Core Viewpoint - The article discusses the implications of the nubia M153 engineering phone's access to the INJECT_EVENTS permission, which allows applications to simulate user input events, raising concerns about security and privacy risks associated with such high-level permissions [5][6][7]. Group 1: Technical Aspects - The INJECT_EVENTS permission is classified as a high-risk permission in the Android system, typically reserved for system-level applications or those deeply integrated with the hardware manufacturer [5][6]. - Only applications signed with the manufacturer's system private key can obtain this permission, which effectively integrates them into the operating system rather than treating them as third-party applications [9][11]. - The collaboration between AI applications like Doubao and hardware manufacturers is essential to access such permissions, which can enhance the capabilities of AI applications significantly [7][11]. Group 2: Security Concerns - Granting INJECT_EVENTS permission to third-party applications poses significant security risks, including potential unauthorized access to sensitive information such as banking details [6][7]. - The article highlights the need for a dual authorization mechanism between users and applications to mitigate risks associated with AI interactions with third-party apps [11]. - Concerns about user privacy and data security are paramount, as the integration of AI capabilities into mobile operating systems could lead to identity theft and data breaches [10][11]. Group 3: Industry Dynamics - The competition among mobile manufacturers, AI model developers, and traditional app developers is characterized as a struggle for data access and user engagement [11]. - The current focus of the Doubao assistant is primarily on developers rather than ordinary consumers, indicating a niche market for this technology [11]. - The article emphasizes the importance of maintaining user habits and minimizing disruption during the integration of AI functionalities into existing operating systems [10].

Core Points - The nubia M153 engineering device faced issues with logging into WeChat, which have since been resolved, but related tasks remain restricted [1] - The focus of industry experts is on the INJECT_EVENTS permission granted to the nubia M153, which allows applications to inject simulated user input events, a high-risk permission in the Android system [2][3] - The INJECT_EVENTS permission is typically reserved for device manufacturers and their authorized partners, indicating a significant level of access and control over the device [2][3] - Concerns have been raised about the security risks associated with granting such permissions to third-party applications, including potential unauthorized access to sensitive information [3][4] - The collaboration between AI applications like Doubao and hardware manufacturers like ZTE is essential for obtaining high-level permissions, which can enhance the functionality of AI assistants [4][8] Industry Insights - The INJECT_EVENTS permission requires applications to be signed with the manufacturer's system private key, effectively integrating them into the operating system [3][6] - The increasing complexity of interactions between AI agents and users raises concerns about security risks such as identity theft and data breaches [6][7] - The development of AI applications is seen as a competitive landscape among mobile manufacturers, AI model developers, and traditional app developers, focusing on data access and user privacy [8] - The target audience for the Doubao assistant is primarily developers, as it is an engineering device rather than a consumer product [8]