What is xtrapath3.izatcloud.net, why does my phone connect to it?

Albin Jose@endlesstalk.org · edit-2 1 year ago

What is xtrapath3.izatcloud.net, why does my phone connect to it?

Darkassassin07@lemmy.ca · 1 year ago

https://www.nitrokey.com/news/2023/smartphones-popular-qualcomm-chip-secretly-share-private-information-us-chip-maker

scarilog@lemmy.world · 1 year ago

Tldr it’s used to make initial GPS fix faster by getting satellite positioning information.

FutileRecipe@lemmy.world · 1 year ago

Not a fan of how they say “we didn’t say it’s a backdoor,” but have “secretly share” in the URL and article title.

Darkassassin07@lemmy.ca · 1 year ago

A backdoor would imply some sort of external control I’d think, a much broader potential for harm.

Being able to command a device to send you info or perform tasks is different than the device sending info of its own accord.

FutileRecipe@lemmy.world · edit-2 1 year ago

A backdoor would imply some sort of external control I’d think…

Yes, technically a backdoor listens: https://csrc.nist.gov/glossary/term/backdoor

Being able to command a device to send you info or perform tasks is different than the device sending info of its own accord.

In this context, where it’s implied to send without the owner’s knowledge (ignoring the fact it’s documented), not really. The article screams “gotcha!” when in reality it didn’t, so they’re trying to backtrack and downplay their initial response. But I do appreciate their update, it’s just got a PR spin to it.

Edit: if the article was initially written as more of a “did you know” and/or expanding on existing documentation, wouldn’t be an issue. It’s the “it’s secretly stealing” that implies malice which is part of the definition of malware… that’shares a category with backdoor. So splitting hairs in the name of PR.

FiskFisk33@startrek.website · 1 year ago

there is an important difference between sending data and accepting remote control

macattack@lemmy.world · 1 year ago

That’s a good read, especially the additional context at the bottom of the article.

supernicepojo@lemmy.world · 1 year ago

After a quick search: Izatcloud is qualcomm extended satellite positioning, which may be a different version of GPS. But not entirely sure, here is a privacy related article about it. https://restoreprivacy.com/qualcomm-denies-unlawful-user-location-data-collection-on-phones/

sduvick@mastodon.social · 1 year ago

@AlbinJose1001 base host appears to be some location provider from Qualcomm? http://izatcloud.net/

Albin Jose@endlesstalk.org · edit-2 1 year ago

I don’t know. My xiaomi device is making crazy amount of connections to… Xiaomi.net, Xiaomi.com, Miui.com, idmb-app-chat-global-xiaomi10-407281533.ap-south-1.elb.amazonaws.com And now… xtrapath1.izatcloud.net

ℛ𝒶𝓋ℯ𝓃@pawb.social · 1 year ago

As others have said, manufacturer telemetry. Just the usual built-in spyware that people are fine with for some reason… Everyone does it, they’re just bad at hiding it in this case.

db2@sopuli.xyz · 1 year ago

Is *.xtracloud.net related? I found it in my logs.

asbestos@lemmy.world · 1 year ago

Yes it absolutely is. It’s also Qualcomms.

Albin Jose@endlesstalk.org · edit-2 1 year ago

Yeah, It’s izatcloud.net related.

Cossty@lemmy.world · edit-2 1 year ago

I asked very similar question here.

https://lemmy.world/post/7424307

The address is diffrent because you have older phone.