressed into a stock EVO handset, which he had reset to factory settings just prior to the demonstration. Using a packet sniffer while his device was in airplane mode, he demonstrated how each numeric tap and every received text message is logged by the software.

Ironically, he says, the Carrier IQ software recorded the “hello world” dispatch even before it was displayed on his handset.

[theregister.co.uk...]
Oddly enough, this has no impact on me... I gave up cell phones 9/11 (just coincided). Most others, however, are packing a cell, and this might be of interest if yours is powered by Android.

 

wheel




msg:4392891
 11:57 am on Dec 1, 2011 (gmt 0)

I detest the tracking. I assume everything I do on the phone is tracked by various third parties. But what can we do? it's that, or no cell phone.

I'm very careful with the games I install on my android. They're all tracking way more than they should.

engine




msg:4392900
 12:25 pm on Dec 1, 2011 (gmt 0)

Every time you install an app there are way too many accesses required. I just limit the apps to as few as possible, and don't d/l new apps without some evidence of their efficacy.

Either way, it's a risk, imho.

Before too much longer it's going to be difficult to get basic feature phones.

The OS ought to have better facilities for app analysis.

J_RaD




msg:4393222
 12:22 am on Dec 2, 2011 (gmt 0)

sounds like its on all smartphones from iphone to blackberry.


this is going to hit the fan nicely.




if anyone is using an android device just load a custom rom (cyanogen) and don't use your wireless carriers default.

tangor




msg:4393306
 7:23 am on Dec 2, 2011 (gmt 0)

Senator and former late-night funnyman Al Franken has called on Carrier IQ to explain why its diagnostic software, buried in the bowels of 141 million smartphones, isn't a massive violation of US wiretap laws.

In a letter sent to Larry Lenhart, CEO and president of the Mountain View, California-based software maker, Franken expressed concern the software may run afoul of the Electronic Communications Privacy Act, which forbids the monitoring of communications without the users’ consent, and the Computer Fraud and Abuse Act. The letter was sent after a 25-year-old Android app developer published evidence that Carrier IQ software may secretly log end users' key taps and text messages.

[theregister.co.uk...]
Things are heating up.

engine




msg:4393398
 12:13 pm on Dec 2, 2011 (gmt 0)

Now, it seems, Apple is stating it has stopped supporting Carrier IQ. It's still on your iPhone until a new software update.

engine




msg:4393456
 3:43 pm on Dec 2, 2011 (gmt 0)

This story is going to run and run. Apparently, Samsung and HTC have been served with a wiretapping lawsuit of the tracking software.
The swirling controversy over a company that reportedly installed tracking software on users’ mobile phones has already produced its first two lawsuits. On Thursday, plaintiffs sued the company, Carrier IQ, and phone makers HTC and Samsung for violating a federal wiretapping statute.

The class action lawsuits, filed in Chicago and St. Louis, seek hundreds of million of dollars on behalf of all US residents who had mobile phones containing the software. The lawsuits were brought on the basis of the Federal Wiretap Act, a law that forbids intercepting “oral, wire or electronic communications” and provides penalties of $100 per day for every violation that takes place.


[paidcontent.org...]

tangor




msg:4393651
 12:13 am on Dec 3, 2011 (gmt 0)

More than 48 hours after a software developer posted evidence Carrier IQ monitored the key taps on more than 141 million smartphones, a company official has come forward to rebut the disturbing allegations. And he's provided enough technical detail to convince The Register the diagnostics software doesn't represent a privacy threat to handset owners.

Yes, Carrier IQ is a vast digital fishing net that sees geographic locations and the contents of text messages and search queries swimming inside the phones the software monitors, the company's VP of marketing, Andrew Coward, said in an extensive interview. But except in rare circumstances, that data is dumped out of a phone's internal memory almost as quickly as it goes in. Only in cases of a phone crash or a dropped call is information transferred to servers under the control of the cellular carrier so engineers can trouble shoot bottlenecks and other glitches on their networks.

[theregister.co.uk...]

tangor




msg:4393666
 12:45 am on Dec 3, 2011 (gmt 0)

The most serious charge against Carrier IQ, a venture capital-funded startup in Mountain View, Calif., that makes diagnostic software for carriers, has been that it records keystrokes and transmits them to carriers. One article on a Mac Web site breathlessly reported that "Carrier IQ probably violated federal wiretap laws in millions of cases." (See CNET's FAQ and related articles.)

Well, no. There's zero evidence that Carrier IQ captured, recorded, or transmitted any keystrokes. But that didn't stop the self-appointed lynch mob on blogs and on Twitter (#OccupyCarriers, that would be you).

Dan Rosenberg, an exceptionally talented security consultant who has discovered more than 100 vulnerabilities in the Linux kernel, FreeBSD, and GNU utilities, extracted a copy of Carrier IQ's software from his own Android phones. He then analyzed the assembly language code with a debugger that allowed him to look under the hood.

[news.cnet.com...]
As I said early on, I don't have or use cell phones. Is this a tempest in a teapot, or the end of the world as we know it? More at eleven...

bwnbwn




msg:4396174
 10:38 pm on Dec 9, 2011 (gmt 0)

tangor me either I had them when they were the size of a back pack spent 1000 a month on them and when I quit my other occupation I gave up the cell phone back in 2000, and don't regret not having one today.

People think they can't do without one I know I can.

tangor




msg:4396572
 8:09 am on Dec 11, 2011 (gmt 0)

New info: G says no...

(Reuters) - Google does not work with nor does it support Carrier IQ, the software maker which has been accused of violating millions of mobile phone users' privacy rights, Executive Chairman Eric Schmidt said on Thursday.

Carrier IQ makes software that operators including AT&T and Sprint Nextel install in mobile devices. The software transmits data that Carrier IQ says allows mobile operators to better understand their devices and networks.

But it has come under fire following reports that its software collects and transmits potentially sensitive data about phone users.


[reuters.com...]

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Local / Foo
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved