Database Users

How the hell did Google get my entire contact database?

Some of you are aware of how "paranoid" I am, and refuse to have my Calendar and Contact synced via google.
Just before I did my firmware upgrade today, I used an application in the market place called MyBackup, but I carefully avoided choosing to backup to local (SD card) and not Online.
After I flashed the new firmware and made the restore, I discoverd to my horror that all my contacts are now having the symbol "g" within a square, which I understood to be indicative of the fact that these contact are now also stored in Google's server somewhere, and none of the contact are coming from my phone! So, MyBackup restored my entire contact database from my phone to the cloud rather than my phone? There is not single contact entry on my phone now. Everything I have is shown to be from Google.
Anyone knows how the hell could this happen? Is MyBackup a sneaky program which steal all these information and put it to the cloud without my consent?
I'm really really pissed
Now I'm forced to put in dummy tel number and address, birthday to all my contact and let Google get the false data, before abandoning Google phone platform all together. THIS IS EVIL, SNEAKY, UNETHICAL !!!

You really are paranoid .
I don't think MyBackup Pro actually stores all your contacts on some Google server - I think the app just assumes they are Google contacts. I've stopped using it for backing up contacts for a different reason: because it duplicates everything when restoring it - a real PITA. And by everything I mean everything - linked contacts become multiple independent contacts, some of them without any details and impossible to delete without a factory reset. I'm actually using Kies for that now (ironic, no? ).
Do you have a Google account for using the phone with? The simple thing do is to log in there and check whether your contacts are actually in there. If not then they probably aren't.
If you are that paranoid perhaps put the phone into airplane mode when you backup?

I think you are being a bit paranoid here. Besides google might just keep changelogs on the contact which would render you attempt with dummy info useless.

I just checked. I don't see any entry under contact when I signed in. Whew!
But please explain to me why all my contacts now are displayed under the google heading? (You know the display option in contact lets us select contact on the SIM, Phone, or Google?), now all my entries are under google. Yet, I don't see any thing there (yet?)
According to this thread, I think there's still a possibility that my details has already been taken without my permission, although it's not reflected in the contact list in google account.
I'm confused...
To anyone of you thinking that I'm paranoid, one day you will know I'm right. The world just isn't as innocent as you think.
I have to very seriously re-evaluate whether I would want an Android phone. It's way too open, anyone can take information from me, since there is no QA done on the market place applications.

Think someone's had a bit too much wacky tobacco.

GOT you info
I could be wrong but all my contact say Google except the one i use my HTC Sync to transfer my work email from Outlook.
By the way i can see all of your contacts. You were too late!!!

eaglesteve said:
To anyone of you thinking that I'm paranoid, one day you will know I'm right. The world just isn't as innocent as you think.
I have to very seriously re-evaluate whether I would want an Android phone. It's way too open, anyone can take information from me, since there is no QA done on the market place applications.
Click to expand...
Click to collapse
Ok, for starters,
1) The [G] means they have been imported into your Google account. Probably, as mentioned by your backup. Go to Google Contacts and you can wipe them. But no, I don't believe they took them without your permissions.
2) What makes your email addresses so valuable? Do you honestly believe Google cares? Hahaha... Clearly, you don't know anyone who works at Google. I met a bunch and they really are all legends, and they know your rights. They are normal people, not politicians. This is in comparison to Apple people I know, who I post stuff to on their facebook wall, they remove it secretly and tell me by email that they didn't want their manager to see it.
3) If you are concerned about privacy, why can you trust the "MyBackup" program. did you install an applications which isn't open source?
Perhaps you should get a dumb phone or hack up your own firmware and remove Google's services?
You should also consider avoiding entering ANY google account if you don't trust them. Why did you enter them in the first place? To enter the market where Google could track your downloads, your location and your firmware? Seriously, I strongly urge you to sell your Android phone if you don't trust them. Instead, get a dumb phone. I however believe my contacts list is useless to Google, so have no problems sharing information with them

i don't know about that backup program you are using.
however, if you are concerned about the contacts @ google.
just login to your google account, and select DELETE all contacts, in your account.
then it'll be all gone
you can do the same for all the emails too.
once deleted they will no longer have your data on their servers.
eaglesteve said:
Some of you are aware of how "paranoid" I am, and refuse to have my Calendar and Contact synced via google.
Just before I did my firmware upgrade today, I used an application in the market place called MyBackup, but I carefully avoided choosing to backup to local (SD card) and not Online.
After I flashed the new firmware and made the restore, I discoverd to my horror that all my contacts are now having the symbol "g" within a square, which I understood to be indicative of the fact that these contact are now also stored in Google's server somewhere, and none of the contact are coming from my phone! So, MyBackup restored my entire contact database from my phone to the cloud rather than my phone? There is not single contact entry on my phone now. Everything I have is shown to be from Google.
Anyone knows how the hell could this happen? Is MyBackup a sneaky program which steal all these information and put it to the cloud without my consent?
I'm really really pissed
Now I'm forced to put in dummy tel number and address, birthday to all my contact and let Google get the false data, before abandoning Google phone platform all together. THIS IS EVIL, SNEAKY, UNETHICAL !!!
Click to expand...
Click to collapse

It's BackupPro when it restores the contacts it assigns them as Google. I made the mistake of backing-up and restoring contacts with this and spent the next hour wondering how I've got contacts with 3 Google entries when I was expecting only two.

I have no problem syncing all my data with Google's servers, but I want to remember everyone that the right of privacy is an absolute requirement for a working democracy.
If eaglesteve does not want his data being stored at a central repository then he has every right to freak out when it appears as if his contacts were synced with Google's Servers.
Of course, if he should believe that Google is after him personally, well, then this is probably a bad sign of paranoia

flamingpitofhell said:
You really are paranoid .
Click to expand...
Click to collapse
I thought the same until I saw he's in Australia.... the government over there is screwed up big time. The crap they are trying to do to their Internet is appalling.

