Related
There is a rogue application in the Android Market, from the Android Central post:
Lookout says that one or more of these apps are stealing your data and sending it to an unknown person or persons in China. Yup, innocent looking wallpaper apps. According to Lookout, the app(s) in question are collecting:
* browsing history
* text messages
* your SIM card data
* subscriber ID
* voicemail password
Click to expand...
Click to collapse
Follow the link provided for full information and remember, keep an eye on the permissions screen whenever you install an application!
Reporting a maliciois app in Android Market
RE: Homerun 3D and Slice It
I searched for a proper place to ask this, and describe what I found, and found this thread. I am aware Google has a malicious app reporting process, but I was wondering if any of the great minds here know of a more efficient means to get an app scrutinized by the Market powers-that-be.
The App is a duo, really, that I know of so far. I did not go too far with my investigations once I determined this is a Chinese company (remember the lcd picture frame Trojan?) and once I saw what I did.
I downloaded "Homerun 3D" for my EVO 4G (cyanogen mod), a kick ass batting game to which I quickly was addicted. However, as is common with many apps, during transitions (ad breaks) it would overlay a large ad for various other apps, but the most heavily pushed app (by an estimated 9:1 ratio relative to other apps) was "Slice It", offering extra bonuses in the Homerun 3D game if you DL'd it. I dl'd it and installed it, but once I opened it, superuser notified me it was attempting root access. Of course, this is a HUGE deal, in fact I'd say (and request feedback from those in the know) that proves it is a malicious app, given that no where did it mention that it needed or would use root access. I can't fathom this being an 'honest' developer's mistake.
So I denied it root access and it launched anyway. Hm. In other words, an ingenious method to check for unlocked doors without having to set up a complex ruse of creating an app that notifies it will need to have root access to work. Just write a kick ass fun and addictive 'innocent' app, heavily push and offer incentives to dl and install a so-so app that checks for an exploits unprotected root access, and wah-la, due to the intensely developed dun and addictive nature of the 'innocent' app, you have a much wider distribution of your Trojan that ostensibly gets more chances of hitting an unlocked door. By adding the extra layer of an 'innocent' app, that high-end intensely developed app continues to be listed on the market and continues to push the simple trojan app and so only the trojan app gets removed once discovered. All that the devs need to do then is quickly hammer out another trojan simple app, and update the high-end app to push the new low-end app, instead of developing a whole different kick ass app each time they're discovered.
It's the equivalent of a legit door-to-door cable tv salesmen heavily referencing an unscrupulous installer who is known to sneak around the your house looking for unlocked drawers, cabinets, etc. The fact that the legit cable salesman heavily references him makes that cable salesman very suspicious.
So, while I suspected the Homerun 3D app was complicite given the heavy pushing of the 'Slice It' root checking app, I kept poking around. I looked at the "credits" and while seemingly not hiding the fact they all had Asian sounding names, the use of the middle name nick (as in Jung "Madman" Li) seemed overdone, as if they used corny English nicks, almost too corny to be real, to appear disarming.
But the final straw was when I looked at one of the standard banner ads that run along the bottom of the screen during gameplay. It was a generic Best Buy (low res graphics at that) ad for a $349 laptop. I clicked it and it took me to an ad proxy URL which reported it could not resolve the URL. But get this...the URL of the ad proxy showing in my browser window was:
fraud.mojility.com.
Hm. Not sure why mojility would redirect a banner add to land on a URL with "fraud" in its address, and yet not explain why, but all my circumstantial evidence put together (as if Slice It's secret root checking is not enough in and of itself) warrants a report, I think.
1. Homerun 3D app heavily pushes obvious Trojan app.
2. Homerun 3D app contains at least one banner that directs to a fraud URL.
3. Homerun 3D app credits seem concocted.
4. Slice it app SECRETLY checks for root access, works anyway when denied.
So, thoughts about my tentative conclusion? And if it's agreed, anyone know a more efficient means to alert of a potential malicious app than the Android process?
I'm in contact with someone at Google about this, ohiojoe.
according to a post in a german forum the su request is caused by moblix ad sdk. Imho that doesn't make it any better but the contrary.
I reported them to Google. For me Com2us is dead, will ignore all their games from now on.
Damn, that's scary, thanks for the heads up!
There was some game I installed that was made by some Chinese company. Shortly after people on my gmail contacts started getting spam from me.
