What evidence is there that iPhones have Carrier IQ? The articles out there seem to be about Android.
I would at least like to hold out hope that Apple's approach of not letting carriers screw up the iPhone with a bunch of third-party crap would extend to this.
You really, really need to cite a source about the Apple thing. This blog article is independently verifiable: people went and observed the behavior of their Android phones. Please point to someone doing the same with an iOS device.
Edit: Closest thing I can find to an answer, is what Carrier IQ is hiring for [1]. They're not hiring for serious iOS experience at the moment - instead, what they put in boldface for the software engineer position amounts to deep knowledge of Android internals. That is not conclusive, but it's evidence about what they do.
Ah, and just as I read this, I find that cyanogenmod for the galaxy s has recently become stable. I now have a hot date with an exploitable bootloader.
I've been running some sort of dodgy leaked nightly build from samsung that doesn't have any carrier shite on it since I got the thing, so maybe it hasn't been there all along. Either way it's high time for some new firmware.
As others have said here, you can remove this stuff all you want, all you're doing is shutting off the simplistic application layer backdoors. There is absolutely nothing you can do about the backdoors built into the baseband firmware itself, which is what law enforcement agencies use.
Well, absolutely nothing except flashing your own open source baseband firmware from the fine folks at the OsmocomBB project. Unfortunately that project only targets a very small set of simple featurephones, which won't do much to excite HN types. What may whet your appetite however, is the possibility to inject arbitrary packets straight into the GSM network! The possibilites for fun, learning, and prison time are endless.
You don't need an exploit to install ROMs on Galaxy S variants (and in general most/all Samsung smartphones). The first stage bootloader supports partition rewrite over USB using a leaked "Odin" tool (or the open source "Heimdall" tool built through reverse engineering).
I used to use the Odin thing, but it makes me nervous. Heimdall doubly so. There's now that "ROM Manager" app in the market, which manages to flash firmware starting from userspace. I haven't looked into how it works, but I assume there's an exploit involved somewhere.
I believe ROM manager works after you have successfully gained root on your device and not before. It may have changed since I no longer have an android phone but when I had my droid the process was install a rooted version of your current OS then you upgrade from there. ROM Manager just made the installing other OS's and extras and keeping cyanogenmod up to date easier.
Where is the proof that this software is installed onto phones other than Android? I would like to know what made them say that it's installed on Nokias for instance...
It probably differs between carriers, but here in the Netherlands it's not very common for Android phones to be customized by the carrier. At least my phone (Samsung Galaxy S2) was not changed in any way.
Though if you're paranoid it's probably best to buy a simlock-free phone instead of choose from the carrier. It can even be cheaper overall if you take a sim-only carrier subscription.
Is CIQ put on phones at the behest of manufacturers or carriers?
Is the data sent by CIQ charged to the user?
Regardless of the answers, this is bad, bad stuff. Given where we are with something as basic as SOPA, I doubt we'll ever see anything done to protect consumers against this type of privacy invasion.
there is not a phone on the market that does not have a locked down and 100% proprietary baseband firmware (basically the part of the phone that does the actual celltower signalling/interactions).
There is strong indications this is used to essentially pre-empt/backdoor the main OS for monitoring and surveylance purposes, and many models suffer from serious security weaknesses.
Currently in the process of getting fixed. For general efforts in this area for the entire family of GSM technologies, see http://osmocom.org/ ; for the specific project to produce Open Source GSM baseband firmware, see http://bb.osmocom.org/ .
This is why corporations give smart phones away at no cost. People pay for the phone many times over by giving away most all of their data and privacy to the corporation that gave them the phone. Most people just don't realize this.