I'm also paranoid about the same...i did this to solve (ive not an english firmware so will try to give simmilar instructions):
go to contacts -> menu -> more -> import/export and save all contacts to a vcard on SD, and connect to pc and save that vcard on pc.
Go into settings -> privacy -> "erase all data" (dunno how its called on english firmware)
then i chose to erase data on SD also after unmounting it.
After that i restarted phone without simcard and with volup+home+power i cleared cache and hard reseted it.
After that the phone boots with factory settings and without simcard and keep it that way and connect to internet via wireless after booting.
Then i checked if i had no contacts, there were none so all okay... went to menu, definitions -> "accounts and sincronization" and i added my google account, but i unchecked first the auto sync and data in second plan above (the options above, dunno how they are called in english firmware). Then the google account was added. Then i disabled wireless and checked the options i disabled in last step (the auto sync and the other), i opened the google account i added in last step and disabled all syncs there (sync calendar, contacts and gmail).
After that i went to contacts and restored all contacts via the vcard, all are stored on phone after that (via the same import/export option).
As a final option i went to my gmail and deleted all contacts synced... now the phone is not syncing with google in any way but i can use the market because i have a google acc added...
dunno if i explained myself well, it worked for me that way.

I'd love to hear some worst case scenarios of what you think might happen if mr google checks your contacts and finds your mate Fred's email address.
And also why you'd think anyone would want to know your contacts.
are you worried that your network provider has a log of who you called and when?

if they find Fred's address, Fred is effed.
Sent from my GT-I9000 using XDA App

well.... i dont like to give my info/data away, just really when needed.... some years ago maybe not, but today, google and other companies have so much info about so much people around the world, and you dont even know if they use it or not, you are not there to check... they can for example see the places you visit more because of gps tracking, if people in some zone visit shoppings a lot and at what times, who your friends are and if they use android and gmail also (by contacts), and assemble strategies for their business based on that, because all we are giving is free info about what we do, who we are, who our friends are....that, for business activities is very valuable. And im not talking about gmail, with all valuable info about everyone, they are able to see all your info since you have all stuff stored on their servers and they dont need to tell to you anything about it and you dont even know they maybe will do it... i may be wrong, but thats my point of view, i didnt had that oppinion since a friend i have, erased all his mails from gmail telling me "google can use all my info for marketing purposes or another stuff"...
They give us free services, but there is no such things as free services... we pay with info to improve their business, thats my point of view...

I'm not concerned with the email of my friends. I'm concerned that their photos, address, birthday, spouse's name, children's name, telephone number, work place number, fax number, and everything is on the cloud, which means any hacker could get it, and the consequence would be serious. It's not giving MY details away. It's giving my friend's details away, and I don't want to do that to my friends.
In Australia, we have this thing called the Privacy law. You just can't come around and grab my wifi address, email login password, and claim that you make a mistake unintentionally. All these data stealings are deliberate.
For those of you saying that it's not a big deal, could you all in your next post show me your real photos, address, name, telephone numbers, birthday, spouse's name, children's name, and the other typical contact info on this forum.
So, now they grabbed my contact without my consent. Have they also grabbed my eWallet password file and are now cracking it?
I can't believe you guys are not seeing problem here.
Nuf said.

as long as google don't try to sell me anything they can do what they want with my data.
I'm pretty sure my bank and credit card company know more about me than google and their sales and junk mail are certainly more annoying than anything google ever did to me.
Sent from my GT-I9000 using XDA App

Fake Register Kindle

Is it possible to fake register the kindle. I'm more than happy to have a rooted kindle and leave anything to do with the amazon app store behind. But certain features like email and calender need me to register on amazon.. any workaround? There seemed to be something you could do with the paperwhite kindles

Fake Register the Kindle Fire HD 7"
los911 said:
Is it possible to fake register the kindle. I'm more than happy to have a rooted kindle and leave anything to do with the amazon app store behind. But certain features like email and calender need me to register on amazon.. any workaround? There seemed to be something you could do with the paperwhite kindles
Click to expand...
Click to collapse
los911,
So far we have not been able to "Fake Register" the Kindle. Amazon has spent a lot of time
making sure the device logs into their service. I think most of the development is being
spent on upgrades, tweaks and future ROM's. I will talk this over with our development
team but so far I have not heard any discussion on this topic. Maybe someone else
will have a better answer.

prokennexusa said:
los911,
So far we have not been able to "Fake Register" the Kindle. Amazon has spent a lot of time
making sure the device logs into their service. I think most of the development is being
spent on upgrades, tweaks and future ROM's. I will talk this over with our development
team but so far I have not heard any discussion on this topic. Maybe someone else
will have a better answer.
Click to expand...
Click to collapse
Thanks for your reply.
What do you suggest I do? Should I install a different app for each of the amazon apps I cannot use?

Root and Google Play for Amazon 7" Kindle Fire HD Software Version 7.2.3
los911 said:
Thanks for your reply.
What do you suggest I do? Should I install a different app for each of the amazon apps I cannot use?
Click to expand...
Click to collapse
Los911,
Sorry, I should have included that with my last response.
Here are the replacements:
1. Root the Kindle http://forum.xda-developers.com/showthread.php?t=2069117
2. Install Google Play Store http://forum.xda-developers.com/showthread.php?t=2069859
3. Then using Google Play Store, search for (then Install);
Google Play Books > Amazon Books
Google Currents > Amazon Newsstand
Google Play Magazines > Amazon Newsstand
Google Play Store Apps > Amazon Apps Store
Google Play Music > Amazon Music
Google Play Movies > Amazon Videos
Google Play Games > Amazon Games
Google Play Store > Amazon Shop
Google Play Books > Amazon Audiobooks
Dolphin > Amazon Web (Silk)
I think that covers it. The Amazon Photos can be replaced by a number of applications, just search Google Play for
Photo Software, over 100 applications appear, most are free.
Let me know if you have any other questions, we are here from 10am to 10pm PST GMT -8
and we do offer free phone support if you are unable to get the job done through the Threads.
Take Care, Chris Bryant (prokennexusa)

Any suggestions for a work around the contacts.app? I can't work with any of my contacts (even whatsapp) without being annoyed with the Amazon login request...