I logged into gmail and had a red bar that said my account was being frequently accessed from china.
I quickly changed the password and uninstalled the app.
Stonent said:
There was some game I installed that was made by some Chinese company...
Click to expand...
Click to collapse
Remember the name?
Sent from my Evo using mikfroyo 4.5
Yea, Android is so vulnerable, they should implement into the OS a tool that manages what parmissions a user allows or denies from an app. Like in the old times with Sony Ericsson Walkman phones.
Here in android you install and app, and everything it comes with it...
There an app called Permission WatchDog it's useful it identifies the permissions of apps, but just that.
I haven't been hacked on sending SMS spam, but I have received some spam, only in SMS thought. And just that thanks God.
Mostly after I had installed an app of galleries of pictures...
And what's obiously suspecious, are those.
And those that shows you a picture after you finish a call...-.- WHAT THA FCK!! How ridiculous!
Why tha #$%& would you ever install such crap app?
I ve never installed those, except the galleries ones (asian girls gotta say), but for some reason they're not working for me anymore, I wonder why?..
Neighter I install those crappy ass games, only Raging Thunder and such, which are worth of being developed for a "smart phone"....
Sent from my T-Mobile myTouch 3G Slide using XDA App
Damn,better install an antivirus...
thx for the heads up
Thank for the heads up!!!!
ohiojoe said:
RE: Homerun 3D and Slice It
I searched for a proper place to ask this, and describe what I found, and found this thread. I am aware Google has a malicious app reporting process, but I was wondering if any of the great minds here know of a more efficient means to get an app scrutinized by the Market powers-that-be.
The App is a duo, really, that I know of so far. I did not go too far with my investigations once I determined this is a Chinese company (remember the lcd picture frame Trojan?) and once I saw what I did.
I downloaded "Homerun 3D" for my EVO 4G (cyanogen mod), a kick ass batting game to which I quickly was addicted. However, as is common with many apps, during transitions (ad breaks) it would overlay a large ad for various other apps, but the most heavily pushed app (by an estimated 9:1 ratio relative to other apps) was "Slice It", offering extra bonuses in the Homerun 3D game if you DL'd it. I dl'd it and installed it, but once I opened it, superuser notified me it was attempting root access. Of course, this is a HUGE deal, in fact I'd say (and request feedback from those in the know) that proves it is a malicious app, given that no where did it mention that it needed or would use root access. I can't fathom this being an 'honest' developer's mistake.
So I denied it root access and it launched anyway. Hm. In other words, an ingenious method to check for unlocked doors without having to set up a complex ruse of creating an app that notifies it will need to have root access to work. Just write a kick ass fun and addictive 'innocent' app, heavily push and offer incentives to dl and install a so-so app that checks for an exploits unprotected root access, and wah-la, due to the intensely developed dun and addictive nature of the 'innocent' app, you have a much wider distribution of your Trojan that ostensibly gets more chances of hitting an unlocked door. By adding the extra layer of an 'innocent' app, that high-end intensely developed app continues to be listed on the market and continues to push the simple trojan app and so only the trojan app gets removed once discovered. All that the devs need to do then is quickly hammer out another trojan simple app, and update the high-end app to push the new low-end app, instead of developing a whole different kick ass app each time they're discovered.
It's the equivalent of a legit door-to-door cable tv salesmen heavily referencing an unscrupulous installer who is known to sneak around the your house looking for unlocked drawers, cabinets, etc. The fact that the legit cable salesman heavily references him makes that cable salesman very suspicious.
So, while I suspected the Homerun 3D app was complicite given the heavy pushing of the 'Slice It' root checking app, I kept poking around. I looked at the "credits" and while seemingly not hiding the fact they all had Asian sounding names, the use of the middle name nick (as in Jung "Madman" Li) seemed overdone, as if they used corny English nicks, almost too corny to be real, to appear disarming.
But the final straw was when I looked at one of the standard banner ads that run along the bottom of the screen during gameplay. It was a generic Best Buy (low res graphics at that) ad for a $349 laptop. I clicked it and it took me to an ad proxy URL which reported it could not resolve the URL. But get this...the URL of the ad proxy showing in my browser window was:
fraud.mojility.com.
Hm. Not sure why mojility would redirect a banner add to land on a URL with "fraud" in its address, and yet not explain why, but all my circumstantial evidence put together (as if Slice It's secret root checking is not enough in and of itself) warrants a report, I think.
