Secret Backdoor in Some US Phones Sent Data To China

Security contractors have warned that many Android smartphones ship with preinstalled software that has a backdoor that sends all your text messages to China every 72 hours. (Editor's note: the link could be paywalled; here's the press release.) The New York Times reported Tuesday that "the American authorities say it is not clear whether this represents secretive data mining for advertising purposes or a Chinese government effort to collect intelligence." From the report: International customers and users of disposable or prepaid phones are the people most affected by the software. But the scope is unclear. The Chinese company that wrote the software, Shanghai Adups Technology Company, says its code runs on more than 700 million phones, cars and other smart devices. One American phone manufacturer, BLU Products, said that 120,000 of its phones had been affected and that it had updated the software to eliminate the feature. Kryptowire, the security firm that discovered the vulnerability, said the Adups software transmitted the full contents of text messages, contact lists, call logs, location information and other data to a Chinese server. The code comes preinstalled on phones and the surveillance is not disclosed to users, said Tom Karygiannis, a vice president of Kryptowire, which is based in Fairfax, Va. "Even if you wanted to, you wouldn't have known about it," he said.

Ads or government collection

[Calydor]

Why not both?

Is there some magical thing that says if something is collecting for advertisement purposes it can't be shared with intelligence agencies?

Oh no what an awful accident

No reason to be alarmed. Clearly this is just a testing and debugging feature introduced by some errant developer that's been accidentally left in the release build firmware. It will be patched and fixed and you can all go back to buying these phones in safety. No way the Chinese government would have deliberately done this.

Always a good sign...

[fuzzyfuzzyfungus]

The really disturbing thing isn't that some shit Chinese handsets are full of spyware; but that our own technology industry is so overrun with advertisers, tracking, and 'analytics', that we can't distinguish between espionage and the Chinese just catching up with our business models; because the only real difference is that espionage tends to run at a loss, while advertising is economically self sustaining.

Re:Always a good sign...

This isn't new. Has everyone already forgot about Carrier IQ?

Re:Always a good sign...

[alvinrod]

If a government can legally compel a company to hand over their advertising information, there's no functional difference between the two. I can think of very little that a government might want to know about a person that an advertising agency would have no interest in collecting.

I think that Bill Hicks's thoughts on the matter are still quite appropriate.

Re: Another Day, Another Android Exploit

This has nothing to do with Android... it's not a bug. This is preinstalled malware on Chinese phones.

Stop drinking the koolaid.

"updated the software to eliminate the feature"

[SpankiMonki]

Oh, it was just a feature. Whew! What a relief. For a second there, I thought it might be malware.

Japanese

[Oswald+McWeany]

I'm going to send texts saying I'm eating Japanese food on a more regular basis now.

Hey honey, look at this Japanese sweet and sour chicken I'm eating. I feel like going to the Japanese restaurant for General Tsao's chicken tonight.

- that oughta piss 'em off.

Is your phone affected?

[resfilter]

From the press release, the affected phones have the following services installed:

    com.adups.fota.sysoper
    com.adups.fota

I'd probably check your phone to ensure those don't exist. ... And it sends data to the following domains, if ya wanted to firewall or sniff it or whatever:

    bigdata.adups.com (primary)
    bigdata.adsunflower.com
    bigdata.adfuture.cn
    bigdata.advmob.cn