Contact Manager - Skype
nakedtruthishere said:
Any suggestions for a work around the contacts.app? I can't work with any of my contacts (even whatsapp) without being annoyed with the Amazon login request...
Click to expand...
Click to collapse
I use Skype, which manages my contacts. Another option is cCloud.

Skype is installed, but not an option to manage my about 150 contacts imported from Outlook.
The point is, I imported all existing contacts to dw contacts, but I'm not able to change anything. When I try to, Amazon calls for a login...
There must be a way around, either with an alternate contacts.app or a fake login.
Any suggestions will be highly appreciated.

How to: Fake Register the Kindle Fire HD 7"
nakedtruthishere said:
Skype is installed, but not an option to manage my about 150 contacts imported from Outlook.
The point is, I imported all existing contacts to dw contacts, but I'm not able to change anything. When I try to, Amazon calls for a login...
There must be a way around, either with an alternate contacts.app or a fake login.
Any suggestions will be highly appreciated.
Click to expand...
Click to collapse
Let me get a little more information so I can help you. You want to "Fake Register" the Kindle due to not having
a credit card, is this the case? If yes, I have great news, we Developers have Fake Credit Card Numbers (IT IS LEGAL)
that can be used when you run into a company that forces you to use a credit card. Let's face it, not everyone has a
card! In order to install apps on your Kindle Fire you will need an American credit card. In order to install Free apps at
all you need to have an American credit card setup under your 1-click settings in your Amazon Account. Amazon
will check if the credit card you have in your account is an American Credit card, but not charge it when you add
it to your account or download a free app.
Below is a list of test card numbers used by developers for validating check out processes when building web
stores – and guess what, they can be used with Amazon ☺. I have of course not checked all numbers but I
am sure you will find one you can use on the list.
Expiration Date has to be a valid date in the future (use the mmyy format). Also make sure to use a US address
(just Google for one, but make sure you don’t ship any purchases to this address). These cards will NOT allow
you to make a purchase, they are use for testing purposes ONLY. There is nothing illegal about doing this as
long as you do not use this in an attempt to defraud a company. These numbers are Publicly known and are
posted on several development websites, this is where I found the information quite a long time ago.
Please send us a PM, we will respond with the numbers to be used for development purposes only.

Huh, thanks a lot for that much information, but I think, you got me wrong...
The KFHD hardware itself (and the price payed) is perfect for my needs, but I do not trust very much in Amazon's way to handle my data. Therefor I'd like to use the KFHD as an ordinary Android tablet with those apps I like. This worked so far, the device is rooted, Google Market and Go Launcher are installed and most Amazon pre-installed apps were replaced by others - except the above mentioned contacts.apk. I couldn't find a working replacement and all other email or social network applications try to access these contacts, but unfortunately all attempts are denied “You have to login to your Amazon account first“.
Thus no need to play around with fake credit card numbers or so...
Anyway, thanks for your help (although it was not the final solution for my "problem").

Follow Up - Feedback
nakedtruthishere said:
Huh, thanks a lot for that much information, but I think, you got me wrong...
The KFHD hardware itself (and the price payed) is perfect for my needs, but I do not trust very much in Amazon's way to handle my data. Therefor I'd like to use the KFHD as an ordinary Android tablet with those apps I like. This worked so far, the device is rooted, Google Market and Go Launcher are installed and most Amazon pre-installed apps were replaced by others - except the above mentioned contacts.apk. I couldn't find a working replacement and all other email or social network applications try to access these contacts, but unfortunately all attempts are denied “You have to login to your Amazon account first“.
Thus no need to play around with fake credit card numbers or so...
Anyway, thanks for your help (although it was not the final solution for my "problem").
Click to expand...
Click to collapse
nakedtruthishere,
I was not sure, so I wanted to offer you the same solution we offer several hundreds that use
the Kindle Fire overseas. These users are just plain stuck due to the Amazon's geographic
rules. So when we sell the Kindle Fire to people overseas this is there solution. It is not
playing with credit card numbers, it is a simple solution to a known problem with Amazon
and it is 100% legal. We have a large corporation with several attorneys who are retained
by our firm, we discussed this with them before publishing this information. Now that I
understand your problem, I can drill down the applications. Do you have Google Play
installed on the Kindle Fire? If yes, search for "Contact App" or "Contact Manager"
you will find quite a few to replace the Kindle Address Book.

prokennexusa said:
...search for "Contact App" or "Contact Manager" you will find quite a few to replace the Kindle Address Book.
Click to expand...
Click to collapse
I tried several - none of them worked well.
Now I have DW contacts installed. I have got some contacts imported to DW with another app. So far, so good.
When I want to add a contact to the list or try to change any of them, the old song plays: Please login to your Amazon account...
When I renamed or deleted the OEM contacts.apk, DW contacts prompts "not supported by your system".
Maybe you guys could have a deeper look into it?
Thanks again for any help.

Contact Manager
nakedtruthishere said:
I tried several - none of them worked well.
Now I have DW contacts installed. I have got some contacts imported to DW with another app. So far, so good.
When I want to add a contact to the list or try to change any of them, the old song plays: Please login to your Amazon account...
When I renamed or deleted the OEM contacts.apk, DW contacts prompts "not supported by your system".
Maybe you guys could have a deeper look into it?
Thanks again for any help.
Click to expand...
Click to collapse
nakedtruthishere,
Good idea, I will ask one of my developers to do a little research, send us a PM
requesting a "Good Address Book for the Kindle", then I will forward to my
dev team. Thanks!