1. Homerun 3D app heavily pushes obvious Trojan app.
2. Homerun 3D app contains at least one banner that directs to a fraud URL.
3. Homerun 3D app credits seem concocted.
4. Slice it app SECRETLY checks for root access, works anyway when denied.
So, thoughts about my tentative conclusion? And if it's agreed, anyone know a more efficient means to alert of a potential malicious app than the Android process?
Click to expand...
Click to collapse
Hmm. SliceIt does request root. That must be a new thing because it's never done it in the past. Its permissions don't look like anything serious, though.
stupid asians always wanna give us some viruses
Thanks for the look out, bro. What's the point of third party sabotage anywhays, haha
Sent from my HTC Desire Z / T-Mobile G2 (HTC Vision)
If u remove the app does it get rid of it all together r is it to late?
Sent from my SGH-T959 using XDA App
jstevenson1017 said:
If u remove the app does it get rid of it all together r is it to late?
Sent from my SGH-T959 using XDA App
Click to expand...
Click to collapse
In my case, I had removed the app already, I received like 2 or 3 sms spam messages but it later stopped.
Sent from my T-Mobile myTouch 3G Slide using XDA App
I better watch myself.
I'm the OP. Sorry just now getting back this. As I said before, I did not grant Slice It the access it wanted, and it launched anyway (meaning, it didn't need it....just 'wanted' it) but did NOT have any access to my root, so I had no issues.
However, Googling it I saw at least one nit wit (read: a text book example of why not just ANYone should root their phones) report that he gave the Slice It app Su access and was posting that he dint see why it needed it. So, Slice It apparently targets unprotected root phones and nit wit owners of Su protected root phones.
Sent from a corrective lens wearing eskimo translating Turkish smoke signals viewed over a streaming webcam at 640x480 resolution via a U.S. Robotics 14.4 Hayes compatible modem.
Google pulls 56 malicious apps from Android Marketplace
original source: http://blog.mylookout.com/2011/03/s...-found-in-official-android-market-droiddream/
List of malicious Android App that steals your information and download additional craps to your phone
Full list Developed by “Myournet”:
Falling Down
Super Guitar Solo
Super History Eraser
Photo Editor
Super Ringtone Maker
Super Sex Positions
Hot Sexy Videos
Chess
下坠滚球_Falldown
Hilton Sex Sound
Screaming Sexy Japanese Girls
Falling Ball Dodge
Scientific Calculator
Dice Roller
躲避弹球
Advanced Currency Converter
App Uninstaller
几何战机_PewPew
Funny Paint
Spider Man
蜘蛛侠
Full list Developed by “Kingmall2010″:
Bowling Time
Advanced Barcode Scanner
Supre Bluetooth Transfer
Task Killer Pro
Music Box
Sexy Girls: Japanese
Sexy Legs
Advanced File Manager
Magic Strobe Light
致命绝色美腿
墨水坦克Panzer Panic
裸奔先生Mr. Runner
软件强力卸载
Advanced App to SD
Super Stopwatch & Timer
Advanced Compass Leveler
Best password safe
掷骰子
多彩绘画
Full list Developed by “we20090202″:
Finger Race
Piano
Bubble Shoot
Advanced Sound Manager
Magic Hypnotic Spiral
Funny Face
Color Blindness Test
Tie a Tie
Quick Notes
Basketball Shot Now
Quick Delete Contacts
Omok Five in a Row
Super Sexy Ringtones
大家来找茬
桌上曲棍球
投篮高手
Personal warning I'll also include AppsPlanet into those list if I were you.
Some of them seem like the standard spammy, suspicious apps that I naturally avoid, but some of them actually look like popular apps - i.e. the advanced stuff, app uninstaller. Fortunately I don't have any of those stuff on my phone though. And if I'm putting something up from non- android market like over here on XDA perhaps, that I'm suspicious of I tend to scan it first (both on my PC and then on my mobile as well). And even on market I prefer to download apps that have many downloads and comments. Can't be too careful.
What's that pewpew thing? Not the same as this:https://market.android.com/details?id=com.jyaif.pewpew&feature=search_result is it?
syrenz said:
What's that pewpew thing? Not the same as this:https://market.android.com/details?id=com.jyaif.pewpew&feature=search_result is it?
Click to expand...
