- Greeting,
I'm getting messages saying "Sensitive permission accessed". When I tap for details, it says SoundHound accessed the microphone. SoundHound isn't running. I get this message about every sixty seconds.
How can I be getting these alerts when SoundHound isn't running?Last edited by ShaneGoodman; 03-21-20 at 10:32 PM. Reason: added link
03-21-20 03:55 PMLike 0 - Greeting,
I'm getting messages saying "Sensitive permission accessed". When I tap for details, it says SoundHound accessed the microphone. SoundHound isn't running. I get this message about every sixty seconds.
How can I be getting these alerts when SoundHound isn't running?03-21-20 03:57 PMLike 0 - Greeting,
I'm getting messages saying "Sensitive permission accessed". When I tap for details, it says SoundHound accessed the microphone. SoundHound isn't running. I get this message about every sixty seconds.
How can I be getting these alerts when SoundHound isn't running?
Z10 = BB10 + VKB > iOS + Android03-21-20 04:02 PMLike 0 -
I tapped Power Centre > Manage automatic apps, and switched SoundHound to Off.
I will let you know how it goes.
Shane.03-21-20 10:36 PMLike 0 - For anyone who might be interested, SoundHound has a great deal of tracker software embedded (18 different ones). I took a quick look for interests sake and it has trackers from the following data collection companies:
1 from ComScore
6 from Google
4 from Facebook
1 from Houndify
1 from Integral Ad Service
1 from Localytics
1 from Moat
1 from Twitter MoPub
1 from Quantcast
1 from Branch
Digging through these I found references to the following types of data collection:
Street, City, State and Country
Precise Coordinates
Time zone
DeviceID, Device Name, OS Version
Language
Geofencing and location tracking
Phone brand and model
User name, age, gender
Local IP address, WIFI SSID, and Network Provider
Something SoundHound is collecting which they've described in a string as "firstPersonSelf" and "firstPersonSpoken"
It connects to the following servers:
graph.facebook.com
profile.localytics.com
analytics.localytics.com
manifest.localytics.com
secureapi.midomi.com
data.midomi.com
api2.branch.io
m.quatcount.com
crashlytics.com
scorecardresearch.com
ads.mopub.com
soundhound.com
api.midomi.com
search.midomi.com
There are 3315 sub components/classes of these 18 trackers in the SoundHound app. So I'm sure there's some I'm missing.03-22-20 12:55 AMLike 0 - The only permission I gave SoundHound was Microphone. You're telling me it is collecting:
- Street, City, State and Country
- Precise Coordinates
- Time zone
- Geofencing and location tracking
How can it do this? It does not have the Location permission.
Shane.03-22-20 02:14 PMLike 0 - 03-22-20 02:33 PMLike 0
-
All of which have nothing to do with location services directly.
From their Privacy Policy https://www.soundhound.com/en/privacy
Location Information. When you use the Services, and when you have enabled such collection in your device or App settings, we may collect location information that your mobile device or browser provides. Depending on how you access the Services, we may receive precise geolocation information from GPS, WiFi, or cell tower location, or rough location information.Last edited by chetmanley; 03-22-20 at 03:53 PM.
03-22-20 03:34 PMLike 0 -
Shane.03-22-20 04:25 PMLike 0 -
- I don't think @ShaneGoodman is describing background events, but foreground events which are happening as soon as the app is opened, without pressing the record button. I saw the same behavior when I was testing it.
This may be caused by a setting I recall seeing which had something to do with "pre-recording"?
I've since deleted this app, but maybe there was a version update which changed the microphone behavior.
Try turning off this "pre-recording" setting and see if it continues to activate the microphone before user interaction.03-22-20 04:41 PMLike 0 - I don't think @ShaneGoodman is describing background events, but foreground events which are happening as soon as the app is opened, without pressing the record button. I saw the same behavior when I was testing it.
I'm waiting to see if that worked.chetmanley likes this.03-22-20 06:14 PMLike 1 -
-
In the event I want to use an app like SoundHound (which has some nice features), I typically download it, use it, and uninstall it immediately. I do that for ALL loyalty apps, as I don't need the Panera app when I'm not ordering from Panera!
