HTC Sneaks Spying App into Android 2.3.4 Phones - EVO 4G General

http://hothardware.com/News/HTC-Sneaks-Spying-App-into-Android-234-Phones/
Hooray

note:
flipz also removes the CIQ from his rom (and has for a while)
http://forum.xda-developers.com/showthread.php?t=1046622
here is the CIQ www
http://www.carrieriq.com/overview/IQInsightExperienceManager/index.htm

Big brother is always watching. Even if it is a half brother from Taiwan.

CDKJudoka said:
Big brother is always watching. Even if it is a half brother from Taiwan.
Click to expand...
Click to collapse
Probably MIUI has the same thing too inlcuded, who knows!

AA27 said:
Probably MIUI has the same thing too inlcuded, who knows!
Click to expand...
Click to collapse
It may just be a special app, but I doubt it. I think the MIUI was written for the KIRFers of all the apple knockoffs.

AA27 said:
Probably MIUI has the same thing too inlcuded, who knows!
Click to expand...
Click to collapse
I wouldn't doubt if it had some sort of tracker included, but I have enough crap made in China, including most of my phone, so I'm not even trying it.
Sent from my PC36100 using Tapatalk

The simply thought of spyware and how info is collected is spooky enough to be suspicious of everything.
Sent from my PC36100 using XDA App

Another reason to not run Sense.

Carrieriq is asked for by sprint to be included in all Android phones, however, all of its features are turned off, so the only impact it has on you, the user is ~20kb of memory space less.
Sent from my PC36100 using XDA App

Probably wrong but the dropbox folder is for users that go to the market on their computers and download apps from there. You can have your phone download an app straight from your comp for those that don't know.
But aren't all there privacy issues understandable??? All the noobs that never mod their phones want a more pleasant experience....well this is what they have to give to get a better user experience...
sent from my synergized, v6 scripted beast.

Time to use a SSL VPN. or openVPN time.

Its easily disabled even if you don't use a ROM that strips it out (like Fresh Evo 4.2).
Here is how. Use titanium backup to freeze the following programs:
"HTC IQAgent 2.3.3"
"IQRD 2.3.3"
Freezing or uninstalling those 2 programs completely disables Carrior IQ. You can verify this yourself by looking at your logcat. You'll see some errors show up saying:
Unable to start service Intent {act=com.htc.android.iqagent.action.ui19 (has extras) }: not found.
This is caused by the system trying to start IQ, but failing. Uninstalling these programs should be ok, but I choose to freeze them just in case there are issues that arise from their removal.

Art2Fly said:
Carrieriq is asked for by sprint to be included in all Android phones, however, all of its features are turned off, so the only impact it has on you, the user is ~20kb of memory space less.
Sent from my PC36100 using XDA App
Click to expand...
Click to collapse
It has a huge impact on the phone and is one of the main reasons why sense roms are slower than AOSP. There have been more than a few times I've found it using up about 30% of my CPU and causing everything else to run like crap.
Sent from my PG86100 using XDA Premium App

I laugh at the "excusing" in this thread.
If Apple was doing this people would be flaming them and attack Apple/iphone as a whole.

Funny how that article says it's just now being found when we've known about it for over a year lol

What you guys don't seem to get is that they have been doing this for longer then you think! There are a few apps things running that do this in 2.1.

MultiDev said:
Its easily disabled even if you don't use a ROM that strips it out (like Fresh Evo 4.2).
Here is how. Use titanium backup to freeze the following programs:
"HTC IQAgent 2.3.3"
"IQRD 2.3.3"
Freezing or uninstalling those 2 programs completely disables Carrior IQ. You can verify this yourself by looking at your logcat. You'll see some errors show up saying:
Unable to start service Intent {act=com.htc.android.iqagent.action.ui19 (has extras) }: not found.
This is caused by the system trying to start IQ, but failing. Uninstalling these programs should be ok, but I choose to freeze them just in case there are issues that arise from their removal.
Click to expand...
Click to collapse
Thanks for this. I backed it up in case there were problems (which I don't expect) and then uninstalled it. I'll post here if I get any errors.

tnerb123 said:
What you guys don't seem to get is that they have been doing this for longer then you think! There are a few apps things running that do this in 2.1.
Click to expand...
Click to collapse
And that makes it okay?