Address Book Upgrade for the Kindle Fire HD and 2 Series of Tablets
nakedtruthishere said:
I tried several - none of them worked well.
Now I have DW contacts installed. I have got some contacts imported to DW with another app. So far, so good.
When I want to add a contact to the list or try to change any of them, the old song plays: Please login to your Amazon account...
When I renamed or deleted the OEM contacts.apk, DW contacts prompts "not supported by your system".
Maybe you guys could have a deeper look into it?
Thanks again for any help.
Click to expand...
Click to collapse
nakedtruthishere,
I know this has taken a while but in the end we found 2 solid Address Book Upgrades for the Kindle Fire HD and 2 Series of Tablets. Here they are with the Features:
Smartr Contacts from Xobni
Description
What if you had a magic address book that automatically identified the name and contact information for everyone you'd ever communicated with?
Smartr Contacts brings you that magic. This is the only app that automatically creates rich profiles for all your contacts, including communication history and updates from Facebook, LinkedIn and Twitter.
Life is about people, and Smartr Contacts brings them to you - Automatically.
Key features of Smartr Contacts:
- Automatic. Finds all the people you know from your email or calendar history.
- Personal. Puts a face to every name and email address.
- Insightful. Detects and assigns phone numbers automatically.
- Socially aware. Pulls in Facebook, LinkedIn and Twitter updates.
- Fast. Search by first, last, company name or phone number to quickly find anyone.
- Integrated. Easily compose emails to multiple contacts with a single click.
- Relevant. Ranks contacts by importance, not alphabetically, so the most important people are at the top.
Here are some ways you can use Smartr Contacts for your personal and professional life:
- Keep track of all the people you've ever communicated with - automatically
- Know who you're communicating with - see photos and recent communication history
- Call, email or SMS someone with a single tap
- Stay up to date with Facebook, LinkedIn and Twitter updates
- See your shared shared connections
- Bring all your contacts from Android, BlackBerry, Gmail and Outlook into one place
- Protect your contacts in the cloud - if you lose your phone, all your contacts are safe and secure
Press and user feedback:
- 4/5 stars - PC World
- Smartr Contacts by Xobni turns your phone into the ultimate social organizer. - PC World
- @richdemuro - This app is so hot! Should be default android addressbook app >> Check out "Smartr Contacts"
- @aWisseh - xobni.com @xobni your app for #Android is ridiculous (in a great, organized and efficient way) keep up the outstanding work.
Safe and secure: View our privacy policy here - http://www.xobni.com/legal/privacy
Get Pro to connect all your contacts across Gmail, Android, Outlook, BlackBerry and iPhone
Product requirements:
- A Xobni account is required to use this app.
- A Gmail account or Xobni for Outlook is required for Smartr Contacts to work properly.
Corporate Addressbook from Vivek M. Lyer
Description
Want to lookup your colleague's information in Exchange but find your Android phone lacking?
Unfortunately the Global Address List (GAL) lookup currently available in Android is limited in functionality. It only looks up email addresses and does not return anything more. This could be frustrating when you are trying to use your phone to look up your colleague's phone number or office location.
This application looks up the GAL contact database, and returns ALL data corresponding to the contact that is available on the server. It also allows you to save the contact information retrieved to your phone for easy access.
This app supports GAL lookups on
- Exchange 2003
- Exchange 2007
- Exchange 2010
- Google Apps for Business/Education
- Zimbra
Thanks to the people assisting with translations:
- jgoldhammer (DE)
- hourglass69 (FR)
This app is NOT ad-supported and is completely free and open-source.
See http://code.google.com/p/corporateaddressbook/
FAQ
- Why does the app need so many permissions?
Once the app looks up a name, there are links next to the phone numbers that allow you to call or send a text to the number. In order to make these links work, the app needs the permissions to make calls and send text messages. Also in order to save the search results to your address book, the app needs to be able to access the accounts on your device and add contacts to the accounts.
- Is this app ad supported or paid?
Nopes, the app is completely free (both like beer and speech). There are no ads, and the source code is available on Google Code (http://code.google.com/p/corporateaddressbook/).
- Why are you asking for my credentials? Are you trying to steal my identity
Unfortunately there is no way to access your account information that is configured on your device. The information you enter in the app stays on the device. Please feel free to audit the code if you are still worried.
- This doesn't work, how can I report an issue?
Please feel free to email me, or report an issue at http://code.google.com/p/corporateaddressbook/issues/list
- Why is the app not available in my language?
The developers are, unfortunately, not versed in several languages - but you can help! Please join the translatioon effort at http://crowdin.net/project/corporate-addressbook/.
I have tried both address books and found the first one Smartr Contacts to be the best, although they are both solid products - try them both, they are free.

Unable to create Google Account on Head Unit - EINCAR (YH.AN70257GNN3-h)

Hi Guys,
I have an issue with my new head unit, a fair few apps are not working properly, but worst of all is google play and its accounts.
If I disable all internet access and try to open google play, it tries to load, does its "checking info" thing, and then comes up with an error about network connectivity.
If I then provide the device with internet connectivity, try to open google play, or create a google account - it comes up with "Checking Info" then the app just closes without reason.
Anyone got any ideas why this might be the case?
James

Mine has been doing the same thing since a factory reset. My device is android v6.0.1. I'm going to try and reflash GAPPS.

