Even though the battle between iOS and Android smartphones has been fought for years here in the ‘West,' in China, that war was lost long ago. With over 90 per cent of the country's smartphones running Android, you would think it's clear who the victor was, but in-fact it isn't Google. That's because most smartphones there run non-certified versions of the OS, which means they miss out on important safety and security checks. With that in mind, mobile data security firm Bluebox has released a report that suggests Chinese manufacturer Xiamoi's smartphones contain some incredibly risky software.
While you might be asking why should you care about a Chinese smartphone manufacturer, the problem is that companies like Xiamoi are making in-roads into other markets and it may not be long before we start to see its smartphones available on British shores. Their reduced cost versus traditional manufacturers may draw interest from consumers, but the potential problems that they might bring with them are worrying.
The Mi4 looks pretty typical, but according to some it's very unsafe
In Bluebox's report, it found six separate malware infections on a brand new Xiamoi Mi4 LTE, several of which were disguised as legitimate Google applications. On top of that, the device was found to be vulnerable to a number of security issues that have since been patched out by Google on legitimate Android devices.
Other highlighted problems include the fact that the phone comes rooted at default and allows USB debugging enabled without a prompt. There were also a lot of unofficial applications listed on the Mi marketplace – since unofficial Android builds can't access the Play Store – so there is a lot of potential for uneducated users to download even more nefarious software to their mobile device.
One big warning given by the report's writers, is that with employers becoming more comfortable with the concept of workers bringing their own devices into the workplace (BYOD), there is the potential for huge security concerns if these sorts of unapproved mobile operating systems begin showing up on enterprise networks.
KitGuru Says: Would any of you guys consider buying a smartphone that didn't have a Google Android stamp of approval?
There are continuous typos of “Xiamoi” when, in fact, the company’s name is “Xiaomi.” Just a heads up since this could be immediately misleading to the people who own Xiaomi phones that might find the article relevant What tipped me off was the naming scheme applied since mi4, highlighting the “mi” is Xiaomi’s legally copyrighted naming scheme for it’s product line of Low Price-Very High Performance, in general and on paper, smart phones.
At the margin they’re selling, I’m not too surprised that they’ve skimped on the latest official android and stuck with their updated re-skins based on a specific version of android. I don’t think the excess cost of having to work on another version of android to re-skin would be in-line with their super-high-value product design and pricing concepts. I’m not sure if they even “update” their skinned OS’s, I don’t own a Xiaomi so this is merely speculation based on my knowledge of their operations management oriented strategy, at all given that it doesn’t really seem to matter to the “general” end user because he/she won’t know enough of the possible security issues and their implications to be able to fully act upon such information in either case. Not that a standard person who bought the phone for “budget reasons” would replace it anyway because that would defeat the purpose of buying a “good,” in many respects Xiaomi phones are pretty good, cheap phone.
I suppose this simply serves as a basis for caution for future buyers, but, in many cases, price and performance together trump a lot of other concerns regarding phones so I wouldn’t hold a candle to the efficacy of this information in possibly lowering Xiaomi’s sales figures in any significant manner, not that this is point of the article. It’s expansion efforts have really paid off in the past few years, and it’s found many viable markets that have openly snapped up it’s products from those crazy fire[?] (I forget the term they use) sales.