Android is always listening

Real time analysis (pdf) by a team of U.K. scientists showed that all roads through Android lead to Google.

From Bill Toulass’ “Study reveals Android phones constantly snoop on their users” posted Tuesday on Bleeping Computer:

The researchers have focused on Samsung, Xiaomi, Realme, and Huawei Android devices, and LineageOS and /e/OS, two forks of Android that aim to offer long-term support and a de-Googled experience. The conclusion of the study is worrying for the vast majority of Android users:

“With the notable exception of /e/OS, even when minimally configured and the handset is idle these vendor-customized Android variants transmit substantial amounts of information to the OS developer and also to third parties (Google, Microsoft, LinkedIn, Facebook, etc.) that have pre-installed system apps.”

As the summary table indicates, sensitive user data like persistent identifiers, app usage details, and telemetry information are not only shared with the device vendors, but also go to various third parties, such as Microsoft, LinkedIn, and Facebook. And to make matters worse, Google appears at the receiving end of all collected data almost across the entire table.

It is important to note that this concerns the collection of data for which there’s no option to opt-out, so Android users are powerless against this type of telemetry. This is particularly concerning when smartphone vendors include third-party apps that are silently collecting data even if they’re not used by the device owner, and which cannot be uninstalled.

For some of the built-in system apps like (Xiaomi), Heytap (Realme), and Hicloud (Huawei), the researchers found that the encrypted data can sometimes be decoded, putting the data at risk to man-in-the-middle (MitM) attacks. As the study points out, even if the user resets the advertising identifiers for their Google Account on Android, the data-collection system can trivially re-link the new ID back to the same device and append it to the original tracking history. The deanonymization of users takes place using various methods, such as looking at the SIM, IMEI, location data history, IP address, network SSID, or a combination of these.

Cue the cross-link map (click to enlarge):

My take: Another reason to stick with — or switch to — Apple.


  1. Kirk DeBernardi said:
    All while the regulators, legislators and sue-happy bastards do their best at tearing down the garden walls.

    October 13, 2021
  2. Jonny T said:
    Hmmm. Magrethe Vestager, failed politician, unelected bureaucrat, has the ability to screw up everything for a billion Apple users because of her desire to whack US tech trying to give EU companies, (like Wirecard?) a better chance.

    October 13, 2021
  3. Bart Yee said:
    Android and Google, where you, the users, are the product to be sold, auctioned off, shared, and used, without permission, knowledge, transparency, or even ability to opt out or remove apps which do this. Once you enter Android, your internet life, even you own life, is not yours any more.

    Sure, plenty of Android users say they actually don’t care or want their info to be collected, tracked, sold, and used in exchange for “free” services and cheap smartphones, plus some vague techie ability to customize Android to their heart’s delight. Some even think they can outsmart Google / Android and believe they are free / safe from tracking. As the above shows, that is decidedly untrue.

    I’m with Jeff F. “None of these suggest a very bright person.” It perhaps a gullible person who buys into Google.

    October 13, 2021

Leave a Reply