Related
Hi guys I can use your help in a form of a little guidance in getting getting my payment stopped on an Android market app, it's called " Bakery Story " it's a free app for kids when the app is opened it tricks kids in buying gems of some sort, my 6 yr old daughter downloaded the game and I saw an email receipt from Google for $100 .Verizon said they can't do anything, bank said call Google, I tried contacting Google but a dead end. Any advice would be helpful. Thank you.
Sent from my ADR6400L using XDA Premium App
I would just file a fraud case with your bank
Sent From Rooted Thunderbolt
CyanogenMOD 7 v1.1 (Gingerbread 2.3.5)
nerogold said:
Hi guys I can use your help in a form of a little guidance in getting getting my payment stopped on an Android market app, it's called " Bakery Story " it's a free app for kids when the app is opened it tricks kids in buying gems of some sort, my 6 yr old daughter downloaded the game and I saw an email receipt from Google for $100 .Verizon said they can't do anything, bank said call Google, I tried contacting Google but a dead end. Any advice would be helpful. Thank you.
Sent from my ADR6400L using XDA Premium App
Click to expand...
Click to collapse
I would try contacting the developer and tell them your story nicely and say if you would like to resolve it. If the developer is a decent person, they should work something out with you. However, if they won't work with you, I would call your card company and have the charges reversed.
Thanks guys I tried both methods but no results no reply from dev and bank said because it was my debit not credit card if was credit card there would be third party involved which could be disputed, Google said they're not responsible for on app purchases.
Sent from my ADR6400L using XDA Premium App
Let's try this in here, I posted this same thread in general and it got deleted, twice, hmmm ,is someone trying to cover someone's ass? I have every proof that this app ripped an unsuspecting child off so why shouldn't I let other users know of this app.
Sent from my ADR6400L using XDA Premium App
Are you talking about this Bakery Story? It has 75k plus reviews and a 4 1/2 star rating... exactly how many of these gems did your child buy?
Also, your thread earlier was not deleted, it was moved, and you should have a PM stating that.
http://forum.xda-developers.com/showthread.php?t=1207420
Technically it is your fault. Not saying you shouldnt be able to get a refund but you should of kept an eye on your kid or thought her to be more careful. Granted she is only 6, but its never too early to start.
Anyways, look in the settings. Maybe you can prevent things like this in the future.
Sent from my HTC Sensation 4G using XDA App
nerogold said:
Hi guys I can use your help in a form of a little guidance in getting getting my payment stopped on an Android market app, it's called " Bakery Story " it's a free app for kids when the app is opened it tricks kids in buying gems of some sort, my 6 yr old daughter downloaded the game and I saw an email receipt from Google for $100 .Verizon said they can't do anything, bank said call Google, I tried contacting Google but a dead end. Any advice would be helpful. Thank you.
Sent from my ADR6400L using XDA Premium App
Click to expand...
Click to collapse
I remember that Apple had similar issues and they ultimately placed a setting in iOS to toggle 'In App' purchases On/Off. I would do some research on what happened there and see if it helps in your case. You can dispute charges on a debit card, as I had to do that one time. The other party will be given something like 30 days to respond to your debit card company. If they do not respond, then the charges will be removed from your debit card.
On a different note, perhaps it would be a good idea to use a pre-paid credit card that can be topped-off for making purchases from the Market. I may look into this myself.
Lyondellic said:
I remember that Apple had similar issues and they ultimately placed a setting in iOS to toggle 'In App' purchases On/Off. I would do some research on what happened there and see if it helps in your case. You can dispute charges on a debit card, as I had to do that one time. The other party will be given something like 30 days to respond to your debit card company. If they do not respond, then the charges will be removed from your debit card.
On a different note, perhaps it would be a good idea to use a pre-paid credit card that can be topped-off for making purchases from the Market. I may look into this myself.
Click to expand...
Click to collapse
Yeah I dont see how he can't dispute it because even though it's a debit card, i assume it has the visa/master card logo on it and thus is still backed by them for purchases you did not enter a pin for. Email or call visa/master card directly if your bank is giving you the runaround.
mrkite38 said:
Are you talking about this Bakery Story? It has 75k plus reviews and a 4 1/2 star rating... exactly how many of these gems did your child buy?
Also, your thread earlier was not deleted, it was moved, and you should have a PM stating that.
http://forum.xda-developers.com/showthread.php?t=1207420
Click to expand...
Click to collapse
I need to check pm to see if it was moved if it was, my bad. I think it was 58 gems she chose, I don't know at what stage of the game that is.
Sent from my ADR6400L using XDA Premium App
this is why i do not buy apps.
fixxxer2008 said:
this is why i do not buy apps.
Click to expand...
Click to collapse
That's the problem it's a free app.
Sent from my ADR6400L using XDA Premium App
Yea. I had a similiar issue with a debit card. It does go through visa/MC etc. You have to push hard though. Bank didn't want to go down that road but they did when I started yelling about it.
Now I have my AmEx linked and any issues are just a click away to fix.
Keep on the bank though. They can help if they want to.
Sent from my PUR3 A05P using Tapatalk
saintfurion said:
Yea. I had a similiar issue with a debit card. It does go through visa/MC etc. You have to push hard though. Bank didn't want to go down that road but they did when I started yelling about it.
Now I have my AmEx linked and any issues are just a click away to fix.
Keep on the bank though. They can help if they want to.
Sent from my PUR3 A05P using Tapatalk
Click to expand...
Click to collapse
I would call visa/mc as I mentioned and/or call your bank and threaten to get visa/mc involved since the bank is obviously ignoring rules set by visa/mc (probably because they stand to lose somehow over it).
That's why I use a credit union debit/check card and credit card.
Much more forgiving and easier to work with.
Technically, you're on the hook. You just need to find the right sympathetic ear.
The simple solution, for the future, is to go to your Google account and remove your credit card information. That way you can't buy an app or do an in-app transaction without knowingly putting in a credit card number.
It's inconvenient, I agree, but it's a lot safer.
fixxxer2008 said:
this is why i do not buy apps.
Click to expand...
Click to collapse
Sorry, but why don't you buy apps? Because someone else's 6 year old child accidentally purchased some in-game items? I'm hoping you mean paid apps, because an Android device without apps would be pretty boring I would think. Although this same mistake can happen in a free app just as easily, if your not paying attention to what your doing, just blindly clicking on things, and accept charges two or more times. Still, not a very solid reason to stay away from apps I'm my eyes.