Click to collapse
yes, it's that one, but seems like there was a fake copy of it floating in market
i was afraid too when i saw it, as i did install the legit one, but wasn't sure about the developers name
Yeah, that's the only thing that I installed so I was worried for a moment there.
The original source is reddit.
http://www.reddit.com/r/Android/comments/fvepu/someone_just_ripped_off_21_popular_free_apps_from/
The whole market is just plain broken and it's a nightmare. It's embarrassing that the author of one of the apps has been complaining through every means possible to google for over a week to get pirated copies of his software taken down (he didn't realize they were injected with malignant code though). So, finally someone notices the developer name looks fishy for one of these apps and is curious to take a look inside the files and sees rageagainstthecage, pokes further, is horrified consults others and posts to reddit. Android Police picks it up and the story starts to spread and then finally google pays attention.
Google really needs to respond. The market.android.com website is so freaking buggy. Imagine if someone figures out how to use web install to push infected crap onto peoples phones. It almost makes you pray to Motorola to also signature check /system. Almost.
What's the deal with raceagainstthecage? Isn't that what we used to root XT720?
syrenz said:
What's the deal with raceagainstthecage? Isn't that what we used to root XT720?
Click to expand...
Click to collapse
Indeed. We use rageagainstthecage to install superuser and then we use superuser instead of rageagainstthecage to get root afterwards. Superuser is designed to be well behaved and everything else is built to cooperate and behave with superuser. The trojaned apps use rageagainstthecage to basically do whatever they want. It doesn't use superuser, so you don't see any notifications.
that's for all the info Mioze7Ae
that's very insightful
As far as I see I did not install one of these apps- but I would like to know anyway what should be done if one did install a malicious app- just remove it? Or better reflash the rom?
Theres already a thread for a patch here at xda:
http://forum.xda-developers.com/showthread.php?t=977154
And somebody developed an apk to search for an infection and to create a so-called stop file to prevent infections in future.
DroidDreamKiller
Is this really checked thoroughly?
'Cause I know at least Finger Race isn't malware at all.
Vistaus said:
Is this really checked thoroughly?
'Cause I know at least Finger Race isn't malware at all.
Click to expand...
Click to collapse
I think clone apps were showing up. You really have to pay attention to the developer
Sent from my XT720 using XDA Premium App
exactly many legit apps and games
were cloned, then injected with Trojan, and then release back to android market.
it confuses the hell out of people
ronnbon said:
As far as I see I did not install one of these apps- but I would like to know anyway what should be done if one did install a malicious app- just remove it? Or better reflash the rom?
Theres already a thread for a patch here at xda:
http://forum.xda-developers.com/showthread.php?t=977154
And somebody developed an apk to search for an infection and to create a so-called stop file to prevent infections in future.
DroidDreamKiller
Click to expand...
Click to collapse
Apparently droiddream creates a /system/bin/profile as part of it's install process (doesn't exist otherwise). Creating that file tricks the current version of "droiddream" into thinking it's already been installed. The apps have been pulled from the market, so you won't be able to install it anyway without sideloading and you should always be cautious about that. I don't think /system/bin/profile trick will do much if anything to prevent the next version of this attack. Working around /system/bin/profile existing is trivial.
What would be better is some way to prevent rageagainstthecage. Once we've got root and superuser, we don't need rageagainstthecage anymore. Finding a new kernel exploit would be a slightly bigger hurdle for the bad guys. Too bad we can't patch our kernels. Thanks, moto for protecting the end users. /s
Then why didn't I have problems with Finger Race? Please explain.
And if it really was malware, then I should've already had problems when I first started to using it on Symbian and Nokia would've removed it from the Ovi Store by now.
But still, even with the Android-version, I don't have any problems with it. So please explain.
because the version that you have is probably the legit one, and not the imitation
the imitation is identical in every way, except that it has additional malware added in
also the stuff that it does to your phone, is in the background, you will never know about it, just like a windows malware, once on, it takes a lot of work, or a full wipe to remove
Just so everyone's aware, they found about 50 more apps with malware. http://blog.mylookout.com/2011/05/s...ew-malware-from-the-developers-of-droiddream/
Well, I've been saying since it started that google should fix the rage exploit, and that we should even be hoping/asking for it. I usually got flamed as a moron by noobs saying I clearly didn't even know what rage was for, haha. Of course I was using a device that didn't have a locked bootloader at the time, so root kernels were an option. Still root can be obtained from flashing the non-kernel part of the ROM too. These exploits are a mixed blessing. They ARE a major security hole on Google's part.
