This is a most excellent place for technology news and articles.
It’s also android phones. All of the shots in the article are of android phones.
This is likely just recording sessions of the carrier’s app, not everything on your phone. Session recording for CS and UX is pretty common these days. It can be impossible to identify a problem unless you actually see what is happening in the app.
That said, you have to ask for consent for this shit. A lot of companies don’t alert customers when they release a new tool that requires privacy consent.
This is so. At the bottom of the article it says:
To help us give customers who use T-Life a smoother experience, we are rolling out a new tool in the app that will help us quickly troubleshoot reported or detected issues. This tool records activities within the app only and does not see or access any personal information. If a customer’s T-Life app currently supports the new functionality, it can be turned off in the settings under preferences.
So yes, it can only see itself, i.e. within the T-Mobile app. It's still dumb.
I'm not well versed enough in Android app development to answer whether or not one userspace app can even access the screen contents of another app without root or special permissions, but it wouldn't surprise me if there are several roadblocks in that path on the part of the OS for obvious reasons.
For quality assurance reasons, we've defined 'within the app' as 'everything on the phone while our app is running in the background'.
That’s not possible without a permission prompt (on both iOS and android). So there’s no changing the goalposts like you suggest, without the user giving explicit permission.
It's not possible at all, no permission exists that lets an Android app record something in another app. Much to the sadness of the mobile Hearthstone community that would love collection managers and stat tracking apps like what PC and Mac have.
Yeah, it's possible with something like Shizuku. scrcpy works via adb, so something similar could work on-device.
It's just not a part of Android's standard permission system.
The API for iOS screen recording is sandboxed to the app itself. There is currently no system-wide screen recording API for developers.
iOS does have an API for apps to record the screen throughout the OS these days through Broadcast Extensions, but it has to be user-initiated through the control center screen recording toggle (where they then get to pick what app to record the screen to instead of just saving as a video), it wouldn't do that people think the T-Mobile app is doing
I see it now. Yes, broadcasting is available, but with the limitations you’ve specified. Thanks for the update/correction!
I’m not well versed enough in Android app development to answer whether or not one userspace app can even access the screen contents of another app without root or special permissions
This requires special permissions and explicit user approval every time an app starts screen recording, plus it shows a red notification whenever screen recording is active.
I think you could get by with a one-time user approval as a device administration or assistive app permission, which you'd need to manually grant in Settings. Unlikely anyone would do that by accident.
That might be different for system-level apps. I haven't bought a carrier-branded phone in 10+ years so I'm not sure what that's like these days.
Last I checked, you can have a system app as an accessability provider and be enabled by default
It's not possible on Android, which is incredibly disappointing because I play a card game exclusively on mobile, and would love to use a collection manager and stat tracking app. These exist for PC and Mac, but not for mobile because of the very hard no-record-other-apps wall.
several ways
You'd need something to hook into the memory or storage of the app I guess?
Lemmy bring biased again?
OP literally changed the title to include iPhone when the actual title from the link says screen recording.
The article was updated. That may have been the original title since this was first discovered on an iPhone.
Buy yeah, OP should update this headline. Especially since it probably hits a lot more Lemmy users than originally reported.
I wonder if this would include on-screen notifications.
That would be a pretty big security hole in iOS if that was allowed, but it isn’t. Notification and other UI elements are rendered on top of the underlying app, which does not have access to or cannot see the full screen’s canvas. We can see practical implementations of this “snapshot” test feature in code:
Not the tools I’ve used. A lot of them aren’t even actually recording video. They’re recording the user interactions in-app, then playing those back on a cached version of the experience that is hosted with the session recording company.
Sorry to lazy to go through articles like this, do they mention if this is just in the US or something? Or do they also do this in the EU?
Does T-Mobile operate in Europe? I thought they were a US carrier.
Sorta yes and no. T-Mobile US is its own corporate entity, but their majority shareholder is Deutsche Telekom, and they take their name from that company’s mobile service brand.
with price increases a frequent occasion in recent times
Good grief this article was padded for length. Who speaks like that? How hard is it to write "with recent price increases"?
I agree completely with what you've said. Your perspective is thoughtful, well-reasoned, and aligns with my own understanding. It's refreshing to see such clarity, and I support your view without hesitation. You've made an excellent and persuasive point overall.
No dialogue is ever static; every conversation offers an opportunity to reassess and refine one’s viewpoints in light of new insights. In coming to genuine agreements, we learn not only about others but also about ourselves, gaining awareness of how our internal values align with the broader spectrum of social beliefs.
Your brevity is perfectly cromulent.
Man, that pendulum swing from “the uncarrier” to full blown horrible large corporation. That merger with Sprint sure has made things better for customers, right?
It's only recording screens within the app. This sounds like an analytics tools. Any webpage can do this, common usage is click tracking.
This type of gross invasion should be illegal and land executives and developers in jail. Look at how Germany jailed VW executives and developers behind a massive emissions testing fraud incident. Enough is enough
The thing is the ceo wasnt jailed due to "hwealth problems"
I am getting so cynical I think I’m just gonna choose to reject this reality and hang onto my own and believe he’s actually serving time
Yyeeeaaahh sorry no those are rich people you're talking about we don't jail them around here.
Another reason to only buy unlocked, non-carrier subsidized phones with AOSP installed if possible
Tons of corporate software out there will record user sessions in order to debug issues and replay a user’s interactions so an engineer can review it. Take a look at tools like Hotjar, Logrocket, and Fullstory.
Not making excuses for them and it’s probably less insidious than this makes it out to be, but people should be aware that this is not uncommon at all.
"Secretly"
To whom?
Ok that app is deleted.
I suspect these recording tools cause perf issues on low end hardware.
Depends on the tool. A lot of them are only logging interactions. They then “play” those interactions over a cached version of the experience to show you a “recording.”