BTW, Is there any easy way to keep the system from trying to start CIQ after having removed it?

Think one thing: Regardless of OS companies want to know your steps by any means necessary. It is a shame that instead of asking people companies have to secretly steal personal information.
Sent from my PC36100 using XDA App

Related

Is there a point to getting anti virus?

Some people say android phones can get viruses and some people say they can't. So anyone know? Should I get a anti virus?
Sent from my SGH-T959 using XDA App
I've never heard of a virus for android. If you want, lookout mobile is free and has AV, plus backup, plus the ability to locate your phone. I use it, but ONLY for the find my phone feature. I used to have it do AV, but I just didnt see the point. Your call.
http://www.appbrain.com/app/lookout-mobile-security/com.lookout
Just search google for:
Android trojan
You will have the reason you seek.
Sent from my SGH-T959 using XDA App
^ REALLY?!?!
Because all you get is "FIRST sms trojan" from just a few months ago... and who clicks links in text messages from people they don't know? Common sense.
AV will contribute to battery drain without any real benefit.
My phone is backed up with
Titanium because I like a one click restore
App Control because I like to keep multiple versions of my stuff and reload on the fly
Nandroid because I flash my phone as often as I flash my wife
All of which have been backed up to my home Network and if I get hit well I'll just reload. To me the price of having my phone scan every file when it loads or when I add something isn't worth the realestate the app takes up in my phones memory.
Honestly people who spread the fear of Viruses are those that create virus's and market their software to rid them. Bad, Bad tactics and honesly they are no worse than a shady Used Care Salesman or a high pressure Time Share Salesman.
I'm not saying the OP is a Salesman, but those that preach it are.
What I can tell you is have fun updating all in market, it will slow your phone down to a crawl.
Don't blame me, blame my keyboard's autocorrection algorithm.
mikey7436 said:
Some people say android phones can get viruses and some people say they can't. So anyone know? Should I get a anti virus?
Sent from my SGH-T959 using XDA App
Click to expand...
Click to collapse
short answer: no.
What I think is not the virus, but the apps keep sending data to somewhere
I use lookout but often question whether it really does anything besides giving you the ability to locate your phone if it gets stolen. Basically, don't click on messages from people you don't know, stay away from sites that your anti-virus on your home machine warns you about and don't install warez and you should be fine.
No need y'all, waist of space, money and time... If it ever happened hard reset our flash a rom lol...
Forget about it...
funeralthirst said:
short answer: no.
Click to expand...
Click to collapse
The CORRECT answer is yes, ot course it *can* get a virus, but it is very unlikely. Now, regarding the spyware - that's a very different discussion....
Sent from my SGH-T959 using XDA App
Simple Easy Way To Make Sure You Don't Get Viruses..Don't Go To Porn... Lol Jk
But For Real Just Make Sure You Download Your Apps From The Market And You Should Have No Problem
dbacchus said:
The CORRECT answer is yes, ot course it *can* get a virus, but it is very unlikely. Now, regarding the spyware - that's a very different discussion....
Sent from my SGH-T959 using XDA App
Click to expand...
Click to collapse
lolololol. anything, including your car's ecu *can* get a virus. will it?
and spyware? come on. what, do you have some anti-spyware app you need to sell? lol..

Mallware APPS Found on Market.

