Dear users, Xiaomi is tapping into your personal stuff — F-Secure
Xiaomi has quickly risen from zero to hero to become the number one brand in the over-saturated China smartphone market after dealing with heavyweights Samsung, Lenovo, Huawei and Apple. But then, no name seems impossible for the 21st century media to tarnish, unless you are referring to the Almighty.
Xiaomi is facing an issue that has turned heros to villains, downed many from grace to grass and has brought many companies down to zero in the past.
One of the most notable security firms of our time, F-Secure, has come out to make it’s stand known in the is-Xiaomi-evading-my-privacy-or-not feud that has caused uproar in some sections of the mobile phone world in the past week.
F-Secure said that it had carried out series of experiment and analysis and has concluded that Xiaomi is spying on users. Here is what the guys at F-Secure did:
We started with a ‘fresh out of the box’ test, so no account setup was done or cloud service connection was allowed. Then we went through the following steps:
• Inserted SIM card
• Connected to WiFi
• Allowed the GPS location service
• Added a new contact into the phonebook
• Send and received an SMS and MMS message
• Made and received a phone call
We saw that on startup, the phone sent the telco name to the server api.account.xiaomi.com. It also sent IMEI and phone number to the same server:
The phone number of contacts added to the phone book and from SMS messages received was also forwarded.
Next we connected to and logged into Mi Cloud, the iCloud-like service from Xiaomi. Then we repeated the same test steps as before. This time, the IMSI details were sent to api.account.xiaomi.com, as well as the IMEI and phone number.
A statement from Xiaomi has helped contradict issues. The Chinese phone maker said that data collected was used to improve user experience and to”analyze the efficiency” of its business.
“When you use Xiaomi products to share information with your family and friends, to send messages and products or invite other person through Xiaomi BBS, we(Xiaomi) will collect the information which you provide and is relevant with such people, for example name, mail address and telephone number and so on.” Xiaomi stated.
You may also like
- Dear users, Xiaomi is tapping into your personal stuff — F-Secure
- Red alert: Apple and Xiaomi phones have spyware inside — Taiwan
- Xiaomi apologies for looking into user-data, fixes unauthorized access
- Microsoft slashes price on Lumia phones before pre-orders
- LG G Vista 2 goes official with stylus pen and 5.7″ screen