Sent from my Xoom using XDA App
Reading around the internet it sounds like you are going to have to contact Google about the situation as it seems that in app purchases go through them not the developers.
Lyondellic said:
I remember that Apple had similar issues and they ultimately placed a setting in iOS to toggle 'In App' purchases On/Off. I would do some research on what happened there and see if it helps in your case. You can dispute charges on a debit card, as I had to do that one time. The other party will be given something like 30 days to respond to your debit card company. If they do not respond, then the charges will be removed from your debit card.
On a different note, perhaps it would be a good idea to use a pre-paid credit card that can be topped-off for making purchases from the Market. I may look into this myself.
Click to expand...
Click to collapse
I switched awhile ago to a prepaid credit card. No fees unless paying bills online. And I can transfer from my primary acct to my prepaid acct without fees instantly.
Thanks for all replies and input guys I had it resolved through the bank, it is a loophole in the system that some crooks and people with the only intent to acquire other people's money unlawfully found and taking advantage of, anyway my fault in leaving my info on the device.
Sent from my ADR6400L using XDA Premium App
Ok so I have a 3D on my line which belongs to my sister. Well she works at the mall and some Indian guy that used to work for Sprint is telling her he hacks into her phone all the time and uses her internet and that if he wanted to he can access her photos too. So is this possible or is he just bs'in to spark coversations with her? I'm about ready to go over to her job and confront him. I find that sort of behavior creepy and intolerable! Any1 has any idea??
Sent from my SPH-D710 using XDA
I don't know if it's possible, but that is creepy and disgusting. If that happened to my family member, I would not put up with it.
Sent from my ICS 3VO with Tapatalk 2
You need to go to the mall and take care of business...
Sent from my PG86100 using Tapatalk
I'm starting to believe its possible. She just called me from her work phone to tell me she pulled out her battery bcuz it freaked her out and he asks what did she do bcuz he no longer has internet access. I might catch a case tonight I'm highly upset..
Sent from my SPH-D710 using XDA
idk man, you need to do some dental work.
I don't know if a "random" person could hack a phone. But:
1. Is the phone rooted? That would give a person more ability to do something bad.
2. There are "spy" software out there. But the guy would have had to have a few minutes alone with the phone.
3. Maybe install malware through an E-mail or text message.
But to use her phone for Internet access sounds pretty weak. Easier and better methods of doing that at a mall where public WIFI is all around.
Bottom line, if you are actually concerned, just have your sister do a factory restore, that wipes everything and then reinstall her apps one at a time validating all are suppose to be on her phone.
weidnerj said:
I don't know if a "random" person could hack a phone. But:
1. Is the phone rooted? That would give a person more ability to do something bad.
2. There are "spy" software out there. But the guy would have had to have a few minutes alone with the phone.
3. Maybe install malware through an E-mail or text message.
But to use her phone for Internet access sounds pretty weak. Easier and better methods of doing that at a mall where public WIFI is all around.
Bottom line, if you are actually concerned, just have your sister do a factory restore, that wipes everything and then reinstall her apps one at a time validating all are suppose to be on her phone.
Click to expand...
Click to collapse
1. No
2. I know about the spy software stuff. I don't know if the guy ever had access to the phone. She did say she bought a case from him b4 and i wouldn't put it past her to put it on a strangers hands in her times of frustration. She's always having problems and going to someone for help.
3. Probably
And yea I guess I'll tell her to do a hard reset. Thanks!
Sent from my SPH-D710 using XDA
RayTrue04 said:
And yea I guess I'll tell her to do a hard reset. Thanks!
Sent from my SPH-D710 using XDA
Click to expand...
Click to collapse
You should hard reset his face . Just kidding. Violence is not the answer. Can't we all just get along.
Sent from my ICS 3VO with Tapatalk 2
Yea f that. Reset her phone and then reset that guys face
Sent from my PG86100 using xda premium
Just check she hasn't got portable wifi Hotspot switched on on her phone.
I sometimes use that on my phone when I'm out to connect family members phones and laptops to the internet.
Sent from my HTC EVO 3D X515m using XDA
abdeviation said:
This thread is hilarious
Click to expand...
Click to collapse
this thread is exactly the kind Papa Smurf posted about...basic networking rules...the ONLY way he can intercept her wireless internet signal is if she is connected to the malls wifi... thing is i personally have programs that will allow me to spoof ANY gateway that i am connected to and collect cookies, not to mention use them. i have a program that if i connect to a server that she is connected to i can kill her internet signal... i have one also to where i can connect into her phone or computer.. bottom line... if its wireless and a public server...it becomes public info... so if she stays off the malls wifi and uses just her providers internet connection then she will be fine...unless he clones her phone which he would have to steal first .... now.. prompoting violence is childish ...its not what the forum is for...if anything reprt the guy to the police and give him a record that will ride with him...
RayTrue04 said:
I'm starting to believe its possible. She just called me from her work phone to tell me she pulled out her battery bcuz it freaked her out and he asks what did she do bcuz he no longer has internet access. I might catch a case tonight I'm highly upset..
Sent from my SPH-D710 using XDA
Click to expand...
Click to collapse
Ok try this and check if it works.....post back the results.
https://play.google.com/store/apps/details?id=com.gurkedev.wifiprotector
If you want it free, the developer posted a free version for XDA users here ----> http://forum.xda-developers.com/showthread.php?t=1350941
If that Indian guy (not me ) is using android phone or PC, he surely is using apps like FaceNiff, Cain & Abel, ANTI, ettercap, DroidSheep, NetCut etc....
So this app should help but it will not work to its full potential as your Sisters phone is not rooted.
Or you can tell her to disable internet or wifi on her phone.
P.S You said the guy used to work for Sprint, Is your Sis using a Sprint Phone?
Is her phone CIQ free?
wloftus had it down.
The only other thing I can think of is he has get password to a security app that can backup pictures and whatnot.
