Unprecedented level of spying on consumers using Android and Apple smart phones

In summary, Google recently removed 22 applications from the Android Market on suspicion of being malware. Many of the applications targeted Android smartphone users across Europe and included premium SMS fraud services that cost users money. Microsoft has offered a WP7 giveaway to users who install its latest security update.
  • #1
gravenewworld
1,132
26
Quite scary.

http://www.pcworld.com/article/245229/carrier_iq_rootkit_reportedly_logs_everything_on_millions_of_phones.html

If you use an Android, BlackBerry, or Nokia smartphone then you may be at risk of being illegally wire-tapped by Carrier IQ--a provider of performance monitoring software for smartphones--according to reports.

Earlier this month, security researcher Trevor Eckhart announced that he found software made by Carrier IQ that may be logging your every move on your mobile phone. Trevor referred to it as a "rootkit", a piece of software that hides itself while utilizing privileged access like watching your every move. Carrier IQ didn't take too kindly to this accusation, and responded aggressively with a cease-and-desist letter, and went on to deny this accusation. However, to further back his accusation, Eckhart released a video that he says shows the software in action.
In the video, Eckhart shows that Carrier IQ is also logging Web searches. While this doesn't sound all that bad by itself, it suggests that Carrier IQ is logging what happens during an HTTPS connection which is supposed to be encrypted information. Additionally, it can do this over a Wi-Fi connection with no 3G, so even if your phone service is disconnected, IQRD still logs the information.
 
Computer science news on Phys.org
  • #2
And it's on Apple devices also.

References to data logging software Carrier IQ have been found on Apple’s iOS

1st December 2011 by Aayush Arya

Given Apple’s much more closed ecosystem and tighter control over both the hardware and software of its phones, and its famed refusal to let the carriers dictate what comes preinstalled on an iPhone, it had seemed unlikely that its operating system would have any traces of Carrier IQ’s software, but that has turned out to not be the case.

http://thenextweb.com/apple/2011/12...are-carrier-iq-have-been-found-on-apples-ios/
 
  • #3
  • #4
gravenewworld said:
Quite scary.

Wikipedia even speaks of the Rootkit controversy and on the Carrier IQ web site, they flaunt their ability to

Identify exactly how your customers interact with services and which ones they use. See which content they consume, even offline.
 
  • #5
I'm glad that I don't have a cell phone.
 
  • #6
How many doctors use smart phones to look up patient information and medications or to discuss operations and patients? Can you imagine how many times HIPAA laws have been violated by this little program? It really is essentially a wiretap on 150 million Americans by private companies.
 
  • #7
I didn't realize someone beat me to this. I did a search before posting but apparently didn't pick up on the words in the title above. Borek pointed this out. I would not object to having the thread deleted.

I thought this would be an interesting addition to what has already been posted here, so I included it from my original post.

The carrier's justification for having the software on the devices is to spot problems across a network, where and why calls are being dropped, battery life problems, and general phone software glitches. Apple says it stopped supporting it in the latest version of iOS and will completely eliminate Carrier IQ from all iPhones and iPads in an upcoming software update.

Aren't rootkits fun ? I wonder if Kasperski's latest tool to detect them has a cell phone app as well as for a PC. I have it on my PC, and it has detected and removed google web page redirects (rootkit) nicely. Every time you execute it, it goes out and downloads a new version of the software in a .zip file, it takes only seconds to run as well. I run the free version. Rootkit insurance is what I like to call it.

Rhody...
 
Last edited:
  • #8
FYI. Something to mull over...

FBI using Carrier IQ info for "law enforcement purposes," refuses to release records
Morisy speculates that "What is still unclear is whether the FBI used Carrier IQ's software in its own investigations, whether it is currently investigating Carrier IQ, or whether it is some combination of both—not unlikely given the recent uproar over the practice coupled with the US intelligence communities reliance on third-party vendors. The response would seem to indicate at least the former, since the request was specifically for documents related directly to accessing and analyzing Carrier IQ data."

Rhody... :uhh:
 
  • #9
I must be on a roll today...

Android Infected? Microsoft Offers WP7 Giveaway
Google recently removed 22 applications from the Android Market on suspicion of being malware. The apps in question, spotted by security firm Lookout, mainly targeted Android smartphone users across Europe and included premium SMS fraud services that cost users money. The main culprit was called RuFraud and affected users in Russia, Azerbaijan, Armenia, Georgia, Czech Republic, Poland, Kazakhstan, Belarus, Latvia, Kyrgyzstan, Tajikistan, Ukraine, Estonia, Great Britain, Italy, Israel, France, and Germany. The malware didn't jump across the Atlantic to affect North American users.

and...

(I hope the irony is obvious to everyone here: Microsoft handing out free hardware for infected devices? C'mon, that's golden.)

One user responded: "(shamefully admitting) I fell for the Cut the Rope SMS exploit, they got me for $352.26. #droidrage #windowsphone #androidsucks."

Another said: "I've had to flash my Android phone twice because of malware. Not to mention the fragmentation issues + battery life."
Be careful what you download people...

Rhody... :rolleyes:
 
  • #10
Did this program transmit pictures or video from the phones, or just text? I can't even IMAGINE how disastrous this is for personal privacy.

Not entering the smart phone market until this is cleared up!
 
  • #11
Wow. Go me and my 6 year old Nokia. I've been slow on the uptake with smart phones, but I'm less and less concerned about it every day!
 
  • #12
Smart phones are awesome if you keep in mind that they are basically a computer that can be also used as a phone, and thus require all the care and responsibilities that a general purpose computer does.
 

1. What exactly is "spying" on consumers using Android and Apple smart phones?

The term "spying" in this context refers to the collection of personal data from users' smartphones without their knowledge or consent. This can include information such as location data, contacts, browsing history, and app usage.

2. How is this spying done?

This spying is done through various methods, such as through apps that request excessive permissions and track user data, or through hidden software and tracking codes embedded in websites and ads.

3. Is this legal?

It depends on the specific actions taken and the laws in the country in which the spying is occurring. In some cases, companies may be violating privacy laws by collecting and using personal data without consent. However, in other cases, companies may have terms and conditions that users agree to when using their devices or services, giving them permission to collect data.

4. What are the potential risks for consumers?

The potential risks for consumers include invasion of privacy, identity theft, and targeted advertising. The personal data collected can also be sold to third parties, putting consumers at risk for further exploitation.

5. What can consumers do to protect their privacy?

Consumers can take steps to protect their privacy, such as carefully reviewing app permissions before downloading, regularly checking privacy settings on their devices, and avoiding clicking on suspicious links or ads. They can also use privacy-focused browsers and search engines, and consider using VPNs or ad blockers to limit data tracking.

Similar threads

Carrier IQ Your cell phone's secret big brother
    • Computing and Technology
Replies
1
Views
2K
Smart Phones And The Flynn Effect
    • Computing and Technology
2
Replies
51
Views
4K

Hot Threads

Recent Insights

Back
Top