Anyway.. when I have to go through 15 apps to find one good one that works on my phone, sometimes I wish I had an iphone and less free stuff. Guess I better delete that super sex positions app now
AppInventor is basically an online resource for making Android apps. However, to make them you don't need to write codes mostly, making this easier for people like me, who dream about actually being a dev.AppInventor, although is a great resource, but got lost in the forums .
The quality of app is really just dependant on the amount of time you are you wiling to spend on it, and how much time you have taken to understand the AppInventor program itself.
There are many apps that can be made from this, ranging to just info apps, to ones that provide links, and others that actually turn out to be mathematical games. Again, it is just up to the amount of time you decide to spend on the app itself, so don't expect your app to be something utterly brilliant the first time.
This can be used as a learning process. The basic logic behind any app development can be found in here.
So here are my first two attempts.
The first one is basically an app that provides me links.
'Indian Restaurants Guide'
This was my first attempt, so please bear my 'noobness'
The app basically provides buttons, which, when pressed lead the person to a website I built. I did not make it a a major thing, trying to draw traffic to the website, rather the website was built for the app. The app, and the website, both are low in content.
https://market.android.com/details?id=appinventor.ai_hateem_ha.glasgowcurrys&feature=search_result
'Neha Sharma Bollywood Actress'
This is my Second attempt
Basically, this app is a bit more complex, and a lot more logic was used.
The app is about an actress, and it gives some more info about her, and also provides links to her facebook and twitter profiles.
Further, it has also links which open up in the youtube application as trailers of her movies.
https://market.android.com/details?id=appinventor.ai_hateem_ha.trial&feature=search_result
The second app, if you notice was a bit more complex, and I had to make use of the Blocks Editor (a tool provided that helps you create the logic) much more. Also, I had to dig deep into the online resources about the app itself, to make sure that nothing in the design and the blocks went wrong. You get better at stuff as you go along, and I think this will be same.
Try Google AppInventor Now
http://appinventor.googlelabs.com/learn/setup/
Tutorials
https://sites.google.com/site/appinventorresources/home/tutorial-topics
'Publish Your App on Android Market'
Taking, it to the next step.
If you want to publish your apps on the Android market, you need to make an Android market publishing account.
The cost is 25$, but if you are even an amateur 'dev', this might be worth it.
With AppInventor, you can not think about generating revenue from the apps you make, unless they are exceptional.
However, once you make an account by going to
www.market.android.com/publish
you can start posting apps on the market.
All apps made on the AppInventor will need to be signed before you can put them on. However, before signing you might want to consider changing your app icon, because the one that comes from AppInventor is just the default one, and I expect you would want to add some personal touch.
Here are the steps on putting your own icon on the app.
[EDIT]
These steps below are not necessary now. In the Appinventor window, when you select Screen1 it will give you the option to set the icon for the app.
The steps below are here, if that does not work out or you are just trying to change the icon of any app.
1)- Get your finished .apk file and rename it from '.apk' to '.zip'
2)- Browse into the now '.zip' file (use any means you like 7zip, windows explorer, etc)
3)- In the first directory of your app you will see a folder called 'res', which will contain the image file.
Now I have tried replacing the file, but somehow it does not work, so select the 'res' folder and delete it.
4)- Make a new folder in the '.zip' folder called 'res'. Then make a subfolder 'drawable'
5)- Find your icon image that you want to put it.
The icon needs to be a 48x48 image in '.png' format.
I used Microsoft Paint on Windows 7 to resize my image to that size and then save as a '.png' file.
You can use that, or if on XP use the default image resizing tool called 'MS PowerToy'
Or you can use this program to resize the images
http://imageresizer.codeplex.com/releases/view/30247
6)- Place the image file in res\drawable\'your image file'.png
7)- Now re-name the image file to 'ya'
8)- Then rename the '.zip' file back to'.apk'
If you can't do it on your computer, send the file to your mobile, and use Astro to rename.
https://market.android.com/details?id=com.metago.astro&feature=search_result
9)- This bit's maybe an easier bit, signing your app.
Since there is no easy way to sign an app, I used this program which signs the app with your details.
http://amerkashi.wordpress.com/2011...version-of-app-inventor-apk-to-google-market/
Watch the video about this program, and all will be clear.
