The audit flagged Xiaomi and Huawei but it's licensed to OnePlus. The Lithuanian National Cyber Security Center (NCSC) recently released a security assessment of three new Chinese-made smartphones - Huawei P40 5G, Xiaomi Mi 10T 5G and OnePlus 8T 5G. US buyers can find the P40 5G on Amazon and the Mi 10T 5G on Walmart.com - but given the results of the NCSC security audit, we won't provide direct links to these phones.
OnePlus 8T 5G – Arguably the most popular and best-selling one of these three phones was the only one that didn't work.NCSC review uploaded without any Red flags.
Xiaomi Mi 10T 5GNCSC discovers seven system default apps that a Xiaomi phone can control media content to block User using frequently downloaded JSON file Lithuanian NCSC sends Xiaomi Mi 10T 5G with a non-standard browser called "Mi Browser" The NCSC found two items in Mi Browser that they didn't like - Google Analytics and a lesser known module called Sensor Data, and it can then send this data to Xiaomi servers to analyze and use Unspecified Advertising
The NCSC detected that the sensor data module collects statistics about 61 parameters of program activity, including application activation time. Fadha, etc. These statistics are encrypted and sent to Xiaomi servers in Singapore, a country not covered by EU General Data Protection Act (NCSC) and are linked to excessive data collection and abuse of user privacy.
NCSC also silently records a user's mobile phone number on Singapore servers via an encrypted text message when X virtual cloud services are activated iaomi. The mobile phone number is sent regardless of whether the user has connected it to a new cloud account, and encrypted SMS is not visible to the user.
Several Xiaomi system apps on Mi 10T 5G are regularly downloaded from a file called MiAdBlacklistConfig from Singapore servers. In this case, the National Center for Sports Security found 449 cases identifying religious, political, and social groups. In the software categories, Xiaomi apps use MiAdBlackListConfig to analyze the multimedia that may be viewed on the device, and block “inappropriate” keywords if they are associated with that content. It's inactive on EU-registered phones, and the phones still regularly download the blocked list themselves - and according to the agency, they can be reactivated at any time remotely.
Huawei P40 5GNCSC discovered that AppGallery Huawei users search, often for untrusted third Party repositories for software infrastructure — and for good reason.
The most obvious problem with the P40 5G is that it has replaced the Google Play Store with the Huawei-owned AppGallery Store, which is "a safe place to get all your favorite apps." "NCSC has detected that if a user searches for AppGallery for a specific app, it will be silently redirected to third-party app stores if it doesn't match AppGallery.Includes Apkmonk, APKPure and Aptoide, but is not limited to. CNC Machinist Tapping Calculator and “Messenger, an all-in-one light, free Chat Free Pro app.”
We're not sure how much salt we're taking with the specific results of the NCSC "Malware" program because the agency hasn't reverse-engineered any of the software The three that VirusTotal didn't like - and lesser quality false positive antivirus is known to happen with some requests, however, AppGallery's seemingly muted link to third-party app stores poses a real risk of device penetration.
Although Apkmonk, APKPure and Aptoide are all reasonable “alternative stores” well known, “Google’s Play Store is fully managed. Aptoide, for example, offers both of its main repositories – which are configured and scanned Optical and similar to a secure Play Store.But Aptoide also makes it easy to host APK repositories for anyone who wants to upload themselves - whether they want to copy APK files that may disappear from the Play Store, or the developer who owns the original software.
Easy to build repository In Aptoide - and the proliferation of stolen and cracked apps in user repositories - reckless "purchasing" by less knowledgeable users becomes a serious security risk, especially when those users don't realize they gave up on basic security in the first place.
Even users who They don't look for anti-theft software They may inadvertently deal with the added "legality" of repackaging malware or copying legitimate software.Resign the modified or copied software with the loader key.
Based on To the NCSC results, there does not appear to be a problem with the OnePlus phone - this Not surprising, given that only the brand is ree, which is negatively reviewed, and frequent non-Chinese governments are not included.
Enterprising consumers and/or Google-haters in particular may be reasonably interested in the Huawei P40, which appears to suffer more from a lack of malware. Prevent security guards from direct surveillance and/or spyware. Finally, we highly recommend that you avoid the Xiaomi Mi 10T. Which should not simply be ignored.
Security audit raises stern warnings about Chinese smartphone models
At least since 2019, popular YouTube channels have been tak...
Britain's COVID Pass card system was suspended for hours o...
Several Visible Wireless subscribers reported having their accounts ...
This is the story of the mastermind behind one of the largest "fake news" op...
Twitch's live video streaming service has been hacked and 125GB...