More recently some of the larger security research companies have weighed in and have (in at least one case) decompiled the app and taken a look at what it does and does not do. So far the consensus is that CarrierIQ does not log and transmit everything you do on your phone. According to Dan Rosenburg (an independent security researcher), CarrierIQ has no ability to record anything other than the keys you press on the dialer pad. Now, this will be good news to people that were concerned about the details of their email and texts being sent back to their carriers, but there are still other things that the carriers are collecting that raise serious questions.
According to CarrierIQ the software can be configured by the carriers to collect information on what applications are being used and what URLs are visited. This is ok, until you begin to wonder who else can gain access to this information that is reportedly stored on the phones. The whole issue has raised enough concerns that Senator Al Franken (formerly of Saturday Night Live) has already asked CarrierIQ some pointed questions and is now moving on to the carriers themselves.
For their part both Sprint and AT&T have admitted using the software, but neither will comment on the features they use. Everyone (with the possible exception of the carriers) agree that while CarrierIQ might not have been the massive threat it was thought to be at first, it is still something that consumers should have known about and should have an option to opt out of.
Discuss in our Forum