Hello Guys, sorry for necroposting.
Did any of you found a solution for this error?
Thanks

Maybe you can try Google installer to update Google Play and install missing components:
Google Installer für Android - APK herunterladen
Lade Google Installer apk 3.0 für Android herunter. Easily install the Google Play Store in your Xiaomi smartphone.
m.apkpure.com

Will do. I'll post the results.
Thanks!

lcamaral said:
Will do. I'll post the results.
Thanks!
Click to expand...
Click to collapse
Did it work? Same issue here

Nope. I was able to update google play services and other google apps, but the issue still remains when I try to login on google through play services

Joying has an update if you email them. They sent me this:
Do not worry friend, we know this google account issue.
After looking into this google account this issue, we find that google server has upgraded, now we need to upgrade and adjust our software to make it compatible with google server, so pls try below new firmware to see if it can fix this google service issue.
(the upgrade steps is the same, below firmware only has 2 file after unzip, just need to upgrade your head unit with these 2 files)
https://drive.google.com/file/d/1aSGUljOrqwF8cFSIHKyrYSOhthDBHcqT/view?usp=sharing

edit
double post

Joying emailed me this:
Do not worry friend, we know this google account issue.
After looking into this google account this issue, we find that google server has upgraded, now we need to upgrade and adjust our software to make it compatible with google server, so pls try below new firmware to see if it can fix this google service issue.
(the upgrade steps is the same, below firmware only has 2 file after unzip, just need to upgrade your head unit with these 2 files)
https://drive.google.com/file/d/1aSGUljOrqwF8cFSIHKyrYSOhthDBHcqT/view?usp=sharing

explorer_200 said:
Joying emailed me this:
Do not worry friend, we know this google account issue.
After looking into this google account this issue, we find that google server has upgraded, now we need to upgrade and adjust our software to make it compatible with google server, so pls try below new firmware to see if it can fix this google service issue.
(the upgrade steps is the same, below firmware only has 2 file after unzip, just need to upgrade your head unit with these 2 files)
https://drive.google.com/file/d/1aSGUljOrqwF8cFSIHKyrYSOhthDBHcqT/view?usp=sharing
Click to expand...
Click to collapse
Hey guys,
I had the same Google account login issues, after contacting them they sent me a link to two changed files to copy onto their original firmware update. I updated with this new "firmware" and my Google account worked.
Then 2 days later (March 17th 2021) my Google account was compromised for the first time in 15 years. I only use that password for my Google account so I don't know how it was hacked but the audit logs say they just input my password.
They opened up a Google Adwords account and started selling fortnight ads, then attempted to get into my brokerage account, then logged into a dormant Etsy account and tried to do something with square before I caught on (40min total in my account). They were quickly deleting any account emails that came in so I wouldn't notice them.
I am highly suspicious of this new update to my head unit. The timing is spot on, and I haven't used my Google account anywhere other than my phone and this Joying unit.
I am very concerned now about the security of this device. I also don't understand the claim that "Google updated their servers". Smells very fishy to me, and I hope somebody that knows more about device security can figure this out.

Joying JY-UQ128N4G Google account setup crashes

I got this head unit installed in my car recently. https://www.joyingauto.com/newest-j...ar-stereo-apple-carplay-radio-android-10.html
Everything works pretty well apart from one thing. I can't add my Google account because the setup app crashes - the moment the email input screen appears the it just closes and I don't know why. I updated the software to the latest version (so the head unit got factory resetted), cleared Play Services data, checked Play services permissions (everything is granted) and I have no more ideas what can cause it. It also happened on the firmware the head unit came with.
Also, I tried to install Youtube Vanced with it's microG module and when I tried to sign it there it also crashes in the same spot - on the email input screen.
Any ideas how to fix it or add Google account in a different way?

I have the same issue after resetting to factory defaults.
https://www.forum-joyingauto.com/online.php

I'm struggling with this right now too ever since updating to their latest firmware. I've been going back and forth with them but thus far no luck. They sent me an updated installer last night but it didn't fix the problem.

techy101 said:
I'm struggling with this right now too ever since updating to their latest firmware.
Click to expand...
Click to collapse
Same

As of last my email with Joying last night they seem to have acknowledged the issue and have passed the issue to their engineer(s) and have said they will be in touch when a fix has been found.

Hi guys I got mine working. Go to apps hit the 3 dots show system apps look for Google play services and uninstall system update. Hard power of the device. You should now be able to set up your Google account. If there's steps don't work the only other step I done was update android system Web view good luck

Burnzy56 said:
Hi guys I got mine working. Go to apps hit the 3 dots show system apps look for Google play services and uninstall system update. Hard power of the device. You should now be able to set up your Google account. If there's steps don't work the only other step I done was update android system Web view good luck
Click to expand...
Click to collapse
After you uninstall the update to Google play services you should now be able to see clear data available in the options for Google play services

Joying emailed me this. It worked... had to reinstall everything though
Do not worry friend, we know this google account issue.
After looking into this google account this issue, we find that google server has upgraded, now we need to upgrade and adjust our software to make it compatible with google server, so pls try below new firmware to see if it can fix this google service issue.
(the upgrade steps is the same, below firmware only has 2 file after unzip, just need to upgrade your head unit with these 2 files)
https://drive.google.com/file/d/1aSGUljOrqwF8cFSIHKyrYSOhthDBHcqT/view?usp=sharing
EDIT:
Hey guys,
I had the same Google account login issues, after contacting them they sent me a link to two changed files to copy onto their original firmware update. I updated with this new "firmware" and my Google account worked.
Then 2 days later (March 17th 2021) my Google account was compromised for the first time in 15 years. I only use that password for my Google account so I don't know how it was hacked but the audit logs say they just input my password.
They opened up a Google Adwords account and started selling fortnight ads, then attempted to get into my brokerage account, then logged into a dormant Etsy account and tried to do something with square before I caught on (40min total in my account). They were quickly deleting any account emails that came in so I wouldn't notice them.
I am highly suspicious of this new update to my head unit. The timing is spot on, and I haven't used my Google account anywhere other than my phone and this Joying unit.
I am very concerned now about the security of this device. I also don't understand the claim that "Google updated their servers". Smells very fishy to me, and I hope somebody that knows more about device security can figure this out.

