Following its earlier privacy breach allegation on its Redmi Note, security concerns surrounding Xiaomi’s cloud storage, Mi Cloud has cropped up once again. This time it was raised up by security firm F-Secure.
In their earlier clarification and response, Xiaomi says that they take user privacy very seriously and they do not send user data to external servers without permission. The only time this happens is if a user opts to backup their device to the cloud with their Mi Cloud service, which is similar to other cloud solutions including Apple’s iCloud. If a user do not wish to use Mi Cloud, they can disable it completely.
So is the privacy issue sorted out for good? Not completely according to F-Secure and they have conducted a test with a brand new Redmi 1S, which is the smaller brother of the Redmi Note. With just a SIM Card, WiFi connection and no account set up when the phone was switched on for the first time, they tried making a standard voice call. To their surprise, they have reported that the device has sent some information to Xiaomi servers which includes IMEI, telco name and phone number.
|Android, Mobile Devices, Mobile OS, Xiaomi|
|China Servers, Mi Cloud, Mi Cloud Messaging, MiCloud, MIUI, MIUI Cloud Messaging, Privacy, Redmi 1S, Redmi Note Privacy, Xiaomi, Xiaomi Hongmi, Xiaomi Malaysia, Xiaomi Mi Cloud, Xiaomi Note, Xiaomi Privacy, Xiaomi Redmi, Xiaomi Redmi 1S, Xiaomi Redmi Malaysia, Xiaomi Redmi Note, Xiaomi Redmi Note Malaysia, Xiaomi Redmi Note Malaysia Price, Xiaomi Redmi Note Privacy, Xiaomi Security|
A couple of weeks back, several Taiwanese sites had reported that the Redmi Note smart phone has been secretly sending personal information such as contacts, text messages and photos to servers in China. This had certainly cast a doubt on its user privacy stand especially with the Redmi Note has been selling well worldwide. Xiaomi takes such allegation seriously and they had strongly clarified that Xiaomi does not transmit any personal information without permission of its users.
Its MIUI operating system does occasionally made contact with its servers hosted in China from time to time for syncing the latest preset messages and OTA updates. When it comes to personal information, the device does back up your contacts, messages and photos if a user opts to use their MiCloud, which is similar to Apple’s iCloud or Google’s Cloud backup system. If MiCloud is not enabled, your personal info will not be synced to their servers online.
Since the discovery was made on a Chinese site, they had released its Q&A in Chinese last week. Head after the break for the clarification in English.
|Android, Mobile Devices, Mobile OS, Xiaomi|
|China Servers, Mi Cloud, MiCloud, MIUI, Privacy, Redmi Note Privacy, Xiaomi, Xiaomi Hongmi, Xiaomi Malaysia, Xiaomi Note, Xiaomi Privacy, Xiaomi Redmi, Xiaomi Redmi Malaysia, Xiaomi Redmi Note, Xiaomi Redmi Note Malaysia, Xiaomi Redmi Note Malaysia Price, Xiaomi Redmi Note Privacy|
Want to disappear for the internet completely? Deleting your Facebook account and cleaning out your Twitter isn’t going to cut it. If you want all traces of your cyber-self gone from the information superhighway, follow the steps detailed in this infographic.
What kind of data is your cell phone company collecting? Malte Spitz wasn’t too worried when he asked his operator in Germany to share information stored about him. Multiple unanswered requests and a lawsuit later, Spitz received 35,830 lines of code — a detailed, nearly minute-by-minute account of half a year of his life.
If it can happen in Europe, it can happen anywhere. If it can happen anywhere, it can happen right here. With mobile phone penetration hitting over 100% in Malaysia, it’s scary to think the kind of information our mobile service providers are keeping about us. It’s downright frightening to realise that we have absolutely no idea. It’s even more frightening to think what those in power can do with such information.
Think about it.
Think the sensitive information in your mobile device is secure from prying eyes? Nope, it isn’t.
At the launch of his new “source protection platform”, WikilLeaks founder Julian Assange says that iOS, Android and even BlackBerry users are “all screwed”.
Intelligence contractors are now and have been selling mass surveillance devices for platforms. Meaning, with the right tools, no one is safe from prying eyes.
Privacy has been a sensitive issue lately especially when people getting spam or have their conversations and SMS history leaked to the wrong people.
Just today, somebody has spotted a bug on Maxis Online Selfcare service. According to the blog post by Arsyan, he was logged into a different account when he tried to view his bills.
So what’s the big deal? Well, with access to someone elses online selfcare account, you can view their call history, personal details and even backed up personal contacts.
With immediate response as a form of damage control, Maxis initially tweeted back saying that this is merely a bug and he was viewing a test account. However at the same time, they also insisted that he pull down his screenshot of the page showing the victim’s details. When pressured further that their test account claim is bluff, Maxis replied the number may be real but the “so-called” profile and number are not related.
Of course being unsatisfied with the answer, he went ahead to confirm his suspicion by contacting the number to confirm if the person is real. As expected, it was the real person as shown on his Maxis login.
Arsyan isn’t the only one as another user also faced the same problem. From what we’ve understand, this has been fixed and we can’t seem to replicate the bug.
So what’s the story Maxis?
Read the full story here.
[ SOURCE ]
Yesterday a CEO of a college in Terengganu had filed a RM20 mil (approx US$6.3 mil) suit against a “telco” for allegedly releasing contents of her SMS and audio recordings of phone calls. Looks like the alleged telco is none other than Celcom which issued a statement to the press yesterday.
According to Celcom Axiata, they treat privacy very seriously and they uphold strict policies to ensure the privacy of its subscribers are always protected. Its Chief Operating Officer Adlan Ahmad Tajudin said that such allegation by Noor Haslina is very serious but they have not been given much details of the suit therefore there was no basis to the allegation made at the moment.
He stressed that Celcom values and respect the rights of its subscribers and privacy & confidentiality of information is their top most priority. He also added if Celcom finds that the allegation was made without basis after its investigations, they will not hesitate to take necessary action including libel and abuse of court process.
According to the report by The Sun, Noor Haslina said she had made a police report on March 14. However her attempt to seek for solution from the telco was apparently ignored, which prompted her to take further action.
As mentioned earlier, the college CEO received a package at her office containing 9 pages of SMS exchanges and a USB flash drive containing audio recording of her conversation. To have such communication details obtained by unknown individuals is simply outrageous. If it can happen to her, it is possiblt that it could happen to anyone of us.