Related
A new find by the researchers at CA Security have unearthed a new kind of malware on andriod which can record infected devices conversations and uploads it to a remote server !
Andriodians beware
Source: http://community.ca.com/blogs/securityadvisor/archive/2011/08/01/a-trojan-spying-on-your-conversations.aspx
Another reason why it's important to check the permissions for an app before installing it. I'm bad about sometimes just hitting ok without looking but usually I'll go back and check afterwards just in case.
Check out Permissions Denied and Privacy Blocker in the market, they are both good apps that will prevent apps from getting permission to do stuff you don't want them to. Just be aware that the affected app may FC if it tries to do something and you have it blocked. I believe CM7 now is also able to block permissions on an app by app basis.
I usually have some sort of security installed on my phone. Regardless of checking apps before you install them, is this something I should continue to do? I flash new ROM's / ROM updates quite often, and I worry sometimes that it may be a good idea to make sure that Lookout, which is the anti-virus / anti-malware program that I use is installed before I do anything else.
I usually try to read the permissions, and some apps go out of their way to use permissions that are not necessary. I have been using Lookout Mobile Security, but I am not sure how well it works.
I think its time phone makers start inculcating permission management as in CM 7 in to there builds to help user's control these things. You could also use LBE Privacy guard, to control apps.
xHausx said:
Another reason why it's important to check the permissions for an app before installing it. I'm bad about sometimes just hitting ok without looking but usually I'll go back and check afterwards just in case.
Check out Permissions Denied and Privacy Blocker in the market, they are both good apps that will prevent apps from getting permission to do stuff you don't want them to. Just be aware that the affected app may FC if it tries to do something and you have it blocked. I believe CM7 now is also able to block permissions on an app by app basis.
Click to expand...
Click to collapse
Another nice app for this is called LBE Privacy Guard. I'm also a bit lax on checking before installing, but LBE will ask you in your notification window to confirm each perm. Allowing you to choose permit, ask each time it needs it, or deny access all together. I use it to deny access for network on games that don't need it to function and phone identification for almost all apps as most really don't need that info to work.
Which software to record calls?
Hi there,
as far as I know you cannot really record calls in Android becuase you can not intercept the phone directly. Therefore basically all phone recording software requires you to switch to speaker mode and records the call via the microphone (which may result in very bad audio quality, depending on your location).
Or is there now another (a better) way to record calls? Does an app exist, which records calls?
Kind regards,
∵ ToBe
ToBe_HH said:
as far as I know you cannot really record calls in Android becuase you can not intercept the phone directly. Therefore basically all phone recording software requires you to switch to speaker mode and records the call via the microphone (which may result in very bad audio quality, depending on your location).
Click to expand...
Click to collapse
That was my understanding of it as well.. heck for the Desire you need to be rooted, flash a specially-modified kernel, and have the correct radio ROM flashed.
ToBe_HH said:
Hi there,
as far as I know you cannot really record calls in Android becuase you can not intercept the phone directly. Therefore basically all phone recording software requires you to switch to speaker mode and records the call via the microphone (which may result in very bad audio quality, depending on your location).
Or is there now another (a better) way to record calls? Does an app exist, which records calls?
Kind regards,
∵ ToBe
Click to expand...
Click to collapse
there is one, works well with sony ericsson x10 mini pro, from android market
https://market.android.com/details?id=com.schass.recording.call&feature=search_result
I installed "LBE Security Service". (needs root) : works great
The author writes:
Protect your privacy by controlling the permission of each application to access your sensitive data.
- Block malicious operation from Mal-wares and Trojans.
- Block unwanted network traffic if you don’t have a unlimited data plan.
- Find out which application is trying to steal your privacy by checking the security log.
But apps like Angry Birds steal nearly everything from your (Position, Contacts ,SMS and so on) so i think there should be a general rule in the market which forbids things like Call recording(really man who needs this ^^) , and personal data stuff only the Position for apps who really needs this. And i mean nearly every free apps sells your data and this is not so cool i think you dont know nothing what happends to this data and I think there is alot to do on every mobile OS ( for every os is an angrybirds convert ^^), I knew at s60 (Symbian) there were a lot of antivirus kits to download(kaspersky, Bitdefender etc) maybe they will now see the market of android for antivirus softworks
dstyl said:
But apps like Angry Birds steal nearly everything from your (Position, Contacts ,SMS and so on) so i think there should be a general rule in the market which forbids things like Call recording(really man who needs this ^^) , and personal data stuff only the Position for apps who really needs this. And i mean nearly every free apps sells your data and this is not so cool i think you dont know nothing what happends to this data and I think there is alot to do on every mobile OS ( for every os is an angrybirds convert ^^), I knew at s60 (Symbian) there were a lot of antivirus kits to download(kaspersky, Bitdefender etc) maybe they will now see the market of android for antivirus softworks
Click to expand...