explorer_200 said:
Joying emailed me this. It worked... had to reinstall everything though
Do not worry friend, we know this google account issue.
After looking into this google account this issue, we find that google server has upgraded, now we need to upgrade and adjust our software to make it compatible with google server, so pls try below new firmware to see if it can fix this google service issue.
(the upgrade steps is the same, below firmware only has 2 file after unzip, just need to upgrade your head unit with these 2 files)
https://drive.google.com/file/d/1aSGUljOrqwF8cFSIHKyrYSOhthDBHcqT/view?usp=sharing
Click to expand...
Click to collapse
Hi mate what tipe of head unit is this link for. Is in the 13.3" screen

Joying 9" for my 2008 Tacoma
Newest Android 10.0 9 inch Android Car Radio For Toyota Tacoma 2005-2015 Apple CarPlay
SKU: JY-TQ187N4G-BShip From: Chinese WarehouseCPU: UIS7862 12nm Dual ARM Cortex-A75 + Six ARM A55Ram: LPDDR4 4GB Rom:EMMC 64GBSupport Bluetooth, WiFi, DVR, OBD2, Back-Up Camera
www.joyingauto.com

Joying emailed me this. It worked. For unit JY-UQB09N4G-H
Please try to do as below:
Go to settings> click on blue phone icon button on bottom>click APPS> click Google Play Services Icon > Click "Storage and Cache"> click on both "Clear Cache" and "Clear Storage" Reflash with Firmware.
Here is the file: https://drive.google.com/file/d/1aSGUljOrqwF8cFSIHKyrYSOhthDBHcqT/view?usp=sharing
Following are the notes for the update:
1) You need to unzip the updated files on the Windows system.and then copy all the unzipped files (not the folder ) to the USB, which is formatted as FAT32.
and then insert it into the USB port which on the back of the head unit, it will be updated automatically.
2) Please do not unzip the files on the USB.
3) You better use the 32GB or less than 32GB USB.

Just today my Google account was hacked... I'm not sure if this update compromised it but I can't think of anything else that would have.
They claimed that the original didn't work because "Google updated their servers" but I'm starting to grow suspicious of nefarious code

explorer_200 said:
Just today my Google account was hacked... I'm not sure if this update compromised it but I can't think of anything else that would have.
They claimed that the original didn't work because "Google updated their servers" but I'm starting to grow suspicious of nefarious code
Click to expand...
Click to collapse
I also was just recently hacked, I have a joying as well and was able to put gmail account info in last month and then was hacked soon after. They set up some kind of advertising account which charged back to my credit card which was under google pay. I had to block the card and get a new one and visa. What should one do in this situation? Make a new google account with no personal info to use with the head unit?

6KayZee9 said:
I also was just recently hacked, I have a joying as well and was able to put gmail account info in last month and then was hacked soon after. They set up some kind of advertising account which charged back to my credit card which was under google pay. I had to block the card and get a new one and visa. What should one do in this situation? Make a new google account with no personal info to use with the head unit?
Click to expand...
Click to collapse
Wow, exactly what happened to me:
New Joying Android 10 UIS7862 Octacore 1.8GHz (4GB RAM, 64GB flash)
EDIT: XDA didn't like me attaching the photos, just got broken links so I'm sorry that they're embedded like this. Joying just sent me a review unit of their new 10.1" Android 10 head unit so I figured it should have its own thread. It looks...
forum.xda-developers.com
Email Joying about this. It's very bad

Does anyone know what the issue was? And what joying changed in the new firmware to fix it?
I've got an Allwinner T3 Head Unit with the same issue and lots of others with the same unit are also facing the problem. We've tried contacting the manufacturer for a firmware update but having no luck so far.

No idea, but the new firmware fixed the issue instantly for me.
I'm pretty concerned to see the reports of people getting hacked. I have 2-factor authentication and did not have a problem.

Google Account Hacked - New Joying Head Unit

I had the Google account login issues that many had in here, after contacting Joying they sent me a link to two changed files to copy onto their original firmware update. I updated with this new "firmware" and my Google account worked.
Then 2 days later (March 16th 2021) my Google account was compromised for the first time in 15 years. I only use this password for my Google account so I don't know how it was hacked but the Google Admin audit logs say the hacker just input my password.
They opened up a Google Adwords account and started selling fortnight ads, then attempted to get into my brokerage account, then logged into a dormant Etsy account and tried to do something with Square before I caught on (40min total in my account). They were quickly deleting any account change emails that came in so I wouldn't receive notices of changes.
I am highly suspicious of this new update to my head unit. The timing is spot on, and I haven't used my Google account anywhere other than my Pixel phones, Nvidia Shield, Laptop and this Joying unit.
I am very concerned now about the security of this device. I also don't understand the claim by Joying that "Google updated their servers" and that's why their firmware wasn't working with Google accounts. Smells very fishy to me, and I hope somebody that knows more about device security can help figure this out. I still have copies of the update that they sent me, but I will not be using this brand new head unit anymore with my Google Account.
I posted this thread because I have seen other comments about Google accounts being hacked and concerns about third party device security and thought it would be best to consolidate them here in one thread rather to take other threads on a tangent.