10)- After this get the '.apk' created which says 'zipaligned'
Goto your Android market dev account, and upload the '.apk'
Complete the steps, provide Screenshots, and another Icon. This time the icon
has a bigger size. 512x512. Use any way to Resize your image. Then make your '.apk' Active, and Publish your app.
Sounds maybe a bit complicated, but can be done easily if the steps are followed.*
Please leave your feedback concerning your experience with this program, also, please post any links to apps that you make using this.
*I have done all this on Windows 7, so the steps you need to take to complete the procedure might be different on a Mac.
Reserved (ONE)
Reserved (TWO)
Bump.........
Cool. Good info. I may give it a try sometime. Thanks
Sent from my King's Alliance Evo running 4G data
Wow, this looks like a real easy way to get into making some apps. Thanks for posting this, I'm going to give it a try.
Thanks, hateem, this is a really good intro to the service. I wish I'd had it when I started!
FYI, AppInventor is one of those Google Labs projects that's been canned. It's still open and there seems to still be some question as to whether they're actually going to shutter it or move it elsewhere and open source it. No, I'm not trolling, I've been an AI user since shortly after it was launched and have been following the discussions over at its Google Group.
I made an account about a year ago, but did not start using it till now.
I did hear some news about it being dropped off by Google, but I don't think that has happened yet, or will anytime soon.
Bump........
Sent from my HTC Desire using XDA App
New way added, to set the app icon.
Sent from my HTC Desire using XDA App
Cool thanks, i guess this is why there are a million horrible apps in the market lol
The number of apps made by appinventor on the market are low, due to the payment needed for a market account.
Sent from my HTC Desire using XDA App
Bump........
New SAT app coming soon. This will be a major advancement from the Restaurant app, and will hopefully contain a tinydb.
Sent from my HTC Desire using XDA App
Now I just need a decent idea!
Im thinkin of making an app which lets you take a snapshot and then edit it quickly, maybe u cud beat me to it?
Sent from my HTC Desire using XDA App
Is this Easy to use?
PMGRANDS said:
Is this Easy to use?
Click to expand...
Click to collapse
This is easier, in the sense that actual app development is exremely complicated. Parts of this (the really complicated apps which make use of webdb) are not easy to grasp, However, most of it is quite straight forward. Plus there are a lot of tutorial videos on this. Just search on youtube, and don't feel like you don't know anything after seeing a really complicated one cause that's really as hard as it gets.
Starters should really begin with Purr and paintpot app, and then maybe move on to making a twitter application and so on.
Sent from my HTC Desire using XDA App
Just made a quickn simple photo editing app, and a SAT guide using this, will be updating main post soon with links to them.
Sent from my HTC Desire using XDA App
App inventor can be frustrating at times due to some of its limitations, but all in all, its pretty good. I have seen that once MIT gets app inventor back from Google soon they have big plans to help it take off even more.
I have an app on the market too, its in beta, its free, and i havent really been working on it for very long. almost 1000 downloads in 2 weeks, so im happy.
Its a RPGish game, with barcode scanning, online battles, npc battles, items, leveling up, etc. Made a network with usernames/passwords, etc. App inventor can be pretty awesome if you use it to its potential.
Heres the link: Market Link
If anyone ever needs help with AI, email me at [email protected], I'd be glad to help.
If you haven't already check it out on the market. Those of you who do know what this app is, it could become a great success, perhaps as big as Foursquare if it's developed right. This is a discussion.
I I have a few great ideas that could really help the app, I emailed the Dev, but here are my ideas:
First, We need a concept for local small businesses to get involved. Like a local small business can sign up to be a hut for zombies or shelter for survivers, and they get something to print to put in their window--this can easily be implemented and will draw more attraction to the app.
Second, app needs checking in capabilities with a way to post on Facebook where you are at and if you are infected. This will encourage Facebook people who don't have the app to check it out, and those who do have the app will benefit because they will see you checked in somewhere do they will go over and try to attack/infect you.
Third, there needs to be some CPU players or computers for the time being--they should occasionally move around too, since the game isn't well adapted yet and not a lot of people have it.
Finally, the app needs push notifications via Google's cloud to device messaging (C2DM), and a widget so one can see newest info and if they are close to someone. Make the widget refresh time a fixed value of off or like 2 hours (obviously to force the user to check surroundings), and to manully refresh you have to press & hold your thumb on the thumb scanner on the widget.
