4mo ago

Google will now automatically revoke permissions from harmful Android apps

www.theverge.com

Technology @lemmy.zip

BrikoX @lemmy.zip

4mo ago

Google will now automatically revoke permissions from harmful Android apps

www.theverge.com /news/601715/google-play-protect-revoke-app-permissions

28 comments

Two things:
The definition of "Harmful" can mean anything.
This includes sideloaded apps.
- This includes sideloaded apps.
  This exactly. I have a FOSS app called VirtualXPosed installed (although I never use it anymore), which creates a "virtual android" in which apps can be installed and be manipulated in ways that would normally require root, despite me not having it on my phone.
  Despite having "play protect" disabled, google still constantly sends me notifications about it being harmful.
So revanced, youtube downloader apps, etc. but literal malware probably will be unaffected same as play protect.
- As if allowing a hostile actor access to your personal device that you paid for is a bad idea?
  Asking for a friend...
  
  I mean, a huge chunk of the US is literally begging to have a hostile actor have access to their phones to the point they convinced their Cheeto flavored emperor to postpone it's banning.
It will be nothing but blocking YouTube downloaders or revanced
Guess is finally about time to move to grapheneos
- Its been time. You won't regret it. Graphene is the best Android implementation I've ever used.
  
  The icons suck. I want tag following notification. For a secure os not having the notification that a tag is following you seems like a mistake.
- does graphene os solve this? I thought they were mostly google under the hood
  
  It definitely helps. In GrapheneOS, Google Play Services can be installed, but it is sandboxed and doesn't even have network access unless you allow it.
  It solves so much more though, like through scoping you can give an app access to your contacts, or just specific contacts; to the app, those specific contacts are the only contacts that exist on your phone.
  
  They have Google services ~~but through a third party wrapper called MicroG, which keeps it~~ sandboxed to a degree that you can keep it from doing system-level actions like this
  edit: not microG, as evidenced by the strikethrough I put in very soon after receiving the first of several replies clarifying the situation. I would encourage you to read one of them before adding your own. <3
- Can I use sensitive apps like Chase banking?
  
  I can confirm that Chase, Ally, Venmo, and Robinhood all work on Graphene. You just need to install Google Play Services.
Despite the typical moaning from this community any time Android changes anything, this is a good thing. This will combat a new scam tactic that's been going around where scammers call their target, pretending to be their bank or somebody else the mark would be doing business with, and ask the victim to install a "security update" to their app. They get the victim to install a look-alike app, and then have all their data and money stolen. YOU probably won't ever fall for such a scam. But your grandma absolutely will.
- Naive. This is like believing Trump's reasonings for all the executive orders he's passed are true.
  
  Okay then, what nefarious purpose is this actually for then?
- i took the time to educate her, and so far all Ive heard about is how every time she does get one of those calls she hangs up
Coming to Magisk near you. Android sucks more and more.
So how come none of the ai investment is going into stuff like this?

28 comments