Z10 = BB10 + VKB > iOS + Android03-23-20 04:18 AMLike 0 - Which is why I avoid most free apps, excepting those from very trusted groups with a clearly articulated business model and privacy policy that makes sense!
In the event I want to use an app like SoundHound (which has some nice features), I typically download it, use it, and uninstall it immediately. I do that for ALL loyalty apps, as I don't need the Panera app when I'm not ordering from Panera!
Z10 = BB10 + VKB > iOS + Android
Unfortunately, during that brief window of usage, it's highly likely that the app has already collected and transmitted identifiers like your;
Device Name and ID
IMEI and MAC (I've read that Android 10 does not allow apps to access permanent device identifiers anymore?)
Cell Provider and cell tower IDs
IP address
Nearby WIFI hotspots including the one in your house and all of your neighbors' - which provides your location even with GPS off
List of other applications installed.
If the device has Google Play Services installed and running, then it would also collect your Google Play User ID and use that to track your usage between other apps from Google Play which have been installed with the same ID.
For me, learning what a particular song is called isn't worth that trade off.
If a particular application / spyware app absolutely needs to be installed and run, then using Netguard can help to mitigate some of the data collection by first severing the newly installed application's connection to the internet. When the App is then opened for the first time, the user can monitor and record all the connection attempts. From there, all of the servers known to be associated with data collection can be blocked individually, while allowing only the essential connection(s) through for the application to function.
In this case, I would start by blocking the following
graph.facebook.com
profile.localytics.com
analytics.localytics.com
manifest.localytics.com
api2.branch.io
m.quatcount.com
crashlytics.com
scorecardresearch.com
ads.mopub.com
And the following would be questionable - they are related to SoundHound, but it's difficult to tell if they are for data collection, or genuine app functionality. Only way to tell is to see if the app works while they are blocked, if not, individually unblock until the app works.
api.midomi.com
search.midomi.com
secureapi.midomi.com
data.midomi.com
soundhound.comLast edited by chetmanley; 03-23-20 at 12:49 PM.
bbfanfan likes this.03-23-20 12:38 PMLike 1 - Unfortunately, during that brief window of usage, it's highly likely that the app has already collected and transmitted identifiers like your;
Device Name and ID
IMEI and MAC (I've read that Android 10 does not allow apps to access permanent device identifiers anymore?)
Cell Provider and cell tower IDs
Nearby WIFI hotspots including the one in your house and all of your neighbors' - which provides your location even with GPS off
List of other applications installed.
If the device has Google Play Services installed and running, then it would also collect your Google Play User ID and use that to track your usage between other apps from Google Play which have been installed with the same ID.
For me, learning what a particular song is called isn't worth that trade off.
But a onetime snapshot of several data points (such as local cell towers) is a lot better than frequent or continuous monitoring.
One of the reasons I don't provide my carrier, Android or Google with my real identity is so that I don't have to worry as much about my personal information being mined by an app. It's also why I put my phone in a Faraday bag and don't use it near my house. (I have other devices for use at home.)
Thank you for your detailed research on SoundHound's super aggressive data collection. If apps like this were forced to be completely transparent about their practices, I wonder how many of them would survive. Not many people I know would knowingly provide that much information just to find the name of a song.
Z10 = BB10 + VKB > iOS + Androidchetmanley likes this.03-23-20 12:53 PMLike 1 - I got an email back from SoundHound saying "Our team is aware of this issue, and we're currently working to resolve it."chetmanley likes this.03-23-20 08:58 PMLike 1
-
- Forum
- Android BlackBerry Phones & OS
- Android Apps
Constant alerts from DTEK for SoundHound!
Similar Threads
-
I am new, I have some worries about switching from Samsung to BB.
By dempsey141 in forum General BlackBerry News, Discussion & RumorsReplies: 41Last Post: 06-29-20, 07:08 AM -
Please help me transfer contacts (and my mentality) from Q10 to Key2 (Content Transfer)
By biancafloyd in forum BlackBerry KEY2Replies: 4Last Post: 04-18-20, 12:58 AM
LINK TO POST COPIED TO CLIPBOARD