Found this today, just thought I would share. Some of us might have an app or two on this list.
http://www.readwriteweb.com/archive...tm_campaign=Feed:+readwriteweb+(ReadWriteWeb)
Interesting read. Thank you.
Sent from my SGH-T959 using XDA Premium App
Isn't Android Linux? So why is it getting malwares?! lol.
Also, I can't believe the fact that I have to install an antivirus App on my phone is closer to becoming the reality.
PaiPiePia said:
Isn't Android Linux? So why is it getting malwares?! lol.
Also, I can't believe the fact that I have to install an antivirus App on my phone is closer to becoming the reality.
Click to expand...
Click to collapse
any OS can be a target for viruses or malware. With Android becoming rather popular it's now becoming a target. People making viruses and malware programs want to hit a larger target not a smaller target.
Thanks for sharing the info.
Sent from my Loki powered Vibrant via the XDA App
Mallware? You mean apps that do autonomous shopping? That's what your significant other is for. Can't replace 'em with an app!
Scoobyracing03 said:
PaiPiePia said:
Isn't Android Linux? So why is it getting malwares?! lol.
Also, I can't believe the fact that I have to install an antivirus App on my phone is closer to becoming the reality.
Click to expand...
Click to collapse
any OS can be a target for viruses or malware. With Android becoming rather popular it's now becoming a target. People making viruses and malware programs want to hit a larger target not a smaller target.
Click to expand...
Click to collapse
I read about this on engadget & androidcentral had provided a list on which apps it was. AFAIK, I would've never downloaded those apps but one can never be too careful when it comes to personal information. I just installed Lookout a few mins ago.
I hate bastards that make virus's and stuff just to be funny. I would like to shove their phone up their butt. nah they might like it
Luckily, my edition of Common Sense 2011 works for Android too!
Xan_Kriegor said:
Luckily, my edition of Common Sense 2011 works for Android too!
Click to expand...
Click to collapse
If only that were shareware, then everyone could have some.
Sent from my Loki powered Vibrant via the XDA App
PaiPiePia said:
Isn't Android Linux? So why is it getting malwares?! lol.
Also, I can't believe the fact that I have to install an antivirus App on my phone is closer to becoming the reality.
Click to expand...
Click to collapse
android is unix based, but the thing is, the apps can run in the background.
The affected apps use the rageagainstthecage exploit to gain root, then run scripts in the background to get specific information (at least that's what they've identified so far). The thing is, anything (from what i originally heard) below 2.2.1 was able to have an app run the rageagainstthecage exploit or exploid exploit ran without any user interference, but apparently it is not pre-gingerbread.
Xan_Kriegor said:
Luckily, my edition of Common Sense 2011 works for Android too!
Click to expand...
Click to collapse
We need to copies of the 2011 edition out to everyone now!!!!!
Where's that rapper fellow when you need him?!
I help you guys out there ,everythime u download app from market look under what it controls ect u download task killer and in description says it controls network data ,i dont think so budddy ,do the math ppl
Besides that, carefully checking permissions, keep an eye out for those apps very easily by not allowing apps to get root. I actually downloaded an app a couple of weeks ago that asked for root.... Don't think so buddy. Uninstalled immediately, went to the market, rated it one star and made a comment about it! Thankfully we have a very well made super user app that asks whether you want to grant root privileges every time.
Quite frankly you have to be asking for it, giving root to any app.
bartek25 said:
I help you guys out there ,everythime u download app from market look under what it controls ect u download task killer and in description says it controls network data ,i dont think so budddy ,do the math ppl
Click to expand...
Click to collapse
Bartek! The voice of reason.
Sent from my Loki powered Vibrant via the XDA App
lol i reached my thanks limit for today but tomo you get two Br1cK'd

Ummm does this worry anyone else?