Just be aware that Joying in particular didn't have anything to do with it, they are just resellers and pass on software given to them by the actual manufacturer of the hardware, FYT. Also be aware, that data breaches are happening very often nowadays so that is also a possibility. I'm not defending the manufacturer in any way, but there's too many variables in order to single out the headunit itself. You did mention that you use this google account on your phone as well. It could be that you installed an app on your phone that stole your account information as well. Also a new "virus" has been discovered that disguises itself as a system update that can steal your info. Info here: https://www.androidpolice.com/2021/...retends-to-be-a-system-update-for-your-phone/
Only way to know for sure if it was the headunit itself is to use a new dummy Google account on it and see if it gets taken over as well. Also, I don't see the purpose of needing to login to Google on these devices anyways since we're not using them like phones and, me in particular, I don't consume streaming media on it so i don't give it network access at all. These new units have spotty GPS reception at best and sometimes i find myself forced to use Android Auto anyways so the only streaming media consumed is straight from my phone.
What I can recommend you do is install a firewall app on your headunit and monitor where it tries to connect and determine if it needs to access it or not. To put yourself at ease, I would change your password and enable 2 step authentication on your account.
Let us know if you decide to sideload a firewall app and post your results. With that info, we can take this concern up to Joying/Teyes/etc and have them press their supplier for information. I can assure you that with the proper evidence, the resellers will put some effort into fixing this wrongdoing, since they wouldn't want to tarnish their reputation and possibly lose out on some sales.

I was also hacked in mid March soon after installing a joying unit and connecting to my google account. The hacker opened a google ads account and used a credit card associated with my google account to charge 260 dollars to my visa. They would have charged more but my limit on the card is low for just this reason. Visa had to cancel my card and send me a new one. I never even connected the hack in my mind to the joying head unit until explorer_200 happened to post his experience, but this seems like far to much of a coincidence given that we both have had the same experience at the same time and all we have in common is the joying unit.
I agree that it may not be something joying knows about, but its probably a good idea to see how many have been affected by this hack. For now I will be setting up a locked down google account just for the joying box and my head unit will only be connected to apps that are no real risk to my passwords and personal data.
I need to login to google to use voice commands and google assistant as well.

explorer_200 said:
I posted this thread because I have seen other comments about Google accounts being hacked and thought it would be best to consolidate them in one thread.
Click to expand...
Click to collapse
Could you please link to these other comments. Right now there is just your say so which is a sample size of one. Not doubting what you are saying, but correlation is not necessarily causation.

6KayZee9 said:
I never even connected the hack in my mind to the joying head unit until explorer_200 happened to post his experience, but this seems like far to much of a coincidence given that we both have had the same experience at the same time and all we have in common is the joying unit.
Click to expand...
Click to collapse
That is flawed logic.
Allow me to use similar thinking in another way.
I notice that everytime I go outside when it is raining, there are people with umbrellas. I deduct that it is too much of a coincidence to see people with umbrellas when it is raining to think they are not linked. I don't see these same people carrying umbrellas when it is not raining. I can only conclude that the umbrellas are causing the rain.
You say that you and one other have the same head unit and have been hacked therefore it is the headunit's fault. DO a survey on how many people with Samsung phones were hacked yesterday and get back to me to let me know if the number was greater than two.
We can then move on from there.

Once bitten, twice shy... learn or get burned.
If you had a secure password that you managed well until 2 days ago that should narrow down your list of suspects substantially.
Time to take out the trash...
Results are all that matter; take out anything that might have been involved. The napalm method.
Overkill yes, but it's effective.
Breaching your Google account is completely unacceptable and I go nuts on anything/one that was potentially involved.

explorer_200 said:
I had the Google account login issues that many had in here, after contacting Joying they sent me a link to two changed files to copy onto their original firmware update. I updated with this new "firmware" and my Google account worked.
Then 2 days later (March 16th 2021) my Google account was compromised for the first time in 15 years. I only use this password for my Google account so I don't know how it was hacked but the Google Admin audit logs say the hacker just input my password.
They opened up a Google Adwords account and started selling fortnight ads, then attempted to get into my brokerage account, then logged into a dormant Etsy account and tried to do something with Square before I caught on (40min total in my account). They were quickly deleting any account change emails that came in so I wouldn't receive notices of changes.
I am highly suspicious of this new update to my head unit. The timing is spot on, and I haven't used my Google account anywhere other than my phone and this Joying unit.
I am very concerned now about the security of this device. I also don't understand the claim by Joying that "Google updated their servers" and that's why their firmware wasn't working with Google accounts. Smells very fishy to me, and I hope somebody that knows more about device security can help figure this out. I still have copies of the update that they sent me, but I will not be using this brand new head unit anymore with my Google Account.
I posted this thread because I have seen other comments about Google accounts being hacked and thought it would be best to consolidate them in one thread.
Click to expand...
Click to collapse
If you're not using MFA/2FA on your account(s) expect it be a matter of time until your account(s) be compromised again.
The joying update is what I would call purely coincidence and post hoc (Post hoc ergo propter hoc.)

Exactly this, without hard evidence that the Joying/Teyes/etc update is the cause of your Google account getting hacked, this is all pure coincidence. So far I'm aware of only 2 reports of accounts getting hacked, @explorer_200 and @6KayZee9. I've been lurking "the other" forum and i haven't seen any reports there either. Get some evidence to back up your claims and then start pointing fingers and have fyt (the software comes from them) be held accountable.

gamer765 said:
Exactly this, without hard evidence that the Joying/Teyes/etc update is the cause of your Google account getting hacked, this is all pure coincidence. So far I'm aware of only 2 reports of accounts getting hacked, @explorer_200 and @6KayZee9. I've been lurking "the other" forum and i haven't seen any reports there either. Get some evidence to back up your claims and then start pointing fingers and have fyt (the software comes from them) be held accountable.
Click to expand...
Click to collapse
It's not so much as proving anything as it is plugging the most probably source(s) of the leak to prevent it from ever happening again for the user.
If that means never using the software even the hardware, it's a small price to pay.
An OS reload may also be good idea at this point on all potentially infected devices and another password reset. Go nuts... this could get real messy if it's in the data drive and gets into the backups.
The perp may only target high value targets and leave the smaller fish be giving the illusion the site, software or whatever is safe.