Bottom line is this sounds like a classic harassment case. Get him to text her about this for evidence, go to the police, he gets arrested and the girl is protected by a no contact order. Pretty simple.
wloftus said:
this thread is exactly the kind Papa Smurf posted about...basic networking rules...the ONLY way he can intercept her wireless internet signal is if she is connected to the malls wifi... thing is i personally have programs that will allow me to spoof ANY gateway that i am connected to and collect cookies, not to mention use them. i have a program that if i connect to a server that she is connected to i can kill her internet signal... i have one also to where i can connect into her phone or computer.. bottom line... if its wireless and a public server...it becomes public info... so if she stays off the malls wifi and uses just her providers internet connection then she will be fine...unless he clones her phone which he would have to steal first .... now.. prompoting violence is childish ...its not what the forum is for...if anything reprt the guy to the police and give him a record that will ride with him...
Click to expand...
Click to collapse
I've hope it's obvious that I was joking about the violence as I do think the police should get involved if this guy is harassing her. The implication from the op is that this guy is doing this from a distance so the wifi hot spot does not seem to be the way he is doing it. Since he worked for sprint, he could be using a back door of some sort.
Sent from my ICS 3VO with Tapatalk 2
RayTrue04 said:
1. No
2. I know about the spy software stuff. I don't know if the guy ever had access to the phone. She did say she bought a case from him b4 and i wouldn't put it past her to put it on a strangers hands in her times of frustration. She's always having problems and going to someone for help.
3. Probably
And yea I guess I'll tell her to do a hard reset. Thanks!
Sent from my SPH-D710 using XDA
Click to expand...
Click to collapse
its not possible - andvwhen he works for sprint, you should go to his boss.
when he touched her mobile phone, you can go to court (when you want to)
has she enebled usb-debugging/adb access? disable it.
check all installed user apps if there is dome suspicious with ****loaads of permissions (camera, file access, microphone, etc)
lol enough to kick this guy in the ass with your rights
mnomaanw said:
Ok try this and check if it works.....post back the results.
https://play.google.com/store/apps/details?id=com.gurkedev.wifiprotector
If you want it free, the developer posted a free version for XDA users here ----> http://forum.xda-developers.com/showthread.php?t=1350941
If that Indian guy (not me ) is using android phone or PC, he surely is using apps like FaceNiff, Cain & Abel, ANTI, ettercap, DroidSheep, NetCut etc....
So this app should help but it will not work to its full potential as your Sisters phone is not rooted.
Or you can tell her to disable internet or wifi on her phone.
P.S You said the guy used to work for Sprint, Is your Sis using a Sprint Phone?
Is her phone CIQ free?
Click to expand...
Click to collapse
She doesn't connect to public wifi shes on sprints network so i doubt that app would help. I just had her do a hard reset on it. Hopefully that helps idk.. And yes its a Sprint phone Evo 3D completely stock on the latest software htc released.
Sent from my SPH-D710 using XDA
e3d said:
its not possible - andvwhen he works for sprint, you should go to his boss.
when he touched her mobile phone, you can go to court (when you want to)
has she enebled usb-debugging/adb access? disable it.
check all installed user apps if there is dome suspicious with ****loaads of permissions (camera, file access, microphone, etc)
lol enough to kick this guy in the ass with your rights
Click to expand...
Click to collapse
He no longer works for them he used to.
Well if anything I'm just tryna get his whole name because the Sprint rep last night wanted to flag him and start a case. So far only know first name so I have to wait till I go again this week.
I doubt she would enable usb debugging she's not that kind of girl to know what that is. All she do is calls, text, fb, and some web browsing at the most..
Sent from my SPH-D710 using XDA
Do any of you know anything about software at all? there is only one way to get into the phone and that is through the bluetooth. Other than that, very unlikely someone IN A MALL COULD DO THAT! there are hundreds of phones. plus, one threat like that to start off is subject to be terminated from any position he is in. HE likely got fired from sprint because he acts like he can do things he has no idea about.
However, 99.9% chance there is NO WAY the stupid small penis indian man can get into her phone. but one fact is that his face needs punched more than a few times... just make sure no one rats you out. make sure there is no one that sees you smash his face in. If the Indian doesn't learn a lesson now he'll just keep playing this game with everyone he walks into. He needs to learn one way or another.
Oh, I'm being nice too. If we were in any other country. he'd just have a bullet through his head.
However, I shouldn't even have said anything about the bluetooth part... but everyone needs to understand.. this is a topic we shouldn't even talk about. the reason is that kids that have no lives will use this information to attempt to find ways to spy on their gf's and stuff because they are low life fools.
anyway, to end this off.. I do thank everyone in here for being valued members of this forum... Remember do things responsibly. Anyone caught in here violating any law or creeping on others should be banned without question and legally should be held responsible for their actions.
to finish it completely off. the indian guy is a creep. he was fired from sprint for the same bs he doing to her. report him and have him fired again. PS. there is nothing in my comment that is racist, wrong, bad, blahblahblah. I'm a perfect little angel.
runcool said:
Do any of you know anything about software at all? there is only one way to get into the phone and that is through the bluetooth. Other than that, very unlikely someone IN A MALL COULD DO THAT! there are hundreds of phones. plus, one threat like that to start off is subject to be terminated from any position he is in. HE likely got fired from sprint because he acts like he can do things he has no idea about.
However, 99.9% chance there is NO WAY the stupid small penis indian man can get into her phone. but one fact is that his face needs punched more than a few times... just make sure no one rats you out. make sure there is no one that sees you smash his face in. If the Indian doesn't learn a lesson now he'll just keep playing this game with everyone he walks into. He needs to learn one way or another.
Oh, I'm being nice too. If we were in any other country. he'd just have a bullet through his head.
However, I shouldn't even have said anything about the bluetooth part... but everyone needs to understand.. this is a topic we shouldn't even talk about. the reason is that kids that have no lives will use this information to attempt to find ways to spy on their gf's and stuff because they are low life fools.
anyway, to end this off.. I do thank everyone in here for being valued members of this forum... Remember do things responsibly. Anyone caught in here violating any law or creeping on others should be banned without question and legally should be held responsible for their actions.
to finish it completely off. the indian guy is a creep. he was fired from sprint for the same bs he doing to her. report him and have him fired again. PS. there is nothing in my comment that is racist, wrong, bad, blahblahblah. I'm a perfect little angel.
Click to expand...
