[ad_1]
According to a security researcher who works with Forbes, Xiaomi collects internet search data from users who use Xiaomi phones with a built-in browser. Interestingly, the browser does this even in incognito mode and even when using a privacy-focused DuckDuckGo browser.
Security researcher Gabriel Cirlig used the Redmi Note 8 for daily work, noting that the device records almost everything that is done over the phone and sends that information to servers in Russia and Singapore, while the domains are hosted from Beijing. This information includes information about screens, visited websites, open folders, applied settings, music playback in the default application and more.
The data itself is poorly encrypted and uses the base64 format, making it easy for an investigator to transcribe data in plain text.
Cirlig went a step further, downloading the ROM for the Xiaomi Mi 10, Redmi K20, and Mi MiX 3, and revealed the exact same security vulnerability in all of these models. Another security researcher, Andrew Tierney, discovered suspicious behavior on the My Browser Pro and Mint Browser services.
Xiaomi responded to these allegations, noting that Forbes’s results were incorrect and false. A company spokesperson said Xiaomi complies with all local laws and regulations regarding the privacy of customer information, and the data collected from the review history is anonymous.
When it comes to the reason why Xiaomi is collecting data, the company is said to be trying to improve its user experience and use standard practices. Furthermore, Xiaomi notes that the data cannot be traced to a specific user. However, Gabriel Cirlig sent Xiaomi a video showing the browser sending the search history to the specified servers, even in incognito mode.
In a blog post, Xiaomi pointed out how and when it collects the URLs that a user visits. The company reiterated that the data, which is transferred from Xiaomi devices and browsers, is anonymous and is not associated with anyone’s identity.
Source: Forbes
You can also follow the Benchmark on social media | Facebook | Twitter | Instagram | Youtube |
In Reference forum you can always participate in current and quality discussions in the IT industry
[ad_2]
