Slashdot Mirror

← Back to Stories (view on slashdot.org)

Motorola Is Listening

Posted by Soulskill on from the knows-when-you've-been-bad-or-good-but-doesn't-bring-you-presents dept.

New submitter pbritt writes "Ben Lincoln was hooking up to Microsoft ActiveSync at work when he 'made an interesting discovery about the Android phone (a Motorola Droid X2) which [he] was using at the time: it was silently sending a considerable amount of sensitive information to Motorola, and to compound the problem, a great deal of it was over an unencrypted HTTP channel.' He found that photos, passwords, and even data about his home screen config were being sent regularly to Motorola's servers. He has screenshots showing much of the data transmission."

16 of 287 comments (clear)

  1. Sad, but also not surprising by tomkost · · Score: 5, Insightful

    It seems every device, every internet service, basically every communication node that we use has been turned into something that is beyond George Orwell's worst nightmare. As long as there is continued complacency on the part of people using this technology, the invasion of privacy will continue to grow. This of course assumes that it could get much worse. The only options at this point are to stop or drastically reduce using these networks while we attempt to build our own.

    1. Re:Sad, but also not surprising by Lumpy · · Score: 2, Insightful

      "It seems every device, every internet service, basically every communication node that we use has been turned into something that is beyond George Orwell's worst nightmare."

      Yes, if you use commercial easy to use toasters like a phone with stock android, iOS, Windows, OSX, etc on it... You are correct.

      If you want privacy and control. Run linix or one of the hacked and cleaned Android releases.

      --
      Do not look at laser with remaining good eye.
    2. Re:Sad, but also not surprising by BitZtream · · Score: 4, Insightful

      So you've manually inspected the binaries from cyanogen to confirm that every release they make is 'safe'?

      Instead of blindly trusting your manufacturer, you're blindly trusting a modder.

      Not really sure why you think its different.

      --
      Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
  2. It is owned by Google by jader3rd · · Score: 2, Insightful

    This is just Google collecting all of the worlds data, just like they said they were doing to do.

    1. Re: It is owned by Google by Anonymous Coward · · Score: 2, Insightful

      Yes.

  3. #1 reason to use Android by erroneus · · Score: 5, Insightful

    You can RELOAD the device's OS with custom ROMs that don't do this crap. If it was discovered Apple does this (and who's to say they don't) what choice have you? And Windows phone? Don't even start.

    Part of the reality of "security" is taking responsibility for your own. Security is not a product you can buy. It's not something that other people can do for you (because that's tyranny). It's a personal responsibility and it takes knowledge and understanding to do. Tough luck to all those people who have neither the inclination nor the ability to learn.

    1. Re:#1 reason to use Android by ebno-10db · · Score: 4, Insightful

      Part of the reality of "security" is taking responsibility for your own.

      The only way to get real security and privacy with a cell phone is not to have one. A bonus is that implementation of that strategy requires no special technical knowledge.

    2. Re:#1 reason to use Android by gnasher719 · · Score: 4, Insightful

      You can RELOAD the device's OS with custom ROMs that don't do this crap. If it was discovered Apple does this (and who's to say they don't) what choice have you? And Windows phone? Don't even start.

      So there is a massive _actual_ privacy violation by Google (who owns Motorola and is 100% responsible for anything that happens under the name Motorola), and you complain about what-ifs with Apple and Microsoft?

      Remember that Google's customers are the advertisers. Apple's customers are people buying Apple devices. I expect both Google and Apple to do what is good for their customers, even if it hurts others (like _you_ in the case of Google, and advertisers in the case of Apple).

  4. Re:How is this even legal? by gstoddart · · Score: 3, Insightful

    How about this?

    They've gone way beyond authorized access, and are collecting information they have no business accessing.

    But somehow those EULAs magically give them the legal right to do anything they want to.

    --
    Lost at C:>. Found at C.
  5. Numbers say they don't by SuperKendall · · Score: 4, Insightful

    If it was discovered Apple does this (and who's to say they don't)

    We know they don't because there are many hundreds of millions of people using Apple devices now, and lots of developers using network proxy monitoring tools in development that see all network traffic from the devices to boot.

    Basically if Apple were doing this we would have known long ago, and there would be no shortage of people to shout about it continuously on Slashdot and elsewhere.

    --
    "There is more worth loving than we have strength to love." - Brian Jay Stanley
    1. Re:Numbers say they don't by Anonymous Coward · · Score: 1, Insightful

      God damnit, harrar. I'm really not trying to stock your chicken-hating ass, but I go to reply to a dumbass post and it's coincidentally you.

      Even if the data were encrypted, the "proxy monitoring" software mentioned by the person you were replying to would still see encrypted traffic being sent to a specific IP address. You can't encrypt the IP address or the packets wouldn't get routed.

      You're the stupidest and most vocal fucktard on this site. And I"m pretty sure BitzStream is one of your sockpuppet accounts.

      Cluck a doodledo motherfucker.

  6. Why do they keep trying to "social " us? by Bearhouse · · Score: 5, Insightful

    What is this crap, and why do they always get it wrong?

    Yes, I do want to seamlessly sync my mail, sms and contacts across my devices.
    Except none of the solutions proposed really do that well...
    (Or maybe I'm not typical, having multiple PCs and mobile devices, including iOS and Android?)

    Photos too? Hell, why not. Picasa from Google used to be OK...

    But now, after the "success" of FB, it seems that you can't have simple sync solution anymore; everybody is pushing unwanted, privacy-leaking, "social" features down our throats.

    Just please fucking stop!

  7. Re:Don't you know... by TheCarp · · Score: 5, Insightful

    Sigh.... they makes me more disappointed than mad, and reminds me of the phrase "The road to hell is paved with good intentions".

    They want easy sync, they want it so they can restore user data and save people's bacon whose phone gets destroyed or lost. Awesome, great intention. However, http? No SSL? Come on guys! At LEAST encrypt the data in flight!

    In reality, they should encrypt it at rest too, and have the user at least submit some sort of password or something so its not just.... gobs of juicy data waiting to be sniffed or scooped. Realistically this means everyone who had one of these phones, with few exceptions, have their data, out of their control, just waiting to be abused.

    --
    "I opened my eyes, and everything went dark again"
  8. Re:Nonono, beware the evil chinese by arth1 · · Score: 5, Insightful

    These are not the droids you are looking for... Look at the Chinese! Look at the evil Chinese! They're spying on us!

    Well, of course they are. But look at it this way:

    When the Chinese spy on you, what can they do to you based on the data it gathers?
    When the your own government spies on you, what can it do to you based on the data it gathers?

    Somehow, I feel safer sending my data to the Chinese...

  9. Re:Don't you know... by AdamWill · · Score: 3, Insightful

    You could try reading the article.

    It does appear to be part of Blur, yes.

    Only the X2 was not sold as a phone with Blur, it does not have the obvious UI elements. And the author never explicitly signed up for the Blur service or created an account. The phone appears to have silently created a Blur account for him and proceeded to send a bunch of private information to the service, all without his knowledge or consent. How helpful.

  10. Re:Don't you know... by jythie · · Score: 3, Insightful

    The downside of making it easy to turn things off is that people do, and then something goes wrong, and then they complain the recovery did not work, and you point out it was disabled, and they claim they never disabled it, and then they tell all their friends how much your company has screwed them with your buggy device that mysteriously switched off the useful feature they never heard of but got pissed about not being there.

    I agree it should be an option, but I can sympathize with companies not wanting to deal with that expletive. People who do stupid things rarely blame themselves, but they are happy to blame others loudly in public where it can hurt your brand.