I've been up late tonight, and just so happened to stumble across this article over at AndroidPolice. Figured it might interest some people here since it includes our phone.
http://www.androidpolice.com/2011/1...e-numbers-gps-sms-emails-addresses-much-more/
Here's the thing, though. They recommend uninstalling the offending apk immediately, which I tried.....Unfortunately that gives me repeated force closes over and over and over while the system tries to run it, to the point where I had to restore to a backup. So what do we do about this?
UPDATE: You can remove HTCloggers.apk...all you have to do is restart afterwards.
Evo4gLI said:
I've been up late tonight, and just so happened to stumble across this article over at AndroidPolice. Figured it might interest some people here since it includes our phone.
http://www.androidpolice.com/2011/1...e-numbers-gps-sms-emails-addresses-much-more/
Here's the thing, though. They recommend uninstalling the offending apk immediately, which I tried.....Unfortunately that gives me repeated force closes over and over and over while the system tries to run it, to the point where I had to restore to a backup. So what do we do about this?
Click to expand...
Click to collapse
Yes and no.
Yes because so many users run Sense.
No because I run AOSP.
Frankly, I wonder how many other serious flaws there are.
I can name several apps that want their hands on permissions they have no business in [Facebook for one]
Its like 1984 for sure. There's an article in the new section here at xda that talks about some of the other vulnerabilities as well.
Sent from my PC36100 using xda premium
Thanks for sharing. Another reason why we root our phones
Sent from my PC36100 using XDA Premium App
Many devs remove these programs and such to remove ciq. I can't find the thread right now, but it reads just about everything. It's so deeply imbedded into the framework.
It reads every button you press on your keyboard.
Every text you send and receive.
Every app you use and download.
The pages you browse on using the internet browser.
It even goes as far to read any spot on your screen that you touch.
This is spyware to the extreme. Sprint and HTC will say its not "spyware" and say its used only for marketing to determine how phones are being used to further develop for the current trends in smartphones. It's very possible they could steal personal info with this. Is it currently happening? Uhh...probably not, but there will still be a lot of paranoia about it.
Sent from my PC36100 using XDA App
Sounds like a really good reason to stay with AOSP to me...
very True Haha
Sent from my GT-I5800 using XDA App
Some of us haven't forgotten the XCP rootkit that was on some Sony BMG titles in 2005... hope HTC doesnt suffer a similar demise like Sony eventually has of late.
This has been removed from MikG.
This is exactly why I'm AOSP. (that and sub-100MB ROM files)
I read the article too- (I have an Androidpolice/Android Central) feed in my Pulse reader....
I already knew CIQ and such were slimy embedded spyware...but the Treve app- spotted stuff I hadnt deleted already... Sprint sent me a "letter" about bandwidth usage and We-KNOW-what-Your-Doing" ----
I'm not amused by HTC/Sprint's collusion... leaving our bottoms out there in the cold for anyone to do whatever with.....
I bet even money my phones been cloned... sometimes I can't use it for calls .. recently -and I'd not had a single missed call or problem in a year.
I'm not a happy camper.. worried about my credit card #'s and really really am annoyed by HTC sliming us this way...
to the tune- that it'll be an icey cold day in hell before I'd consider buying another HTC phone for anyone in my family- (my family has 3 Evo 4g)...
We are not amused.....
HipKat said:
Sounds like a really good reason to stay with AOSP to me...
Click to expand...
Click to collapse
AMEN
it appears to me that this file has already been removed from MikFroyo. At least, I can't find it...
BTW, you can just remove it using TIbackup, but you'll have to restart to get rid of the repeated force closes. Simple fix, and I've done the same for CarrierIQ as well.
It was removed from sprint lovers rom as well... I couldnt find it at least
I removed HtcLoggers.apk from mine and after rebooting (force close loop) it seems to be working fine. However, is there an old log file still on the phone that can be read by some Spyware app that needs to be removed or does all this data need to come from the logger app itself? If there still is a log, I'm sure it has enough info to still steal my ESN and other stuff.
Wow! Glad I run custom ROMS

