AYANEO Under Scrutiny for Alleged User Privacy Violations
Chinese hardware manufacturer AYANEO is facing serious allegations of user privacy breaches concerning its Android-based handheld gaming device, the Pocket DS. Concerns were raised on GitHub by a user known as ghostmanslow, who reported that the AYAWindow app associated with the device was taking screenshots “every single time” an action was performed.
The user noted an alarming accumulation: “There are over 1,200 screenshots in that directory from my activities, which updates in real time. For instance, if I view an old screenshot, a new screenshot of it becomes the latest entry, which I find very troubling.” Further investigations revealed that the AYAWindow app has transmitted approximately 12.5GB of data from user devices since November 17th.
In response to the discussion, the Retro Handhelds community urged users to assess the data activity on their AYANEO devices, indicating the revelations could have significant implications. “This is wild if confirmed,” tweeted Retro Handhelds, highlighting the issue’s importance.
Retro Handhelds conducted an examination and discovered the unusual behavior seems to be limited to the Pocket DS, which is running version 1.5.99 of the AYAWindow app. Other AYANEO devices utilize older versions that do not exhibit similar conduct regarding screenshots. Further analysis using the PCAPdroid application revealed that these screenshots were being transmitted to ‘android.bugly.qq.com’, a service associated with Tencent that assists Android developers in monitoring app performance and errors.
While it is not uncommon for developers to collect operational data for improving software functionality, the lack of a disclaimer from AYANEO regarding this data collection raises concerns about transparency. Users should be sufficiently informed to make choices about their data.
AYANEO’s representative addressed the original claim, stating that the screenshot captures are part of the system’s dual-screen task manager feature. However, a bug is causing an accumulation of screenshots without a proper cache clearance. “This is normal behavior, but we recognize that the cache issue has led to excessive accumulation of images. Our team is addressing this with a forthcoming fix,” the spokesperson clarified.
Concerning privacy, the representative asserted that the images are minimal in size and stored within the app’s sandbox, which they claim poses no security risk. “AYA does NOT upload any of this data. The data traffic reported is calculated based on the Linux UID. Since AYAWindow operates under the system UID, the traffic encompasses all applications sharing that identifier,” the representative further elaborated.
As AYANEO works to resolve the screenshot issue and addresses user concerns, the company faces an imperative to ensure robust transparency and safeguard user privacy amid the growing expectations for data protection in the tech industry.
Source: Original Source
