Xiaomi Uses An Unencrypted Delivery System To Install Packages Silently


walls

Members
Sep 15, 2016
1
13
Is this fixed on xiaomi.eu ROMs?

www. thijsbroenink .com/2016/09/xiaomis-analytics-app-reverse-engineered/

They're sending your IMEI, MAC address, Model, Nonce, Package name and signature to Xiaomi's servers through an unencrypted channel once every 24 hours to check for an update to their analytics app.

And if the servers see the analytics apps is out of date, they sent an APK down to your device (without you granting permission), and there aren't any verification done to make sure the APK they're sending is even an updated analytics app.

So Xiaomi could use this to remotely install any app onto your device. Hackers could do the same if they gained control of Xiaomi's servers, and a local hacker should be able to do the same if they had control over the local network you are on.
Source: reddit