Click to collapse
well, you can not only go into it via wifi. so my question: do you know anything? (exploits, etc)
if the mall has a open wlan, she should use secure sites only "https://blablabla.com" only... it is possible to hijack traffic, for example in malls "man in the middle method" (do not know why i know this.... )
another way to secure her phone is, to deactivate the installation of unsigned / non-market apps.
also, a password or sth other to unlock isnt a bad idea.
so, have fun - btw, you could ask that question for every android handset, op
e3d said:
well, you can not only go into it via wifi. so my question: do you know anything? (exploits, etc)
if the mall has a open wlan, she should use secure sites only "https://blablabla.com" only... it is possible to hijack traffic, for example in malls "man in the middle method" (do not know why i know this.... )
another way to secure her phone is, to deactivate the installation of unsigned / non-market apps.
also, a password or sth other to unlock isnt a bad idea.
so, have fun - btw, you could ask that question for every android handset, op
Click to expand...
Click to collapse
There are WiFi sniffing tools on android. There are WiFi spoofing tools on android.
Possibility is there, change Gmail password never hurts.
But seriously, no sharing WiFi with other people and logging into private bank/Facebook/ other sites where your logged in with 50 other people on open WiFi. That stuff can be picked up, username/passwords.
Intimidation is the best answer...big guy comes up "alright who's the yutz messing with MY sister!"
As a person who has had two phones stolen I can tell you one thing - there needs to be a password on the use of flashing. First I had a galaxy note, which has Samsung locate. But hardware reset saw to that. Second I had a CSL Spice, knowing about hardware reset, I set about finding an un resettable program. In comes avast (brilliant though it is).
Two criticisms, first is its method of retrieval. Sms. Yes, sms. The thief has thrown your sim card in a bush, but in order to remotely access your phone, avast smses your sim card. Classic. Try it, steal your own phone, or get a mate to, it's so tragic its funny. Go on, back up your apps, take out your sd card, and be your own thief. Second issue, obviously is flashing. Avast hides on the partition, but this is wiped and remade based upon your new OS. Bye bye avast.
So really there are two key solutions: password protection on the flashing access. Set by the user, changeable only by those the user gives it to (engineers/new owners). And the other is set a hardware code like IMEI on accessing not just a phone network, but also Google Play registration, and Samsung /other apps registration. That way the code can be flagged by the owner. Actually thirdly is an email address which appears upon failed flashing password attempts. To remind the thief that he can still take the brick of plastic and metal (and gps) back.
I'd like all new owners to be informed of what to do upon loosing their phone, codes to note down etc. As I feel this is not done enough. I'd love to start a push to get Samsung and other droid phones as well as Google Play to start this and maybe we can finally end phone theft.
Anyone think a petition is possible?
How were your phones stolen? I have never had one of the 40+ phones i or my immediate family have owned (knock on wood here as i probably just jinxed myself) stolen.
In my case it could be just locale, but i have worked in some pretty rough areas with high crime rates so i could just be lucky or plain diligent with what i do with my phone when not in use.
Not being disrespectful here, just seeking enlightenment on what behaviours/actions leads to them being stolen to see how it is different to my experience.
As to your proposal, not a bad idea. One thing i can think of is that like the locked bootloaders that were/are put on some phones, somebody will most likely find an exploit/hack to get around it. They almost always do. Could be talking out my arse on that as i am not knowledgeable with this but they always seem to find a way.
Sent from my SAMSUNG-SGH-I717 using xda premium
but this dexpends where you go and therefore stuff as such.....if i were to stay home alot im sure the 40+ phones ive had would hardly get stolen as well. saying this I've had to phones stolen as well and its not fun. i would sign
Sent from my SAMSUNG-SGH-I717 using xda premium
I do like the Imei idea. I've never had a phone stolen. I've worked in gyms, restaraunts, public schools, indoor reffing, etc
Sent from my SAMSUNG-SGH-I717 using xda premium
depends how tech savy the thief is.. if they perform an Odin flash then only thing preventing use of the phone on ATT is IMEI blacklisting. Couple of things come to mind that might help. If they pick up the phone and try to use it as-is without switching SIMS or factory reset Plan-B can help. If either of these is done then only thing that will help would be something such as a preconfigured Plan-B app in the CWM image to "phone home" after SIM change and factory reset.
Security would lay back and laugh at your problem.
Just being aware of your environment and using sensible precautions will go a long way towards preventing theft. Treat your phone like it's worth hundreds of dollars and you should be OK. For example, If you were at a social gathering where there were many people you didn't know would you leave six one hundred dollar bills sitting on a table in a secluded area while you went to the bathroom? Probably not, yet I commonly see people doing just that with their $600 phones at parties or while at the park with friends. They rely on strangers honesty and their friends vigilance to protect their property. The trouble is, cell phones have become so common place the friends would be as likely wonder why someone is picking up their beer as to why they are picking up your phone. Honest folks expect others to be just as honest as they are and why not? They are normal after all and aren't all normal people honest just like them? So, if someone sees another picking up a random ubiquitous phone and putting it to their ear while they walk out the door they will surely not think twice about it. The phone is obviously that person's, else why would they pick it up? Thief's who steal in public rely on people not noticing "normal" behavior. Just treat your phone like it's a hundred dollar bill and you should suffer no more losses due to theft, unless you are mugged of course.
Just get Cerberus. Problem solved.
TheMrRoxtar said:
but this dexpends where you go and therefore stuff as such.....if i were to stay home alot im sure the 40+ phones ive had would hardly get stolen as well. saying this I've had to phones stolen as well and its not fun. i would sign
Sent from my SAMSUNG-SGH-I717 using xda premium
Click to expand...
Click to collapse
I wish i could stay at home a lot. Not the case. Do lot of traveling and in a lot of different locales/ environments. Just don't put my property where there is an opportunity for some one else to make it theirs. That is why i asked what the circumstances were behind theirs being stolen. If it was stolen due to lack of diligence on their pArt or were they physically assaulted.
Sorry about your losses and i am sure it is not a pleasant experience. I know i would not be happy.
I personally think the idea is sound.
Sent from my SAMSUNG-SGH-I717 using xda premium
jpeg42 said:
Just get Cerberus. Problem solved.
Click to expand...
Click to collapse
what he said...
and, be more aware of where your phone is at ALL TIMES...
one time is understandable; two times is carelessness..
I love how western these answers are. Lol, left it in a cafe. My galaxy note was ripped out of my hands my a thief on a motorcycle in Malaysia while I was checking gps map, and my CSL Spice was pushed out of my pocket as I was being dry humped on a moped in Bali. That last one is classed as an accidental loss, which turned into a theft as the lucky buggers driving behind me probably found it. How is besides the point really. "you were stabbed? Oh, we're you in stab proof armour? Carrying a gun? Oh, silly girl!"