blackhawk said:
Once bitten, twice shy... learn or get burned.
If you had a secure password that you managed well until 2 days ago that should narrow down your list of suspects substantially.
Time to take out the trash...
Results are all that matter; take out anything that might have been involved. The napalm method.
Overkill yes, but it's effective.
Breaching your Google account is completely unacceptable and I go nuts on anything/one that was potentially involved.
Click to expand...
Click to collapse
Have you considered aliens? Or ghosts? They both fit in with your assumptions thus far.
I guess you failed statistics 101. Your conclusion is flawed. You have failed to take into account the number of hackers in the world that were active 2 days ago and you have failed to take into account all the other apps you have attached to your account / sideloaded onto other devices that have access to that account.
Do that and then you are starting to get somewhere.
By all means change your password. But don't attempt to pass off your unsubstantiated claim as fact or anywhere in the realms of probability without some data to back it up.

ludditefornow said:
I guess you failed statistics 101. Your conclusion is flawed.
By all means change your password. But don't attempt to pass off your unsubstantiated claim as fact or anywhere in the realms of probability without some data to back it up.
Click to expand...
Click to collapse
If every 1 in 1k accounts gets hacked by an unscrupulous site or device and you're that one, you're still statistically 100% boned
The OP should suspect the use of their Google password; it's probably the most recent sites it was used on or the device.
I'd purged both, no remorse...

blackhawk said:
If every 1 in 1k accounts gets hacked by an unscrupulous site or device and you're that one, you're still statistically 100% boned
Click to expand...
Click to collapse
What does that have to do with the subject at hand? The ramification from being hacked has nothing to do with how one was hacked based on the OP.
And besides, the OP wasn't 100% boned as you put it. It was less than an hour before they realised and steps were taken to counter the hack. They had a couple of hundred dollars put on a card that will be reversed no doubt.
So that is another statistic failure. Friendly advice. Stop posting about stats in anyway until you get the fundamentals of them right

ludditefornow said:
What does that have to do with the subject at hand? The ramification from being hacked has nothing to do with how one was hacked based on the OP.
And besides, the OP wasn't 100% boned as you put it. It was less than an hour before they realised and steps were taken to counter the hack. They had a couple of hundred dollars put on a card that will be reversed no doubt.
So that is another statistic failure. Friendly advice. Stop posting about stats in anyway until you get the fundamentals of them right
Click to expand...
Click to collapse
You're the one that wanted a go at me.
Is that all you got?
All my data is redundantly* backed up without Google but some use it to back up everything.
Some have a lot to lose in just a couple minutes with a hacked Google account.
Don't trivialize it... on my account

Boy you guys are grumpy, neither of us are saying anything is definitively joyings fault, however its a much bigger coincidence when you consider that neither of us ever had a problem til now and ive had gmail since soon after it came online. Here is an alternate hypothesis I have carwebguru on my head unit as well. Maybe both explorer_200 and I have it on our head units and that code is the true culprit. Other than that all my apps ive had for a long time. Im not really sure that I believe this is all that sophisticated unless its on a huge scale since they only got a few hundred from visa and or google. And for that they have some pretty powerful entities who may now be taking an interest. We are just sending all this up the flag pole to see how many salute...

blackhawk said:
You're the one that wanted a go at me.
Is that all you got?
All my data is redundantly* backed up without Google but some use it to back up everything.
Some have a lot to lose in just a couple minutes with a hacked Google account.
Don't trivialize it... on my account
Click to expand...
Click to collapse
I'm not trivalizing being hacked at all. I think you need to reread my posts. Because your response tells me you haven't understood them.

Wow. I didn't expect this to be a controversial thread. I've seen a few posts in here from people who have gone through the code on these units and found Chinese URL's that don't appear to have any uses. I am not definitively saying anything here, but Reddit is full of people wary of running Android on these devices because they have such huge potential to be compromised.
I am VERY careful with my Google account information online. I am highly aware of phishing schemes, and haven't used an external device other than my Pixel2, Pixel4, Laptop, Nvidia Shield, to log into Google in over 5 years.
The attack was similar in both of our cases, and happened within a few days of us logging into Google with a new Joying head unit (that had verified Google Login issues from a 2021 firmware update)
Anyways... I've changed my Google password 3 times since this happened, and am monitoring my Google audit log multiple times per day. So far so good, but unfortunately I won't be using this head unit with my Google account going forward

After activating my Google account on the new Navifly headunit, I received a notification from Google that I need to change all passwords (about 350 pieces). In addition, all contacts from the phonebook (on the mobile phone) and automatic backup have disappeared. I deactivated the account on headunit, but it didn't help. I plan to contact Google to see if they can help me.

nenadhebiv said:
After activating my Google account on the new Navifly headunit, I received a notification from Google that I need to change all passwords (about 350 pieces). In addition, all contacts from the phonebook (on the mobile phone) and automatic backup have disappeared. I deactivated the account on headunit, but it didn't help. I plan to contact Google to see if they can help me.
Click to expand...
Click to collapse
This doesn't make any sense.

I'll say it again; enable 2fa/mfa on your Google account.
If not using multifactor authentication or doing questionable things like accepting apps access to your Google account, expect to be compromised.

nenadhebiv said:
After activating my Google account on the new Navifly headunit, I received a notification from Google that I need to change all passwords (about 350 pieces). In addition, all contacts from the phonebook (on the mobile phone) and automatic backup have disappeared. I deactivated the account on headunit, but it didn't help. I plan to contact Google to see if they can help me.
Click to expand...
Click to collapse
Actually I lost all my Google contacts as well with the Joying unit, but I found out it had to do with the bluetooth syncing from my phone to the head unit. You've gotta disable it.
Search for "head unit deleted all my Google Contacts" and you'll see lots of threads.