根據報導以及後續研究:
疑似就是把某個似乎是高通為中國做的 apk 放到部分非中國版的 Nokia 7 Plus 上,
但在二月份的更新修正了。
最原始的報導,有興趣可以用 Google 翻譯自己翻一下。最後也包含了 HMD 的說明
https://reurl.cc/OMdpX
引用一下 Android Authority 的報導以及報導中引述的調查
https://reurl.cc/LWYX7
https://reurl.cc/3XG3O
"Oddly enough, the code for the Nokia 7 Plus's data collection method was
reportedly found to be similar to code on Github by Qualcomm. So just what is
actually going on here?"
"Was this purely an accident?
It's believed that this data collection was intended for Nokia 7 Plus units
in China, but it may have accidentally landed on devices outside the country.
Furthermore, security researcher Dirk Wetter reported that the culprit could
be an APK package named “com.qualcomm.qti.autoregistration.apk.”"
"...
a software update was issued at the end of February to fix the problem
... "
※ 引述《testid (測試大王)》之銘言:
: 根據外媒報導
: https://bit.ly/2HxpMKh
: 及原始芬蘭文章
: https://bit.ly/2Y8f3uV
: HMD已確認部分Nokia 7 Plus手機不小心把
: "中國版本才要的"回傳資料機制包進去了
: 並已在二月份更新中修正
: 至於回傳了什麼
: 報導說每次開機或解鎖時就會回傳以下資料
: IMEI1
: IMEI2
: SIM1CELLID
: SIM1LTEIMSI
: SIM1ICCCID
: MACID
: 以上