Cerberus is bandied around like avast anti theft, if it's flash proof, then I'll bite (as it were), but I'd like to see that claim.
Chiefly what we could do with is a hardware code that content providers request on account activation. Something a phone can't change. It needs a built in theft message/action not one remotely sent. And it needs a flash password.
Actually a readable hardware code would suffice if all content providers signed up.
Who would you speak to to suggest such a thing?
Already in chats with Samsung and Google Play customer services, but they aren't really the development team sadly.
In my city there are at least 4,000 phones for sale on Craigslist daily. Can you imagine how many customer service people at&t would need to manage the IEMI switching? It would be like the frakkin DMV for transfer of ownership. And managing blacklisted IEMI? Fuggetaboutit. I asked one about that idea and their response was "stolen phones are new customers".
the only way to prevent stuff from being stolen, is not to own it in the first place...IMHO
That being said, we all take the risk together when we pull out these fancy devices for the world to see. and lets face it, we all like to flaunt our wares as a status symbol on occasion.
the note is a big fancy eye catcher, and a prime target for crooks to swipe from unsuspecting folks not paying attention. ( sorry about the dry humping moped issue).
And since the odds are, your device will get stolen again, you should change your habits of usage if possible.
I agree that security of the device after theft is difficult, and I would support a petition to enhance the security measures, but I'm not gonna hold my breath on any carrier taking the task on. Like ranger said, a stolen phone is a new customer.....g
It wouldn't require any work, nor switching, just adding a field for IMEI. This is automatic for carriers right, but it needs to be the same for Google play and other app sites.
When a user looses his phone, he logs the IMEI as stolen, and the Google Team put that code on a watch list. Any Form designer could handle that. IMEI or serial number or whatever is hardware based.
Simple idea no?
Thats why I bought this app called gotya.
https://play.google.com/store/apps/details?id=com.myboyfriendisageek.gotya
-Once you go NOTE, you'd say 4 inches a Joke
NOTE user:
"take a deep breath, make sure to get a good look at it, relax and slowly take it in, the size is overwhelming at first but you will have a happy ending afterwards".
Woman:
:O
Veruvir said:
It wouldn't require any work, nor switching, just adding a field for IMEI. This is automatic for carriers right, but it needs to be the same for Google play and other app sites.
When a user looses his phone, he logs the IMEI as stolen, and the Google Team put that code on a watch list. Any Form designer could handle that. IMEI or serial number or whatever is hardware based.
Simple idea no?
Click to expand...
Click to collapse
And when the vindictive girlfriends and exwifes report out of spite?
rangercaptain said:
And when the vindictive girlfriends and exwifes report out of spite?
Click to expand...
Click to collapse
you'd think they'd just smash it on the floor or drop it in the toilet...
You probably live in a ****ty neighbourhood no offence.
Sent from my SGH-I717M using xda premium
Sarius24 said:
You probably live in a ****ty neighbourhood no offence.
Sent from my SGH-I717M using xda premium
Click to expand...
Click to collapse
Yeah, there's no criminals in "nice" neighborhoods.
I use Tasker for:
When I switch locations, a front/back pic + GPS, sent to google drive.
When not at a location that has is known, it sends the same info every time the screen comes on.
Tasker locks certain apps in unknown locations, so the main screen stays unlocked. I figure the longer they can play with the phone on the more likely I am to get it back.
Sms of course to trigger by minute pics and GPS.
rangercaptain said:
Yeah, there's no criminals in "nice" neighborhoods.
Click to expand...
Click to collapse
sure there is; thats where they go to steal stuff!
Xiaomi Security issues. Xiaomi firmware has multiple backdoors So I've basically got myself in this sh*t because lack of care.. Until it pop'd and hit the highlights.
And now straight to the point. It doesn't f*ckin matters if you had a fw or not. As the backdoors are embedded in ROOT system processes.
And those where obviously white-listed as i didn't think of a nasty Chinese guy sitting in it calling back home. My friend who got the same phone found the article as i was having my vacation for a bit, so when i found out i did a bit a research of course on my device. After finding all this i e-mail'd him it and he posted it on the Xiaomi European forums. Guess what happened, it got deleted. So they know damn good what they're doing.
Quote:
When you purchase Xiaomi products or services, we’ll collect relevant personal information, including but not limited: delivery information, bank account, credit card information, bill address, credit check and other financial information, contact or communication records.
Quote:
Originally Posted by OP
Music app(?) connects to:
202.173.255.152
2012-12-01 lrc.aspxp.net
2012-12-01 lrc.feiyes.net
2012-12-01 w.w.w.616hk.com
2012-12-01 w.w.w.hk238.com
2012-12-01 w.w.w.lrc123.com
123.125.114.145
2013-11-27 tinglog.baidu.com
1/53 2014-07-02 12:51:01 hxxp://tinglog.baidu.com
Latest detected files that communicate with this IP address
Latest files submitted to VirusTotal that are detected by one or more antivirus solutions and communicate with the IP address provided when executed in a sandboxed environment.
3/43 2014-07-08 07:39:24 facb146de47229b56bdc4481ce22fb5ec9e702dfbd7e70e82e 4e4316ac1e7cbd
47/51 2014-04-28 09:25:27 091457f59fc87f5ca230c6d955407303fb5f5ba364508401a7 564fb32d9a24fa
24/47 2014-01-08 08:19:43 3cf0a98570e522af692cb5f19b43085c706aa7d2f63d05469b 6ac8db5c20cdcd
21/48 2013-12-02 15:15:45 7e34cb88fc82b69322f7935157922cdb17cb6c69d868a88946 8e297257ee9072
19/48 2013-12-01 20:02:32 bce4bd44d3373b2670a7d68e058c7ce0fa510912275d452d36 3777f640aa4c70
Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset.
1/53 2014-07-02 12:47:57 hxxp://dev.baidu.com/
Android-system ANT HAL Service(Framework_ext.apk/jar) connect to:
42.62.48.207
VirusTotal's passive DNS only stores address records. The following domains resolved to the given IP address.
2014-04-28 app.migc.wali.com
2014-07-12 app.migc.xiaomi.com
2014-05-30 gamevip.wali.com
2014-05-30 log.wlimg.cn
2014-04-21 mitunes.game.xiaomi.com
2014-04-30 oss.wali.com
2014-05-17 p.tongji.wali.com
2014-07-13 policy.app.xiaomi.com
Latest detected URLs
Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset.
1/58 2014-08-13 07:10:49 hxxp://policy.app.xiaomi.com/cms/interface/v1/checkpackages.php
1/58 2014-08-10 00:46:35 hxxp://policy.app.xiaomi.com/
1/53 2014-07-02 12:49:59 hxxtp://oss.wali.com
Messages(Mms.apk) connect to (it literary calls back home)
54.179.146.166
2014-08-12 api.account.xiaomi.com
2014-07-26 w.w.w.asani.com.pk
What it does? It sends phone numbers you call to, send messages to, add etc to a Resin/4.0.13 java application running on a nginx webserver to collect data. Checkpackages, embedded system process/app posts all installed apps to a Tengine a/k/a nginx webserver cms.
URL: hxxtp://api.account.xiaomi.com:81/pass/v3
Server: sgpaws-ac-web01.mias
Software: Tengine/2.0.1 | Resin/4.0.13
URL: hxxp://policy.app.xiaomi.com:8080/cms/interface/v1/
Server: lg-g-com-ngx02.bj
Software: Tengine | Resin
Bottom line
They don't give a single damn about your data.. All sent in plain text.
For messages APK (Mms.apk)
I don't believe it needs those permissions for normal functionalities, this is only for the extra feature let's call it bug.
android.permission.SEND_SMS_NO_CONFIRMATION
android.permission.GET_ACCOUNTS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.INTERNET
miui.permission.SHELL
android.permission.GET_TASKS
android.permission.CAMERA
Some code ... i also attached java classes and smali dalvik jvm bytecode..
Code:
RELATED
http://apkscan.nviso.be/report/show/...0b623da712918f
http://lists.clean-mx.com/pipermail/...14/072661.html
OTHER SOURCES
http://www.newmobilelife.com/2014/08...-china-server/
http://www.htcmania.com/showthread.php?p=14730859
Main post and more info. All credits go to the OP
http://forum.xda-developers.com/gene...oords-t2847069
zelendel said:
Xiaomi Security issues. [/URL]
Click to expand...
Click to collapse
dude that is sooo old cheese already. you really seem to have a personal problem with xiaomi?
go read a bit:
http://www.cnet.com/news/xiaomi-makes-cloud-messaging-opt-in-amid-privacy-concerns/
http://www.androidcentral.com/hugo-barra-responds-xiaomi-privacy-concerns
Xiaomi has added encryption to the communication in an updated firmware, and the cloud service is now opt-in.
while i will say that unencrypted transfer is uncool, most of the stuff transferred (or actually all) has to do with their cloud service.
Apple & Google are doing the same stuff, i bet you Samsung does also.
so what is the big deal here? that it was not encrypted? or that it sends something in the first place?
linr76 said:
dude that is sooo old cheese already. you really seem to have a personal problem with xiaomi?
go read a bit:
http://www.cnet.com/news/xiaomi-makes-cloud-messaging-opt-in-amid-privacy-concerns/
http://www.androidcentral.com/hugo-barra-responds-xiaomi-privacy-concerns
Xiaomi has added encryption to the communication in an updated firmware, and the cloud service is now opt-in.
while i will say that unencrypted transfer is uncool, most of the stuff transferred (or actually all) has to do with their cloud service.
Apple & Google are doing the same stuff, i bet you Samsung does also.
so what is the big deal here? that it was not encrypted? or that it sends something in the first place?
Click to expand...
Click to collapse
First off do I have issues with them? Sure most here do but that is a whole other matter.
This was brought to attention by another user. Had you read the post you would have known that.
The fact that they record your bank account info is cause for further investigation.
I just posted it here for users to know and look into. In the end it doesn't matter to me as Ill never use their device or OS.
Ok I get it. No discussion will come of this. Apple is doing the same and that's all right since they are 'mericans. Totally cool.
Sent from my MI 3W using Tapatalk
linr76 said:
Ok I get it. No discussion will come of this. Apple is doing the same and that's all right since they are 'mericans. Totally cool.
Sent from my MI 3W using Tapatalk
Click to expand...
Click to collapse
No it's not. If we were and iOS forum. Then we would be calling them out as well.
Same issue, blocked me in MiUi forum!
zelendel said:
No it's not. If we were and iOS forum. Then we would be calling them out as well.
Click to expand...
Click to collapse
I had noticed the same security issues and data leaks by Xiaomi device (note is not just MiUi but whole system) and showed them proofs, even wrote to Hugo but just after seeing my proofs they blocked me in their forum. I do use MI3 but miss the resources they have in forum. Anyway, I am just using the device without DATA or firewall app if need DATA. Hope they had played fairly with users.
Problem is deeper than this. The users instantly start screaming any one who says this mobile has security leaks (e.g me) ad asks for proofs, once I post the proofs they dont accept it and raise as whole but they get their own way to download resources from MiUi forum. I am alone but I wont surrender.
For sure they'll upload ur info. For purpose.
pkb_always4u said:
I had noticed the same security issues and data leaks by Xiaomi device (note is not just MiUi but whole system) and showed them proofs, even wrote to Hugo but just after seeing my proofs they blocked me in their forum. I do use MI3 but miss the resources they have in forum. Anyway, I am just using the device without DATA or firewall app if need DATA. Hope they had played fairly with users.
Problem is deeper than this. The users instantly start screaming any one who says this mobile has security leaks (e.g me) ad asks for proofs, once I post the proofs they dont accept it and raise as whole but they get their own way to download resources from MiUi forum. I am alone but I wont surrender.
Click to expand...
Click to collapse
I don't think the phone is released in Europe yet? So if you have problem with the software,flash with your own OS build or use another phone. The government tried to push everyone using true identity in case there is any cyber crime happens. Plus, did CIA,NSA or any government agency tell you when they search through your personal data? I doubt.
Sent from my HTC One using XDA Free mobile app
xiaohan said:
The government tried to push everyone using true identity in case there is any cyber crime happens.
Sent from my HTC One using XDA Free mobile app
Click to expand...
Click to collapse
And you believe that?
zelendel said:
And you believe that?
Click to expand...
Click to collapse
Hey,who case,I don't have porn on my phone ,nor any illegal stuff stored. If u don't have something don't want to be touched,keep it in physical format and never get connected.
