CarrierIQ has finally realized that they need to come out and vocally defend their logging of information on handsets. The drama has been going on for awhile now and it seems like most BlackBerrys on most carriers are spared and the app is relatively easy to spot do to BlackBerry security. On the other hand there have been tons of questions on exactly what CarrierIQ logs on other platforms, specifically Android.
CarrierIQ does try to distance themselves from carrier and handset manufacturer practices claiming that the keylogging found by dev Trevor Eckhart was the result of a handset shipped with debug capabilities turned on. In other words they are saying it wasn’t our fault it was their (the carriers and manufacturers) fault.
They have also admitted to another bug that leads to security issues where a certain diagnostic profile may cause SMS to also be collected in the log data. All in all it is an interesting 20 page PDF that you can find on CarrierIQ’s website. Hopefully CarrierIQ, carriers, and manufacturers can learn the moral of the story and be more transparent on their data collection practices.