Skip to main content

Xiaomi Is Vulnerable - Automatic App Installation

Xioami back-door detected where it can install Any App


Xiaomi which is also known by name MI a china based company founded in 2010 and getting biggest brand in couples of year. Xiaomi is famous for their cheap smartphones with better hardware. They are now a 4th largest smartphone making company in the world.

Xiaomi expected to launch their new smartphone Mi 5 on September 27. Which will come with some new features better camera update etc.

As Xiaomi going to launched their new phone in this month a news certainly spread everywhere that it xiaomi can download any app in your smartphone without any permission automatically

Thijs Broenink, a Computer Science student from Netherlands. He spell out that Xiaomi’s AnalyticsCore.apk constanly running on the background of smartphone and it's still go on even if you delete it from the smartphone.

Broenink research those codes and found that the app which checks for updates from Xiaomi every 24 hours, and sends all kinds of information to Xiaomi’s servers. This app also automatically installs the update from Xiaomi’s servers, if it finds it there, the update’s file is named ‘Analytics.apk

So these updates will install automatically in your android device without your permission which is so much weird about this phone


What Xiaomi say about this

"AnalyticsCore is a built-in MIUI system component that is used by MIUI components for the purpose of data analysis to help improve user experience, such as MIUI Error Analytics. As a security measure, MIUI checks the signature of the Analytics app during installation or upgrade to ensure that only the APK with the official and correct signature will be installed. Any APK without an official signature will fail to install. As AnalyticsCore is key to ensuring better user experience, it supports a self-upgrade feature. Starting from MIUI V7.3 released in April/May, HTTPS was enabled to further secure data transfer, to prevent any man-in-the-middle attacks."

Comments

Popular posts from this blog

Whatsapp privacy policy changed Now sharing User Whatsapp Info With Facebook Public

News Compressed :  Facebook changed whatsapp privacy policy and let people on facebook to contact user whatsapp number, means whatsapp will share their user info with facebook. Company said this step will help you provide relevant friend suggestion and help people to tackle spam abuse this step might help facebook to generate revenue. Whatsapp which was before add free has changed their privacy policy since the firm bought by facebook on 2014 Whatsapp now-sharing their users private info with facebook and let some companies on facebook to find people on whatsapp and advertised them-self which might help facebook to earn revenue from company to advertise them on whatsapp users. Facebook sharing user info and breaking the whatsapp old privacy policy betrayed many many peoples but whatsapp says that sharing user info in public help them to find more relevant friends on facebook and help user to tackle Spam&abuses source bbc. " Ms Clark-Dickson said users...

Skullcandy To Launch A Cool Wireless Headphone in India

The Well Known Sound Devices brand Skullcandy will launch Grind Wireless Headphone with Bluetooth functionality in India at a price range of Just Rs 6,499. These New Headphones are the upgraded version of Grind 2.0 and will be exclusively available at Croma store near you. The Grind features look similar to Grind 2.0 but some enhancement is done to get great  sound over your Bluetooth connection. This New Headphone  has all functions like calling, track and volume controls on the right ear cup.The battery life of the headphone will standby up to 12 hours on a full charge. We here at Hackulife . blogspot . com Highly Reccomend to use this product simply This headphone is great as compare to the other brands headphones it comes with high end quality speakers less distortion and no barriers at all. So, Don't Be Shut Out Rush to your nearest Croma Store Right now .

Hacker Demand $568 Million - To Leaked NSA's Private Hacking Tools Online

Hacker Demand $568 Million - To Leaked NSA's Private Hacking Tools Online News Compressed : A group of hackers name "the shadow brokers" allege to hacked NSA( National security agency) and dumped their some private hacking tools online and exploits. They demand 1 million dollars to leak all there hacking tools but it's not confirmed if the leaked documents are legitimate, but some security experts believe it's real The National security agency reported has been hacked by group of hackers name "The shadow brockers".  The incident takes place on 13th august when the group of hackers claimed to hacked the NSA's hackers group -- "Equation ", the hacking group that’s assumed to be the national security agency"-- And dumped hacking files which it claimed came from the Equation Group in two days after hack on Github  and Tumblr   The hackers leaked some files sample these files also having a similarity with NSA’s hackin...