Linked by Thom Holwerda on Thu 1st Dec 2011 22:29 UTC
Privacy, Security, Encryption So, this has been causing a bit of a major dungstorm - and rightly so. As it turns out, many carriers are installing a piece of non-removable privacy-invading spyware on their smartphones called CarrierIQ. It doesn't matter whether you have a webOS, Android, BlackBerry or iOS device - carriers install it on all of them. Luckily though, it would appear it really depends on your carrier - smartphones in The Netherlands, for instance, are not infested with CarrierIQ. Update: As John Gruber rightfully points out, ever so verbosely, the headline here isn't particularly well-chosen. The article makes all this clear, but the headline doesn't. It's my birthday today, so my head wasn't totally in it - my apologies! Update II: Just got a statement from an HP spokesperson: "HP does not install nor authorize its partners to embed Carrier IQ on its webOS devices."
Thread beginning with comment 498597
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: Comment by MOS6510
by leos on Thu 1st Dec 2011 15:05 UTC in reply to "Comment by MOS6510"
leos
Member since:
2005-09-21

I defense of iOS, this "feature" is turned off by default and it does exactly what the included description says should you want to turn it on. So this his hardly spooky or nasty.

What some providers have installed can't be turned off and does a whole lot more logging 'n' reporting than iOS does.


How was this not mentioned in the article? Thom takes extra time to poke at iOS, and yet it isn't even remotely the same. By far the biggest privacy violation with CarrierIQ is that it monitors your text input, which doesn't happen on iOS.

Lumping a user opt-in feature that logs only general usage data with a real rootkit that logs everything is pretty ridiculous.

Only thing on that list that might concern people is location, but every carrier will know that anyway. Don't expect to move in anonymity if you're carrying a cell phone.

As for Android, another reason never to buy anything but Google devices.

Reply Parent Score: 1

RE[2]: Comment by MOS6510
by Thom_Holwerda on Thu 1st Dec 2011 16:26 in reply to "RE: Comment by MOS6510"
Thom_Holwerda Member since:
2005-06-29

How was this not mentioned in the article?


Probably because it IS mentioned in the article. Several times, in fact.

Did you even read it?

Reply Parent Score: 2

RE[3]: Comment by MOS6510
by Adam S on Thu 1st Dec 2011 16:39 in reply to "RE[2]: Comment by MOS6510"
Adam S Member since:
2005-04-01

Actually, the article is a bit misleading. It's not just that it doesn't "store" the data, it flat out doesn't have access to the UI layer, so it can't see typed text, SMS messages, URLs, passwords, etc. It's just diagnostics.

Just for clarification.

Reply Parent Score: 1

RE[2]: Comment by MOS6510
by MOS6510 on Thu 1st Dec 2011 19:54 in reply to "RE: Comment by MOS6510"
MOS6510 Member since:
2011-05-12

Like Thom said, it is mentioned.

However he does describe it as a root kit, that present on Android *AND* iOS, while I'd hardly call it a root kit on iOS. It's in plan sight and does what it says it does, you can turn it off which is the default.

Apparently the Android version can't be turned off by any normal means ordinary people would be able to do.

While I consider this a big bad thing, I don't think Android has any blame, apart from that it's open nature makes it easy to embed this kind of stuff.

Reply Parent Score: 2

RE[3]: Comment by MOS6510
by Neolander on Fri 2nd Dec 2011 07:45 in reply to "RE[2]: Comment by MOS6510"
Neolander Member since:
2010-03-08

While I consider this a big bad thing, I don't think Android has any blame, apart from that it's open nature makes it easy to embed this kind of stuff.

I don't feel at ease with this kind of argument. Sharp knives are dangerous due to their open nature, yet this has never (to the best of my knowledge) led anyone to cut his meat solely with rounded-edge scissors.

Reply Parent Score: 2