A recent report from Cybernews has raised concerns about the data transmission practices of Google’s latest flagship smartphone, the Pixel 9 Pro XL. Cybersecurity researchers at Cybernews conducted an analysis of the device’s web traffic and discovered that even before users install any applications, the Pixel 9 Pro XL sends private user data back to Google servers every 15 minutes. This data packet includes sensitive information such as email addresses, phone numbers, location data, network status, and other telemetry data.
The report goes further, stating that the Pixel 9 Pro XL periodically attempts to download and run new code without explicit user consent. Security researcher Aras Nazarovas expressed concerns that this practice could create vulnerabilities and potential security risks.
The analysis revealed that the Pixel 9 Pro XL automatically connects to device management and policy enforcement endpoints, suggesting that Google may have remote control capabilities over the device. Additionally, the report uncovered that the Pixel connects to services like Face Grouping endpoints without user authorization. Furthermore, the study found that the calculator app leaks calculation history, potentially exposing sensitive information.
These findings highlight the importance of understanding the data collection and security practices of our devices, especially those manufactured by tech giants like Google. While Google has not yet publicly responded to these claims, this report serves as a reminder for users to be aware of the data being shared by their smartphones and to consider adjusting their privacy settings accordingly.