Skip to main content

Xiaomi defends against accusations of collecting customers’ private data

Xiaomi defended itself against accusations that the Chinese smartphone manufacturer was secretly collecting private data, claiming that the privacy and security of its customers is its “top priority.”

Recommended Videos

Cybersecurity researcher Gabi Cirlig claimed that much of what he was doing on his Xiaomi Redmi Note 8 was being tracked, with the data sent to remote servers, Forbes reported. Cirlig said that the smartphone’s default browser, Xiaomi’s Mint, recorded the websites he visited, while the device also monitored activity such as opening folders and swiping screens.

Please enable Javascript to view this content

Further investigation by another cybersecurity researcher, Andrew Tierney, revealed that Xiaomi’s Mint Browser and Mi Browser Pro, downloaded through the Google Play Store, collected the same data.

Cirlig told Forbes that he suspects other Xiaomi phones, including the Mi 10, Redmi K20, and Mi Mix 3, came with the same privacy issue. He also claimed that it only took a few seconds to crack the encryption of the supposedly protected data into readable information.

Xiaomi denies accusations

“Xiaomi has reviewed a recent article by Forbes on our privacy policies and believes the reporting to be misrepresentative of the facts. At Xiaomi, our users’ privacy and security are of top priority,” the company said in its response to the Forbes article.

Xiaomi said that its collection of usage data is given explicit permission by its customers, and the process is anonymous and encrypted. The data is used for internal analysis, without linking any information that may be used to identify individuals.

The manufacturer also said that before the article was published, it responded to questions sent by Forbes’ reporter, and it believes that the article “does not accurately reflect the content and facts of these communications.”

However, despite these explanations, there is still no logical reason for a browser to send detailed information while in incognito mode, according to Android Police. A recent update to the Mint Browser did not change anything, as it still collects the same data.

The privacy issue follows another controversy involving Xiaomi, in which text on the packaging of the Mi 10 Pro boasting access to Google apps was seen by online communities as a thinly veiled attack on rival Huawei.

Aaron Mamiit
Aaron received an NES and a copy of Super Mario Bros. for Christmas when he was four years old, and he has been fascinated…
Robinhood reports data breach affecting 7 million customers
Robinhood app on a smartphone.

Online stock trading platform Robinhood has been hit by a data breach affecting about seven million of its customers, the company revealed on Monday, November 8.

The Menlo Park, California-based company said the “data security incident” took place on Wednesday, November 3, when an unauthorized third party “obtained access to a limited amount of personal information.”

Read more
Google adds a private locked photos folder to iPhones for ‘personal’ photos
Google Photos logo.

Google Photos will soon let iPhone and Android users save their photos behind a biometrically protected locked folder as Google pushes for greater privacy features on mobile. It's a nice way to get some peace of mind and keep sensitive personal photos off the cloud.

Locked Folder is a feature Google introduced for Pixels earlier this year that lets them hide sensitive photos out of view. If a photo is hidden away behind a "locked folder," it won't show up. It's a lot like the hidden album feature on iOS, iPadOS, and macOS, but with the benefit of password or biometric protection.  Images in the locked folder also aren't synced to Google Photos, but restricted to the device used. Locked Folder will come to iPhones early next year, while non-Pixel Android users will have it sometime "soon."

Read more
Hackers just stole personal data from millions of Acer customers
acer swift 3 13 2019 review acerswift3132019

Acer has just confirmed that its servers were beached by a group of hackers called Desorden. The hackers managed to steal over 60 gigabytes worth of data containing sensitive information about millions of Acer's customers.

The compromised information includes the names, addresses, and phone numbers of several million clients, but also restricted corporate financial data.

Read more