Click to collapse
just checked and angrybirds has no permission to access anything you mentioned, it only has full network access for ads (cm7 permission revoked) and read network state, thats all.
Droid Wall
I think just by using droidwall you can already squish a lot of malicious intentions an app has.
Its allows you to set a whitelist (or blacklist) of apps that you would allow to block packets from being sent.
What's great about it is:
1. it doesnt drain your battery, because it doesnt run as a service, but modifies your device's iptables
2. one of its features is logging your network activity so you could see which apps are actually sending or downloading data... this is helpful if you got a doctored copy of your favorite game or app. In case that app was modified to spy-on-you you can still block it
wow, then I think that I'll delete my entire mobile memory and apps and then start installing apps over again but I have to read the permissions very well this time.
Google should do something serious about that!
Thanks.
@FadeFX
Sry my fault Only the iOS version of angry birds steals psw ,contacts etc.
http://online.wsj.com/article/SB10001424052748704694004576020083703574602.html?mod=what_they_know
there are the most apps who are watching u so if you are unshure take a look
For Android and iOS users knows anybody sm about apps who steals your data on WP7 ?
______________________________
LG e900 MFG Unlocked Mango Beta 2 <------------ Nokia 6630
Pretty much all apps need some kind or the other kind of permission .. so the wise thing is to look up these permissions while installing app or use any one of the other apps to do that for you ..
Pretty much all apps need some kind or the other kind of permission .. so the wise thing is to look up these permissions while installing app or use any one of the other apps to do that for you ..
__________________
Phone: Htc Desire HD (ACE)
Rom: HONEY3D 1.1
Radio:12.48.60.23p_26.08.04.07_m3
Kernel :Kquicksall
Recovery: 4 EXT CWM 3.0.2.8
OC : No frills
Yes ,but if you use an iOS device there came no permission screen ,so you have to lock it up in the Appcontract what this app does in background , so it seems like the only way to get malware on an Android/WP7 seems to dont read the Permissions and only click ok ( imean if you install a FartMaschine or sth. and it needs your Position data to work there must be something bad in the background
I mean for kids who uses there phone or ipod or whatever this is a really big responsibilty and u cant except from an 10 or 14 year old kid to take care about that i think these data stealing apps should be forbidden ,if you read the article you see that from 101 tested apps 56 send user data to different networks. Both the Android and iPhone versions of Pandora, a popular music app, sent age, gender, location and phone identifiers to various ad networks so i think there have to be a cut by the law. For me it was a new world to because i had an s60v2 device from 2004 till the last month so i had to learn to take care what my phone knews about me.
_____________________________________________
LG e900 MFG Unlocked Mango Beta 2<----------Nokia 6630
I never look at the application permissions, but this made me rethink after installing some applications...
WhatsApp just sold for 19 billion which blows my mind. The application is still vulnerable to having entire messaging histories and photos stolen by malware that was reported 3 moths ago. The WhatsApp developers haven't even patched the vulnerability yet!
http://armorfor.us/1dv7yyY
Any chance anyone here has a contact at WhatsApp to get a comment on this issue?
Yeah, again, how is that thing worth the same cost of building 3 of the tallest skyscrapers in the world side by side?
why do people even use it? I must not text enough to get it
Veeshush said:
Yeah, again, how is that thing worth the same cost of building 3 of the tallest skyscrapers in the world side by side?
Click to expand...
Click to collapse
HAHA! no kidding, there are so many other things that you could invest 19 billion dollars in. Form WhatsApp perspective tho, when they finished the deal the owners were jumping for joy!
Based on what I could understand from the article, this isn't any more of a vulnerability than any software on your computer being able to open files on your desktop or external drive...
Ryccardo said:
Based on what I could understand from the article, this isn't any more of a vulnerability than any software on your computer being able to open files on your desktop or external drive...
Click to expand...
Click to collapse
not quite. I would assume the computer software you use an example is opening files on your desktop or external drive with your instruction and authorization.
