ADVERTISEMENT

Who owns your shiny new Pixel 9 phone? You can’t say no to Google’s surveillance

Google's latest flagship smartphone raises concerns about user privacy and security. It frequently transmits private user data to the tech giant before any app is installed. Moreover, the Cybernews research team has discovered that it potentially has remote management capabilities without user awareness or approval.

Google Pixel 9 Pro XL security

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
Oct 3, 2024 Updated: 4 November 2024 6 min read

Key takeaways

  • Private information was repeatedly sent in the background, including the user’s email address, phone number, location, app list, and other telemetry and statistics.
  • The phone constantly requests new “experiments and configurations,” tries accessing the staging environment, and connects to device management and policy enforcement endpoints, suggesting Google’s remote control capabilities.
  • The Pixel device connected to services that were not used, nor explicit consent was given, such as Face Grouping endpoints, causing privacy and ownership concerns.
  • The calculator app, in some conditions, leaks calculations history to unauthenticated users with physical access.

Methodology

The phone beams data periodically

general-auth-request
voice-search-request
Voice search request
ADVERTISEMENT

The phone constantly checks for new code to run

staging-request

Calculator leaks calculations

calculator-pixel

Google: data transmissions needed for legitimate services

Conclusion

ADVERTISEMENT