Any ideas anyone else has?
Its interesting that I've not seen this as I search often for zombie games. I will need to get acquainted with the app but your ideas sound awesome.
Sent from my DROID X2 using xda premium
I'm still newer to Android and today realized the permissions that apps request. Before I was quick to just accept & go. I was about to install an app that is requesting a LOT of permissions. Phone calls, hardware controls (pics/vids at any time), and network communication (SMS I believe). My questions are simple.
1. Do certain custom mods, like Synergy? Do some mods already implement certain things into itself to disable some of these features? I understand this is a mod-by-mod basis if so. Does Synergy do anything to disable this crap, anybody know?
2. How worried do I have to be about this? Will the app literally take pics and send them out without my knowledge? Or is it only the pics I take it can send out? How does this work?
3. Which of the permissions that apps request do I really need to keep an eye on and watch out for? AKA, what could take info/pics that I dont want it to?
4. Is Anti-Virus software REALLY necessary since I'm all rooted and such? I read articles saying it's useful and others saying it doesn't even provide much protection, and the chance to get something is quite rare if you only use google play/android market?
Thanks in advance for any and all help. I ditched Apple and AT&T for this thing, and with it being rooted, I am unbelievably happy I made the switch to both VZW and the S3! AWESOME phone, screen size, and customization!
Edit: Posted wrong forum....Shoulda been Q&A forum. Devs plz move.
1. Not sure. I haven't played with synergy.
2. What kind of app is it? This is huge into what kkind of permissions it needs. If its a live wallpaper app it shouldn't be asking to be able to read your contacts or send SMS. You just gotta think what does this app do and why does it need this permission. A launcher app like Apex or Nova needs A LOT of permissions. To be able to make calls and send SMS and work the camera as a launcher can do all of those. Does a game need the ability to do that though? No. It may ask to read your contacts so it can share crap with your friends though. It can be hard when you look at permission apps ask for to decide it its legit or not. If you can't decide just don't download.
I try to only download hugely popular apps that I know aren't malware. If its got over 100k downloads chances are it is a safe app.
Permissions are tricky and until you realize all an app can do you wont understand why it wants to do some things. It took me a good year of downloading apps and reading about things toto get a great grip on permissions.
The biggest thing is common sense. What does the app do and why should it need this permission. An SMS app needs permission to the camera and to send SMS that cost money and read your phone book and such. But if I download a live wallpaper or a weather widget...why would they need such abilities. That should raise a HUGE red flag. Anytime you see "can send SMS that may cost you money" in permissions try to figure out why it needs that. Cause the last thing you want is to DL it and tomorrow have $600 in txt fees.
I don't believe in anti virus on my phone. Yeah you can get em and some love em. But really. If you just use common sense and don't download suspicious things you shouldn't need one. I refer back to only download trusted apps. If it has less the 1k downloads. Be wary. It may be a new app that a dev just launched. Or it could be a reason for the lack of downloads. Look at reviews ALWAYS. Yes many are from morons. But some are helpful. Also if you want a popular game go straight to the devs for it in the market. Many times bogus apps are posted that spoof popular apps like angry birds. Download the one with millions of downloads. Not the one with a thousand.
The more you use your device the more you'll understand. I download plenty of apps from XDA with very few downloads in the market and have been safe. But this comes from knowing and trusting a developer. That's why these forums rock. You can get in on an app in its infancy and help test it and make it grow.
--Sent from GlaDos baked potato
Google is eventually going to have to step in and put a stop to this, but more and more apps are requesting permissions that they have no business requesting. It is unfortunate, especially when the intrusive app is one you would like to have.
I choose to completely disregard any app that asks for permissions it is obvious it doesn't need. The exception being internet access for ads, as incorporating ads into an app can be a legitimate way for an app developer to generate revenue. (And the unsightly ads can be removed with an ad blocker like AdAway, so it's kind of a win-win).
However, if there is an app that you just "need" to download or would just like better control of your phone, you could download an app called "Permissions Denied." This app let's you decide what permissions are granted to each app.
i use LBE Privacy Guard to help manage my permissions. You can mark certain apps as trusted and deny specific permissions for other apps. Also lets you know when a specific app is trying to access certain functions. Only had it for a couple days but liking it so far.
i used to run an anti-virus, AVG to be specific, but after a while just decided to get smarter about what i install and have been going without one.