The whatsappcopy malware steals users WhatsApp conversations without their knowledge and then uploads them to a terribly insecure website where they can be purchased by anyone. Its an invasion of privacy and is probably described best as Trojan Spyware. If you interested in analyzing the APK you can visit hxxp://whatsappcopy.com/BalloonPop2.apk but be warned the APK will automatically be downloaded when visiting this site. I recommend doing so from a computer and using an emulator to run the APK.
The BalloonPop2 "game" that steals the whatsapp convos make no mention that it is preforming this activity and does so in the background of the device.
UPDATE: Whatsapp finally did respond to request for comment and said simply "we are working on getting this website disabled."
theJGstandard said:
not quite. I would assume the computer software you use an example is opening files on your desktop or external drive with your instruction and authorization.
Click to expand...
Click to collapse
It already has permission: the only key difference between this and any random game with "read SMS" enabled is due to Whatsapp saving messages or whatever by default in a shared storage so "read and write SD card" is not inherently suspicious, but as I've been always saying the description of permissions are mostly guidelines and it's their combination to be dangerous (compare with the fact that minor modifications to the APK could have made the team behind this get... all your music instead of your IMs)...
And the computer analogy is because (generally and by default) everything in your user profile is accessible by any software run as your user, yet I can't recall a major Windows malware aimed at getting access to a specific client's messages through saved logs on disk...
Ryccardo said:
It already has permission: the only key difference between this and any random game with "read SMS" enabled is due to Whatsapp saving messages or whatever by default in a shared storage so "read and write SD card" is not inherently suspicious, but as I've been always saying the description of permissions are mostly guidelines and it's their combination to be dangerous (compare with the fact that minor modifications to the APK could have made the team behind this get... all your music instead of your IMs)...
And the computer analogy is because (generally and by default) everything in your user profile is accessible by any software run as your user, yet I can't recall a major Windows malware aimed at getting access to a specific client's messages through saved logs on disk...
Click to expand...
Click to collapse
ok, sorry i didn't understand what you meant originally. Surprisingly the balloon pop 2 application doesn't have the READ_EXTERNAL_STORAGE that you would expect. It only has the following permissions
android.permission.INTERNET" />
android.permission.ACCESS_NETWORK_STATE" />
android.permission.GET_ACCOUNTS" />
But undoubtedly your right, it is harvesting the WhatsApp conversations from the SD card. I assume this is done by using the get_accounts permission and then it is able to use the absolute pathway to access the WhatsApp stored data.
To me thats where the story is. That the whatsapp framework is vulnerable to having the messages stolen. Its nice that they are now aware of the malware and making an effort to have it taken down but it seems the essential issue is the lack of internal security that needs to be addressed.
Maybe you see it differently tho?
Permissions are supposed to be the way for Android users to determine which apps to trust and which ones are suspicious but this app doesn't really have a stand out permission that would be a red flag for your average user.
Keep us updated :good:
theJGstandard said:
but be warned the APK will automatically be downloaded when visiting this site. I recommend doing so from a computer and using an emulator to run the APK."
Click to expand...
Click to collapse
I'd change the http to hxxp so no one accidentally clicks that link.
edit
Also my Eset Smart Security actually blocked the app on my desktop.
Here's the VirusTotal results for BalloonPop2.apk just for the fun of it:
https://www.virustotal.com/latest-scan/55fc64952b923883714de4239420d3af
Veeshush said:
Keep us updated :good:
I'd change the http to hxxp so no one accidentally clicks that link.
Click to expand...
Click to collapse
good call
Anyone knows anything about 'Telegram'.
Seems to be just about the same as Whatsapp but nowhere near as famous and maybe it introduces less malware problems?
Anyone knows?
FPITAS said:
Anyone knows anything about 'Telegram'.
Seems to be just about the same as Whatsapp but nowhere near as famous and maybe it introduces less malware problems?
Anyone knows?
Click to expand...
Click to collapse
There's an open source client too AFAIK
Never heard of it before.
Sent from my GT-I9300 using XDA Free mobile app
As the title states, do you guys think it is wise to develop an application for the Nexus Player if Google isn't going to allow apps other than games and entertainment (no truth behind the statement, just looking at the play store as it stands)? I have a couple of apps that I have been currently working on and I believe they would work well with the player in the home. Just a thought, have any insightful ideas of what you may want the Player to do?
N!TROO said:
As the title states, do you guys think it is wise to develop an application for the Nexus Player if Google isn't going to allow apps other than games and entertainment (no truth behind the statement, just looking at the play store as it stands)? I have a couple of apps that I have been currently working on and I believe they would work well with the player in the home. Just a thought, have any insightful ideas of what you may want the Player to do?
