Slashdot Mirror

← Back to Stories (view on slashdot.org)

Carrier IQ Software May Be in iOS, Too

Posted by timothy on from the y'know-to-be-fair dept.

New submitter Howard Beale writes with this excerpt from The Verge: "To date, the user tracking controversy surrounding Carrier IQ has focused primarily on Android, but today details are surfacing that the company also may have hooks into Apple's iOS. Well-known iPhone hacker Chpwn tweeted today that versions at least as recent as iPhone OS 3.1.3 contained references to Carrier IQ and later confirmed it's in all versions of iOS, including iOS 5." The details are still emerging; however, iPhone users will be happy to hear that while it's reported that the software is available to the OS, "the good news is that it does not appear to actually send any information so long as a setting called DiagnosticsAllowed is set to off, which is the default."

3 of 234 comments (clear)

  1. Re:Why does this CarrierIQ stuff matter anyway? by Anonymous Coward · · Score: 5, Insightful

    It matters because what the contract allows is ambiguous at best and definitely does not cover all that CarrierIQ is capable of (what it is configured for on a given phone from a given carrier may be a different story). In fact, keystroke logging of text messages may be in violation of federal wiretap laws, particularly if the logging continues even when the phone is not connected to a cellular network.

  2. Re:Why does this CarrierIQ stuff matter anyway? by thisnamestoolong · · Score: 5, Insightful

    It is not, however, important for them to have the keystrokes that you enter into your phone before sending encrypted communications. There is NO WAY that this is not a violation of the law if it is not explicitly mentioned in the ToS, as keystroke logging could never be remotely construed as even remotely necessary for system diagnostics; its only purpose is the violation of privacy.

    --
    To the haters: You can't win. If you mod me down, I shall become more powerful than you could possibly imagine
  3. Communication content is still private by DeadCatX2 · · Score: 5, Insightful

    At least according to US laws, the content of your communications are still considered private. It's just the destination and time of communication (bookkeeping data) that has no expectation of privacy.

    The fact that SMS keystrokes can be recorded is clearly a violation of privacy.

    I'm also quite worried about the fact that I have to put the password for my work account into my phone in order to receive my work emails. I expect those to be private as well, especially since the password field is masked with *'s (which definitely implies that the password is private). The fact that some previously unknown company may know my work password is frightening to me.

    --
    :(){ :|:& };: