The National Communications Commission (NCC) is planning to establish a certification system for mobile phone security following reports that Chinese smartphone vendor Xiaomi automatically sends personal information to its servers in Bejing without first securing the consent of users.
A story published in a blog post of Finnish security company F-Secure Corp indicated that Xiaomi smatphones’ built-in text-messaging application, MIUI, can send users’ information to the company’s servers in Beijing without their approval.
Because of the loophole, the report said that the Chinese vendor can access users’ mobile phone number, the international mobile equipment identity (IMEI) code as well as the SIM card number.
The international mobile subscriber identity code would be exposed too if the user signs on to Xiaomi’s cloud service, the report said.
Similar to Apple Inc’s iMessage service, MIUI allows users to send text messages through the Internet rather than through telecoms’ networks.
The story was subsequently picked up by Taiwanese media outlets, with Xiaomi users in Taiwan reportedly topping 400,000. The Beijing-based smartphone vendor first denied the reports, but later apologized for the unauthorized data collection.
It added that the messaging system would only be activated on an “opt-in” basis and personal information would be encrypted and would not be stored on its servers.
The commission said it told the Chinese company to inspect all types of phones — not only the two mentioned in the F-Secure blog — that it sells in Taiwan and determine if they have the same issue.
“We have notified them that they should provide a written explanation of how they plan to address the issue,” said Lo Chin-hsien (羅金賢), director of the commission’s Resources and Technologies Department. “We will ask them to come in and answer questions if necessary.”
The commission is to meet with other mobile phone manufacturers soon to discuss how they address information security issues, Lo said.
He added that the Executive Yuan has determined that the applications built into mobile phones will be tested by the commission, while applications downloaded via mobile phones will be supervised by the Industrial Development Bureau.
While the commission has a certification system for mobile phone interfaces, batteries and other specifications, it does not have one yet for information security.
It is aiming to establish an information security mechanism by the end of next year, he said.
“Currently, there is no country in the world that demands that mobile phone manufacturers have national certifications for information security. We can only encourage mobile phone manufacturers to take such certification when it becomes available,” he said.
Lo said the mechanism would not only target mobile phones produced in China, but it would apply to other manufacturers as well.
WANG RELEASED: A police investigation showed that an organized crime group allegedly taught their clients how to pretend to be sick during medical exams Actor Darren Wang (王大陸) and 11 others were released on bail yesterday, after being questioned for allegedly dodging compulsory military service or forging documents to help others avoid serving. Wang, 33, was catapulted into stardom for his role in the coming-of-age film Our Times (我的少女時代). Lately, he has been focusing on developing his entertainment career in China. The New Taipei District Prosecutors’ Office last month began investigating an organized crime group that is allegedly helping men dodge compulsory military service using falsified documents. Police in New Taipei City Yonghe Precinct at the end of last month arrested the main suspect,
A cat named Mikan (蜜柑) has brought in revenue of more than NT$10 million (US$305,390) for the Kaohsiung MRT last year. Mikan, born on April 4, 2020, was a stray cat before being adopted by personnel of Kaohsiung MRT’s Ciaotou Sugar Refinery Station. Mikan was named after a Japanese term for mandarin orange due to his color and because he looks like an orange when curled up. He was named “station master” of Ciaotou Sugar Refinery Station in September 2020, and has since become famous. With Kaohsiung MRT’s branding, along with the release of a set of cultural and creative products, station master Mikan
Eleven people, including actor Darren Wang (王大陸), were taken into custody today for questioning regarding the evasion of compulsory military service and document forgery, the New Taipei District Prosecutors’ Office said. Eight of the people, including Wang, are suspected of evading military service, while three are suspected of forging medical documents to assist them, the report said. They are all being questioned by police and would later be transferred to the prosecutors’ office for further investigation. Three men surnamed Lee (李), Chang (張) and Lin (林) are suspected of improperly assisting conscripts in changing their military classification from “stand-by
LITTORAL REGIMENTS: The US Marine Corps is transitioning to an ‘island hopping’ strategy to counterattack Beijing’s area denial strategy The US Marine Corps (USMC) has introduced new anti-drone systems to bolster air defense in the Pacific island chain amid growing Chinese military influence in the region, The Telegraph reported on Sunday. The new Marine Air Defense Integrated System (MADIS) Mk 1 is being developed to counter “the growing menace of unmanned aerial systems,” it cited the Marine Corps as saying. China has constructed a powerful defense mechanism in the Pacific Ocean west of the first island chain by deploying weapons such as rockets, submarines and anti-ship missiles — which is part of its anti-access/area denial (A2/AD) strategy against adversaries — the
RSS