Sent from my HTC One using XDA Free mobile app
xiaohan said:
I don't think the phone is released in Europe yet? So if you have problem with the software,flash with your own OS build or use another phone. The government tried to push everyone using true identity in case there is any cyber crime happens. Plus, did CIA,NSA or any government agency tell you when they search through your personal data? I doubt.
Sent from my HTC One using XDA Free mobile app
Click to expand...
Click to collapse
What? Brother I am from India. To clear my situation more My banker sends me a highly secured one time password through message each time I try to access their online services. Now this MI3 is leaking (have proofs) and redirecting SMS (with one access notification which is not clear enough) its a security breach and case of international cyber crime. But in India, politicians has nothing to do with such issues, officers have "more important" things to do and Banker said me to change my mobile. So such is the case when you are in not developed country. Here even if some gets killed then police comes after all has been settled down let alone a security breach. It just and just a very "minor" or not an issue at all.
pkb_always4u said:
What? Brother I am from India. To clear my situation more My banker sends me a highly secured one time password through message each time I try to access their online services. Now this MI3 is leaking (have proofs) and redirecting SMS (with one access notification which is not clear enough) its a security breach and case of international cyber crime. But in India, politicians has nothing to do with such issues, officers have "more important" things to do and Banker said me to change my mobile. So such is the case when you are in not developed country. Here even if some gets killed then police comes after all has been settled down let alone a security breach. It just and just a very "minor" or not an issue at all.
Click to expand...
Click to collapse
You know once you use a public service ,there is no privacy right? People can spy on you using your cellphone,not even a smart one and listend to whatever youare talking about next to your phone even it's off as long as the battery is not taken off. What does this mean to your bank's highly secured one off password for your online banking?
Just use another one if you are not happen with it. E.g. iPhone which slightly record your real time geo information since iOS7 update without telling the users and even theIR staff don't know anything about it.
Sent from my MI 3C using XDA Free mobile app
xiaohan said:
You know once you use a public service ,there is no privacy right? People can spy on you using your cellphone,not even a smart one and listend to whatever youare talking about next to your phone even it's off as long as the battery is not taken off. What does this mean to your bank's highly secured one off password for your online banking?
Just use another one if you are not happen with it. E.g. iPhone which slightly record your real time geo information since iOS7 update without telling the users and even theIR staff don't know anything about it.
Sent from my MI 3C using XDA Free mobile app
Click to expand...
Click to collapse
Have your heard of "boiling water and frog's" story? I already said we dont raise our voice against such crimes adjust ourselves saying "ohh very minor", "doesnt affect me much" or "others do it too". Just show me that Apple's product steals your SMS and I will agree with you, if you cant then either raise your voice with me or just get boiled like a frog in adjusting.
This is a technology forum, politics problem is not interested here I guess. Surely, sending sensitive data back to the server initially was suspicious,but the security issue has been patched,if you have a lot of security concern, don't use a smart phone.
Sent from my HTC One using XDA Free mobile app
I use a Mi3 in India
Well if you're online chunks of your data is always going places you don't know. AFAIK, India too has a PRISM like setup and your calls, call logs & SMS are stored. No idea how much data is shared by companies. Seems like people believe that only in US & Europe you're data is used without your knowledge.
The US based companies came public on data collection thanks to Mr.Snowden only.
Last week a US court ordered Microsoft to disclose data in their servers in Europe.
If you're concerned about privacy don't use smartphones. Or don't use a phone at all. Safest way keep your privates stuff private. Don't save those nude pics on phone or cloud or anything connected. Use long complex passwords, encrypt.
Sent from my MI 3W using XDA Free mobile app
ramanvemman said:
I use a Mi3 in India
Well if you're online chunks of your data is always going places you don't know. AFAIK, India too has a PRISM like setup and your calls, call logs & SMS are stored. No idea how much data is shared by companies. Seems like people believe that only in US & Europe you're data is used without your knowledge.
The US based companies came public on data collection thanks to Mr.Snowden only.
Last week a US court ordered Microsoft to disclose data in their servers in Europe.
If you're concerned about privacy don't use smartphones. Or don't use a phone at all. Safest way keep your privates stuff private. Don't save those nude pics on phone or cloud or anything connected. Use long complex passwords, encrypt.
Sent from my MI 3W using XDA Free mobile app
Click to expand...
Click to collapse
It is known all countries do this. This issue is what these country the info goes to.
Hey,if you have problem, don't use it. Not posting any xiaomi product forums, I guess you don't own all the models you posted in the forum to.
I believe people come to here are not idiot. You mentioned the OS has issue you have concerns is enough, people make their own judgement and decisions.
Sent from my HTC One using XDA Free mobile app
Been a national news for us android lovers here in Indonesia. Luckily enough, i never bought their products (quite popular here). OP, you sounds like you're really against Xiaomi, though. You ever been in something with them?
Xiaomi is an arrogant company. Until now they have not released the kernel for mi3 despite of Barra's commitment. All their forum threads so stupid like "give ideas and win bunny" "give suggestions and win a fcking phone". MIUI will never ever ever get stable. It follows iOS design principles. When I gave a negative feedback, I was banned from miui forum. Freakingly selfish mindset stupid copycat company.
Sent from my MI 3W using XDA Free mobile app
jothiprasad1984 said:
Xiaomi is an arrogant company. Until now they have not released the kernel for mi3 despite of Barra's commitment. All their forum threads so stupid like "give ideas and win bunny" "give suggestions and win a fcking phone". MIUI will never ever ever get stable. It follows iOS design principles. When I gave a negative feedback, I was banned from miui forum. Freakingly selfish mindset stupid copycat company.
Sent from my MI 3W using XDA Free mobile app
Click to expand...
Click to collapse
Kernel Source has been realeased today
https://github.com/mi3-dev/android_device_xiaomi_cancro
https://github.com/mi3-dev/android_device_xiaomi_msm8974-common
https://github.com/mi3-dev/proprietary_vendor_xiaomi
Hi guys,
I was robbed today, and I have several information, hidden, but inside the phone memory.
There are ways to get that information? Or the information is loose when someone will try to install a new android image?
Thank you!!!
crazypablo said:
Hi guys,
I was robbed today, and I have several information, hidden, but inside the phone memory.
There are ways to get that information? Or the information is loose when someone will try to install a new android image?
