this post was submitted on 29 Jan 2025
35 points (92.7% liked)

Android

17982 readers
251 users here now

The new home of /r/Android on Lemmy and the Fediverse!

Android news, reviews, tips, and discussions about rooting, tutorials, and apps.

πŸ”—Universal Link: !android@lemdro.id

πŸ’‘Content Philosophy:

Content which benefits the community (news, rumours, and discussions) is generally allowed and is valued over content which benefits only the individual (technical questions, help buying/selling, rants, self-promotion, etc.) which will be removed if it's in violation of the rules.

Support, technical, or app related questions belong in: !askandroid@lemdro.id

For fresh communities, lemmy apps, and instance updates: !lemdroid@lemdro.id

πŸ’¬Matrix Chat

πŸ’¬Telegram channels / chats

πŸ“°Our communities below

Rules

  1. Stay on topic: All posts should be related to the Android OS or ecosystem.

  2. No support questions, recommendation requests, rants, or bug reports: Posts must benefit the community rather than the individual. Please post to !askandroid@lemdro.id.

  3. Describe images/videos, no memes: Please include a text description when sharing images or videos. Post memes to !androidmemes@lemdro.id.

  4. No self-promotion spam: Active community members can post their apps if they answer any questions in the comments. Please do not post links to your own website, YouTube, blog content, or communities.

  5. No reposts or rehosted content: Share only the original source of an article, unless it's not available in English or requires logging in (like Twitter). Avoid reposting the same topic from other sources.

  6. No editorializing titles: You can add the author or website's name if helpful, but keep article titles unchanged.

  7. No piracy or unverified APKs: Do not share links or direct people to pirated content or unverified APKs, which may contain malicious code.

  8. No unauthorized polls, bots, or giveaways: Do not create polls, use bots, or organize giveaways without first contacting mods for approval.

  9. No offensive or low-effort content: Don't post offensive or unhelpful content. Keep it civil and friendly!

  10. No affiliate links: Posting affiliate links is not allowed.

Quick Links

Our Communities

Lemmy App List

Chat and More

founded 2 years ago
MODERATORS
ijeff
ladfrombrad
Paradox
multimoon
mikestevens
Devgard@lemmy.world
limerod@reddthat.com
Netrunner
35
Google will now automatically revoke permissions from harmful Android apps (www.theverge.com)
submitted 1 day ago by neme@lemm.ee to c/android
26 comments fedilink hide all child comments
all 27 comments
sorted by: hot top controversial new old
[–] Stomata@sh.itjust.works 12 points 11 hours ago

It will be nothing but blocking YouTube downloaders or revanced

[–] normonator@lemmy.ml 36 points 1 day ago (1 children)

So revanced, youtube downloader apps, etc. but literal malware probably will be unaffected same as play protect.

[–] sunzu2@thebrainbin.org 2 points 23 hours ago (1 children)

As if allowing a hostile actor access to your personal device that you paid for is a bad idea?

Asking for a friend...

[–] JokeDeity@lemm.ee 3 points 10 hours ago (1 children)

I mean, a huge chunk of the US is literally begging to have a hostile actor have access to their phones to the point they convinced their Cheeto flavored emperor to postpone it's banning.

[–] sunzu2@thebrainbin.org 1 points 9 hours ago

Well tiktok don't have root access, but creeps like Sundar Google and Tim Apple do

[–] Fake4000@lemmy.world 39 points 1 day ago (1 children)

Two things:

  1. The definition of "Harmful" can mean anything.
  2. This includes sideloaded apps.
[–] moonpiedumplings@programming.dev 17 points 1 day ago (1 children)

This includes sideloaded apps.

This exactly. I have a FOSS app called VirtualXPosed installed (although I never use it anymore), which creates a "virtual android" in which apps can be installed and be manipulated in ways that would normally require root, despite me not having it on my phone.

Despite having "play protect" disabled, google still constantly sends me notifications about it being harmful.

[–] Interstellar_1@lemmy.blahaj.zone 14 points 1 day ago (3 children)

Guess is finally about time to move to grapheneos

[–] JokeDeity@lemm.ee 2 points 10 hours ago (1 children)

Can I use sensitive apps like Chase banking?

[–] ililiililiililiilili@lemm.ee 2 points 9 hours ago (1 children)

I can confirm that Chase, Ally, Venmo, and Robinhood all work on Graphene. You just need to install Google Play Services.

[–] JokeDeity@lemm.ee 1 points 5 hours ago

Dope. I didn't know that.

[–] ililiililiililiilili@lemm.ee 2 points 12 hours ago (1 children)

Its been time. You won't regret it. Graphene is the best Android implementation I've ever used.

[–] Auli@lemmy.ca 2 points 10 hours ago (1 children)

The icons suck. I want tag following notification. For a secure os not having the notification that a tag is following you seems like a mistake.

[–] ililiililiililiilili@lemm.ee 2 points 9 hours ago

Install AirGuard, if you're concerned about people stalking you. Install an icon pack and/or switch to a different homescreen app? I prefer that Graphene gives users freedom to setup their phone however they want.

[–] Caboose12000@lemmy.world 1 points 1 day ago* (last edited 1 day ago) (2 children)

does graphene os solve this? I thought they were mostly google under the hood

[–] ITGuyLevi@programming.dev 3 points 11 hours ago

It definitely helps. In GrapheneOS, Google Play Services can be installed, but it is sandboxed and doesn't even have network access unless you allow it.

It solves so much more though, like through scoping you can give an app access to your contacts, or just specific contacts; to the app, those specific contacts are the only contacts that exist on your phone.

[–] Ashelyn@lemmy.blahaj.zone 3 points 1 day ago* (last edited 15 hours ago) (3 children)

They have Google services ~~but through a third party wrapper called MicroG, which keeps it~~ sandboxed to a degree that you can keep it from doing system-level actions like this

edit: not microG, as evidenced by the strikethrough I put in very soon after receiving the first of several replies clarifying the situation. I would encourage you to read one of them before adding your own. <3

[–] Turret3857@infosec.pub 2 points 16 hours ago

Gos doesnt use MicroG. MicroG is a foss implementation of googles APIs, with very ways to be tracked, and the ability to turn those components off. Graphene says "you get nothing or you get these closed source black boxes we sandboxed".

[–] Bad_Engineering@fedia.io 6 points 21 hours ago

You actually have to implicitly install google services on GrapheneOS, but if you do install it then it is sandboxed.

[–] z3rOR0ne@lemmy.ml 2 points 23 hours ago (2 children)
[–] Interstellar_1@lemmy.blahaj.zone 3 points 23 hours ago

They do indeed not use microg, just sandboxed Google services

[–] Ashelyn@lemmy.blahaj.zone 2 points 23 hours ago

Oh my bad. According to another commenter it is sandboxed though

[–] Chozo@fedia.io 4 points 23 hours ago (2 children)

Despite the typical moaning from this community any time Android changes anything, this is a good thing. This will combat a new scam tactic that's been going around where scammers call their target, pretending to be their bank or somebody else the mark would be doing business with, and ask the victim to install a "security update" to their app. They get the victim to install a look-alike app, and then have all their data and money stolen. YOU probably won't ever fall for such a scam. But your grandma absolutely will.

[–] JokeDeity@lemm.ee 3 points 10 hours ago (1 children)

Naive. This is like believing Trump's reasonings for all the executive orders he's passed are true.

[–] Chozo@fedia.io 0 points 9 hours ago

Okay then, what nefarious purpose is this actually for then?

[–] Turret3857@infosec.pub 3 points 16 hours ago

i took the time to educate her, and so far all Ive heard about is how every time she does get one of those calls she hangs up