BUSTED! Secret app on millions of phones logs key taps

An Android app developer has published what he says is conclusive proof that millions of smartphones are secretly monitoring the key presses, geographic locations, and received messages of its users.
http://www.theregister.co.uk/2011/11/30/smartphone_spying_app/
You can download the app to see if you have CIQ from here:
http://forum.xda-developers.com/showpost.php?p=17612559&postcount=110
Im running Miui and came out ok. Need root to run the app / clean it out.
http://forum.xda-developers.com/showthread.php?t=1122569&highlight=ciq
That's pretty f**ked up. This logs keys as they are pressed, even in dialer. It doesn't appear to be installed on all android builds, seems to be carrier dependant.
I ran TrevE_Logging_TestApp_v7 to check for CIQ on my SGHT959 stock froyo.uvka6 rooted (Tmobile USA) and it came back clean, no CIQ found.
It would be good to post a list of which carriers/phone manufacturers are utilizing this rootkit so they can be avoided.
Anyway I think the only ones affected would be users of stock roms like me, CM7/MIUI and other custom roms should be fine.
Vibrant
just ran it on my Samsung Vibrant running Trigger 3.2 and it came up clean...
Phrack said:
It would be good to post a list of which carriers/phone manufacturers are utilizing this rootkit so they can be avoided.
Click to expand...
Click to collapse
Agree!
I found it on my T-Mobile SGS2.... :/ I killed it with Titanium backup and rebooted. So far so good. I backed it up just in case it does mess up the phone by removing it.
Cool thanks.
sw20 said:
Agree!
I found it on my T-Mobile SGS2.... :/ I killed it with Titanium backup and rebooted. So far so good. I backed it up just in case it does mess up the phone by removing it.
Click to expand...
Click to collapse
From my research the only way to tell if your phone has icq is to run log cat on your phone. Also just uninstalling the visible program didn't stop the program. I have found that asop and Muiu roms do not have ciq installed and only custom roms or kernels (in sgs2 case) which specifically removes listed as it removed.
I talked to a customer rep @ T-Mobile and she had no idea what I was talking about when I asked about ciq.
Can't wait for the class action law suit against ciq and see if this company can survive especially after eckhart's new video showing the program logging everything.
Sent from my SGH-T959 using xda premium
Does anyone know how i get sqlite3?
Hey man! this is ****ed up. How do we remove this?
It depends on which rom you are using. If you are using CM7/MIUI they don't have CIQ because they are based on open source android builds. CIQ is added by carriers and some phone manufacturers so if you are running stock rom or hacked rom based on a stock rom there is a good chance you have CIQ.
You need to download TrevE's Logging Test App to check for CIQ:
http://forum.xda-developers.com/showpost.php?p=17612559&postcount=110
There's different versions, try them until you find one that works for your phone. This will tell you if CIQ is found. To remove it you need to pay 99 cents for pro version of app and your phone needs to be rooted.
**EDIT
Here's some more info on Carrier IQ from the author of Logging Test App. It details what Carrier IQ does and logs.
http://androidsecuritytest.com/features/logs-and-services/loggers/carrieriq/
IMHO CIQ would probably be useful software if
A) Subcribers voluntarily participated
B) The software can easily be removed
As it stands this is classified as a rootkit because it is carefully hidden with no way for an average person to remove or disable it.
**EDIT ++
On the plus side there seems to be a plethora of apps available in Android Market for checking if Carrier IQ exists on your phone.
https://market.android.com/search?q=carrier+iq&so=1&c=apps
I have a feeling there will be eventually a simplified method for removing CIQ. Just be patient.
vibrant doesn't have it...
Sent from my SGH-T959 using xda premium
im glad mine doesn't have it. i put important stuff like mine and my moms bank accounts on my phone. cm7 is a safe choice

Scary Article. How do you protect yourself?