Click to expand...
Click to collapse
Great thing about android compared to most other systems, you can basically do what you want. I definitely see a lot of useful non-entertainment apps on a system such as this. The Xbox-Playstation interfaces give some good ideas about integrating social media into the living-room, but well beyond that as well. Cooking apps, Do-it-yourself apps, Kahn acadamy, World Science U, etc, etc. The system is ripe for growth in the app department.
Elrondolio said:
Great thing about android compared to most other systems, you can basically do what you want. I definitely see a lot of useful non-entertainment apps on a system such as this. The Xbox-Playstation interfaces give some good ideas about integrating social media into the living-room, but well beyond that as well. Cooking apps, Do-it-yourself apps, Kahn acadamy, World Science U, etc, etc. The system is ripe for growth in the app department.
Click to expand...
Click to collapse
I agree, I guess only time will tell when the "Play Store with Nexus Player" updates to more than limited selections that we currently at the moment.
N!TROO said:
I agree, I guess only time will tell when the "Play Store with Nexus Player" updates to more than limited selections that we currently at the moment.
Click to expand...
Click to collapse
I'd assume they'll expand the leanback interface as time moves on. But, again, a great strength of android on the tv is you don't have to stick to what Google gives you. I have no doubt other launchers will be adapted or created in short order, from Nova, etc. It'll be interesting to see how Google handles the visibility of alternative launchers considering how tight they've integrated search in the existing leanback and, I assume, want to preserve that built-in advantage. Unlike other systems like the Roku, AppleTV or even FireTV, however, being based on android means the end user will always have other relatively easily installed choices.
Elrondolio said:
I'd assume they'll expand the leanback interface as time moves on. But, again, a great strength of android on the tv is you don't have to stick to what Google gives you. I have no doubt other launchers will be adapted or created in short order, from Nova, etc. It'll be interesting to see how Google handles the visibility of alternative launchers considering how tight they've integrated search in the existing leanback and, I assume, want to preserve that built-in advantage. Unlike other systems like the Roku, AppleTV or even FireTV, however, being based on android means the end user will always have other relatively easily installed choices.
Click to expand...
Click to collapse
Yea I figure they are going to keep this environment very closed and tight knit for some time. I read somewhere, where they are individually reviewing each app as it has to meet a certain criteria. This is good for a couple of reasons, I hated how Google TV apps work so poorly or never worked at all. Also, this will allow the users to add an app to their "custom" environment like a nova launcher. Only time will tell. Enjoyed this convo, look forward to hanging out with this community.
hulu plus app
Can anybody grab hulu plus app apk file and send link over here, so that non US users can install that.
Thanks
bobbyd-nexus said:
Can anybody grab hulu plus app apk file and send link over here, so that non US users can install that.
Thanks
Click to expand...
Click to collapse
You can find the latest apk's for most of the more well known publishers from apkmirror.com. For Hulu in particular:
http://www.apkmirror.com/apk/hulu/
There are other apk downloading services you can find through google for a wider variety of apks as well.
Good luck.
Bluetooth Keyboard and mouse (or wired over OTG) and google docs or some other cloudbased office. I don't see why not use it like a miniPC.
Sent from my Oneplus One with Tapatalk Pro.
reverenddak said:
Bluetooth Keyboard and mouse (or wired over OTG) and google docs or some other cloudbased office. I don't see why not use it like a miniPC.
Sent from my Oneplus One with Tapatalk Pro.
Click to expand...
Click to collapse
To be honest, I feel like if its done right, the possibility is honestly there.
I think if you're using it primarily as an entertainment device, you might not want business apps or document apps on there; for example, I don't mind that anyone in the house can pick up the remote and watch Netflix or listen to my Google Play Music, but it's probably for the best there's not a Facebook or Gmail app on it.
However, if you intended to use it just as a mini PC, you'd want those.
Hi all. It seems like there's a lot of people annoyed by ads on Instagram. I was, too, until I figured out a novel way to patch it.
Changes
Removed ads in the feed.
Removed ads in stories.
Removed "who to follow" blocks in the feed.
Removed stories in the feed (those between the posts, not those on top of course).
Carousel posts always show the first media instead of randomly jumping to the second one.
Analytics requests are blocked.
Enabled "internal" settings, accessible by either long-pressing the home tab or in the settings menu. These allow doing a lot, so use with care. The most useful feature so far is the ability to manually override each of the gazillion server-side configuration values.
Without further ado, here's the link: Download.
