Xiaomi would have data on are sold phones, including the phone number and contacts on the device, forward it to its servers. That claims to be the Finnish security company F-Secure Friday, after its own investigation.
The security researchers from F-Secure bought a Xiaomi RedMi 1S, and performed a few tasks out, without pre-adjustments on the device. They brought a sim card in, connected the phone with wifi and got the gps positioning service. Also they made a new contact, sent them sms and mms messages and fed them a phone call.
During the acts monitorden to the researchers, the movement of the device. It was found that the RedMi 1S, the name of the provider, the imei number and the phone number directly to a server of the Chinese phone manufacturer posted. Also channeled the device according to F-Secure the number of contacts from the phone book and sms-messages were sent to Xiaomi.
F-Secure conducted similar assignments when the researchers inlogden on Mi Cloud, the cloudopslagdienst of Xiaomi. This was also the phone number and the imei number is forwarded. Also got the Chinese, this involves the unique imsi-number in the hands, which usually is as little as possible is shared to eavesdropping more difficult.
In a statement, says the Chinese Xiaomi that it is the first time that someone has a device start-up, is indeed unique device information forward. That way you can later, optionally, a backup be put back. The manufacturer, however, nothing about the phone numbers of the contacts to be forwarded.
Comments
(125)