http://www.crn.com/240000735/printablearticle.htm
What software do you have to protect yourself/information?
Alias8818 said:
http://www.crn.com/240000735/printablearticle.htm
What software do you have to protect yourself/information?
Click to expand...
Click to collapse
Before I open any app I open manifests.xml and change permissions. lol
Anything else We can do?
IMO, If you get anything like this. You deserve it! Almost just like on a PC. If your not smart enough to check your stuff before you put it on your phone, then stick to buying your apps. Don't open and launch things from emails you don't know about. Your not smart enough to know what sites are bad and how to control what your clicking through. By all means hurry and pirate an anti... app too please. Then I can charge you to fix it. XXX only make me money.
Did I miss anything? lol
Love,
Your loving IT Pro
Oh yeah I forgot. LBE security guard. Amazing root permissions app. It allows you to revoke certain apps permissions. Like if you don't want angry birds access to your data and wifi you can do that. An added plus is with that you dont get any more stupid adds.
Sent From My Sprint Galaxy Nexus via XDA Premium
Avast! Is pretty awesome, mostly anti-virus protection.........the malware stuff is a totally different kinda animal, would be great to see a good solid app.........gonna try Uber's recommendation.
Sent from my SPH-D700 using xda premium
I use a combo of several apps
Superuser (with PIN) for SU rights
AdFree - to block most ads
Droid Wall - to totally block data & WiFI on an app by app basis
LBE Privacy Guard - to remove specific permission from apps that require data access
One of the easiest thing to do, is only get apps from trusted sources, which will drastically cut down on risks
Finally, think twice about installing an app with a low number of downloads.
DCRocks said:
I use a combo of several apps
Superuser (with PIN) for SU rights
AdFree - to block most ads
Droid Wall - to totally block data & WiFI on an app by app basis
LBE Privacy Guard - to remove specific permission from apps that require data access
One of the easiest thing to do, is only get apps from trusted sources, which will drastically cut down on risks
Finally, think twice about installing an app with a low number of downloads.
Click to expand...
Click to collapse
Why do you have LBE and Droid wall. You do know LBE has that function too right? Internet Firewall....
Sent From My Sprint Galaxy Nexus via XDA Premium
ÜBER™ said:
Oh yeah I forgot. LBE security guard. Amazing root permissions app. It allows you to revoke certain apps permissions. Like if you don't want angry birds access to your data and wifi you can do that. An added plus is with that you dont get any more stupid adds.
Sent From My Sprint Galaxy Nexus via XDA Premium
Click to expand...
Click to collapse
I agree 100% with this. The UI is super simple, and you can see how much data each app is using. It opened my eyes the first few times I used it as there were apps using data that had no real reason to. It didn't make sense to me.
As UBER mentioned, you can also disable GPS for apps like Angry Birds Space. I love how when you install a new app, a notification shows up up top reminding you to set permissions for that app.
Very basic, easy to use, and most importantly, powerful.
Thread Cleaned
And reopened
FNM
MALWARE Reply
So many people have Android devices now that it ruins it for everyone. That is what makes it a popular platform for that kind of stuff. Nobody ever released malware for Windows Mobile.
- 2 Bunny
kainppc6700 said:
So many people have Android devices now that it ruins it for everyone. That is what makes it a popular platform for that kind of stuff. Nobody ever released malware for Windows Mobile.
- 2 Bunny
Click to expand...
Click to collapse
I don't see the issue I download everywhere and even sites I know aren't protected yet I have no malware or problems.
Sent from my SPH-D700 using xda premium
Alias8818 said:
What software do you have to protect yourself/information?
Click to expand...
Click to collapse
My brain
VIRUS Reply
XxLostSoulxX said:
I don't see the issue I download everywhere and even sites I know aren't protected yet I have no malware or problems.
Sent from my SPH-D700 using xda premium
Click to expand...
Click to collapse
Same here. What kind of places do you actually have to go to to get a virus?
- 2B
kainppc6700 said:
Same here. What kind of places do you actually have to go to to get a virus?
- 2B
Click to expand...
Click to collapse
Most likely, any Russian or Chinese market for cracked apps, as most of the infected apps come from these two regions.
Also, any hacker board for cracked apps has a higher than average chance of having an infected app
SECURITY ON MOBILE Reply
DCRocks said:
Most likely, any Russian or Chinese market for cracked apps, as most of the infected apps come from these two regions.
Also, any hacker board for cracked apps has a higher than average chance of having an infected app
Click to expand...
Click to collapse
I don't live in Russia or China, so I can't say I've ever been to one of these "cracked markets".
Could you provide an example of a "hacker board for cracked apps"?
- 2B
Used to use lookout, but I flash my phone so often I haven't downloaded it in a while.
Sent from my SPH-D700 using XDA

Categories

Resources