Thank you!!!
Click to expand...
Click to collapse
Sorry to hear that buddy I feel your pain, I've been robbed before. But now days I carry a glock 45. (CCW). Next robber will have a rough day ha.
Anyhow back to your question. Sadly no Unless you cloud backup files. Es file explorer does a great job at that. Yeah the douche probably will factory reset it and all files gone.
Cloud backup your next phone. Install Cerberus and if your rooted put that as system app. Encrypt your phone. A lot of times robber will turn off phone. Well when they power back up the encryption prompt kicks in.
They will have to factory reset, but won't have access to your files at least. Obviously report it stolen to your carrier. Also buy a handgun.
Sent from my LGE LG-H830 using XDA Labs
Nick216ohio said:
Sorry to hear that buddy I feel your pain, I've been robbed before. But now days I carry a glock 45. (CCW). Next robber will have a rough day ha.
Anyhow back to your question. Sadly no Unless you cloud backup files. Es file explorer does a great job at that. Yeah the douche probably will factory reset it and all files gone.
Cloud backup your next phone. Install Cerberus and if your rooted put that as system app. Encrypt your phone. A lot of times robber will turn off phone. Well when they power back up the encryption prompt kicks in.
They will have to factory reset, but won't have access to your files at least. Obviously report it stolen to your carrier. Also buy a handgun.
Sent from my LGE LG-H830 using XDA Labs
Click to expand...
Click to collapse
Thank you very much for your answer Nick, yeah, is just a device but, you undestand me...
I have some of my information, but I'm worried about specific files that keep inside. I use "Content Lock" feature for G5 but I didn't encrypted the phone before, do you know if this information can be accessed by the one who stole the phone? Using Drfone or something like that. Also I remember that that when I reboot the phone I have 30 tries to unklock it...
:laugh:, I thought about the gun
crazypablo said:
Thank you very much for your answer Nick, yeah, is just a device but, you undestand me...
I have some of my information, but I'm worried about specific files that keep inside. I use "Content Lock" feature for G5 but I didn't encrypted the phone before, do you know if this information can be accessed by the one who stole the phone? Using Drfone or something like that. Also I remember that that when I reboot the phone I have 30 tries to unklock it...
:laugh:, I thought about the gun
Click to expand...
Click to collapse
It's a device that cost a lot of money lol. Screw that get a gun bro. Next douche that trys to rob me with a gun, will be 6 feet under.
I don't know much about "Content Lock" But search google to see if its encrypted. If he root it or you had it rooted. They can scan the phone for Files, Pics, etc. And recover some stuff. With recovery apps. I doubt he will.
Chances our they will take it to some shady cell phone store or online and sell it. What sucks is when you report it stolen to carriers. The device gets black listed aka can't use it. But shady cell shops can bypass that.
Most these low life robbers only care bout getting cash out of it. He probably doesn't care bout your personal stuff. Next phone just do all those steps I listed before and get a gun. Luckily your okay
P.S. Wouldn't it be hilarious if it was a note 7 and robber holding it. Yall know the rest lmao
Sent from my LGE LG-H830 using XDA Labs
Nick216ohio said:
It's a device that cost a lot of money lol. Screw that get a gun bro. Next douche that trys to rob me with a gun, will be 6 feet under.
I don't know much about "Content Lock" But search google to see if its encrypted. If he root it or you had it rooted. They can scan the phone for Files, Pics, etc. And recover some stuff. With recovery apps. I doubt he will.
Chances our they will take it to some shady cell phone store or online and sell it. What sucks is when you report it stolen to carriers. The device gets black listed aka can't use it. But shady cell shops can bypass that.
Most these low life robbers only care bout getting cash out of it. He probably doesn't care bout your personal stuff. Next phone just do all those steps I listed before and get a gun. Luckily your okay
P.S. Wouldn't it be hilarious if it was a note 7 and robber holding it. Yall know the rest lmao
Sent from my LGE LG-H830 using XDA Labs
Click to expand...
Click to collapse
Yeah, it cost... in my country is not allowed have a gun on the street so is not a solution at all :-/ and that histories doesn't have a good end, I thinking in contract an ensurement lol
Well, I contacted to LG support and they told me that "Content Lock" information is encrypted, so even if you are superuser you need the password to unlocked it, so the information is safe
Also they toldme that a hard reset will result in lost of data, but the thief can try to flash it and recover the info, but in my opinion it's a lot of work. Probably they just reset it.
Yeah, I haven't contract a carrier, I bought it factory unlocked. My mistake was doesn't take note of the IMEI number. Next time, defenitely all the steps...
RES: Yeah totally :laugh:, and you know what will be even better? Explosions remotely, no one will pick someone else cellphone's
crazypablo said:
Yeah, it cost... in my country is not allowed have a gun on the street so is not a solution at all :-/ and that histories doesn't have a good end, I thinking in contract an ensurement lol
Well, I contacted to LG support and they told me that "Content Lock" information is encrypted, so even if you are superuser you need the password to unlocked it, so the information is safe
Also they toldme that a hard reset will result in lost of data, but the thief can try to flash it and recover the info, but in my opinion it's a lot of work. Probably they just reset it.
Yeah, I haven't contract a carrier, I bought it factory unlocked. My mistake was doesn't take note of the IMEI number. Next time, defenitely all the steps...
RES: Yeah totally :laugh:, and you know what will be even better? Explosions remotely, no one will pick someone else cellphone's
Click to expand...
Click to collapse
Oh that sucks, surely knifes are allowed? That's great news! Yeah I doubt they will go through all that. Do you still have the original box? Or online receipt? Because those usually have IMEI number on it.
That would be awesome and I would be all for it. Karma will bite him in the ass soon.
Sent from my LGE LG-H830 using XDA Labs
Nick216ohio said:
Oh that sucks, surely knifes are allowed? That's great news! Yeah I doubt they will go through all that. Do you still have the original box? Or online receipt? Because those usually have IMEI number on it.
That would be awesome and I would be all for it. Karma will bite him in the ass soon.
Sent from my LGE LG-H830 using XDA Labs
Click to expand...
Click to collapse
Lol knifes neither, but I think I can carry a fork.
Well someone bought it for me in US so box is lost and I asked to the e-bay seller and does't have the info, so... But 50% is my fault for not keep that info with me.
Thank you, I hope karma do it for me