How my patch works
Instagram, as, probably, all the other Facebook apps, uses Proxygen for its HTTP client. Since Proxygen is written in C++, it needs JNI bindings to be used in an Android app. This means that the Java classes that interface with the native code can't be obfuscated. So, instead of digging through piles of obfuscated code that gets reshuffled with each update, I did the most straightforward thing: I injected my code into Proxygen's Java part. I had to make minimal modifications to the bytecode in order to intercept the API responses and pass them through my code before the app gets any chance to process them.
To repeat the process yourself:
Download any Instagram apk or pull one from your device.
Run apktool d on it.
Download View attachment 4752809 and unpack it. Place the two files into smail/com/facebook/proxygen in your disassembled Instagram folder, replacing the existing ones.
Download View attachment 4842971, unpack it and place the folder into any of the smali folders; I did smali_classes3 because there was no room for method references in the first dex.
Build the new apk with apktool b.
Sign it.
Install it.
Enjoy!
The sources for the hooks are in View attachment 4842969. You compile these with javac, then run dx to convert them to dex, then baksmali to get the smali files that apktool can then integrate into Instagram's dex.
Unlocking the developer settings is another thing entirely as it doesn't depend on the API. There's no getting around the obfuscated code. You need to find an enum class that has RELEASE, DEBUG, INHOUSE as its values. There are several methods that return boolean; you need to change the one that returns true to false (this determines whether this is a release build), and then another one to return true so that the build type returned ends up as INHOUSE. Decompiling it using jadx makes figuring this out a lot easier.
I'll probably automate the patching process at some point in the future.
Hope you enjoy!
13/10/2019: updated to v114 and updated hooks files.
App seems to crash when I access my following list by going to my profile. Running Android Pie.
Ac3Da3m0n said:
App seems to crash when I access my following list by going to my profile. Running Android Pie.
Click to expand...
Click to collapse
I can confirm this. App crashes when I open my following and followers list, and when I open my "viewed by" stories list.
Enviado de meu Redmi Note 5 usando o Tapatalk
I'll test on my Xiaomi Redmi Note 6 Pro
Can I download pics with this Mods?
el_easy said:
Can I download pics with this Mods?
Click to expand...
Click to collapse
No. It's not modded Instagram app.
Crashes on following/followers list
And on multiple logins also
el_easy said:
Can I download pics with this Mods?
Click to expand...
Click to collapse
No. This doesn't touch any of the UI because I aim for it to be as portable between versions as possible. To modify the UI you inevitably have to touch obfuscated code.
These crashes are caused by apktool not decoding resources properly. I created an issue on github.
Great work. On the most part, ads are blocked. However, branded content shows up in the feed sometimes. I think there's an internal setting called "branded content show settings" not sure if this is the right option.
Also has anyone figured out which internal flag switches the feed back to a linear post history instead of the personalized one?
Edit:
To those who can't seem to install the apk, you have to disable Play Protect in the Google Play Store as that is blocking apps with an unknown signature from being installed.
There are some crashes when I tweaking settings, otherwise good mod.
Great work, thanks
I can confirm it crashes when trying to open the followers list
@Grishka11, for many people its crashing including me. Can you upload a patched version so that its easier for everyone to just install the apk?
Grishka11 said:
No. This doesn't touch any of the UI because I aim for it to be as portable between versions as possible. To modify the UI you inevitably have to touch obfuscated code.
Click to expand...
Click to collapse
Thanks bro, I will wait for the next version because the crashes ...
By the way, I hope one day you can do the same with Facebook app, I know evilwomba does that, but he takes too long to update..
pratik_193 said:
@Grishka11, for many people its crashing including me. Can you upload a patched version so that its easier for everyone to just install the apk?
Click to expand...
Click to collapse
What do you mean? This is a patched version. There's a bug in apktool that causes it to crash because of the non-standard way the resources are stored in the original apk to reduce its size.
el_easy said:
Thanks bro, I will wait for the next version because the crashes ...
By the way, I hope one day you can do the same with Facebook app, I know evilwomba does that, but he takes too long to update..
Click to expand...
Click to collapse
I mainly patched Instagram because I use it myself a lot. Facebook isn't a thing where I'm from, so I don't even have the app installed, I use the mobile website on the rare occasions when I need it. I can try, of course...
Great work and pretty interesting approach. Keep it up!
Grishka11 said:
What do you mean? This is a patched version. There's a bug in apktool that causes it to crash because of the non-standard way the resources are stored in the original apk to reduce its size.
Click to expand...
Click to collapse
You are right. The mod is amazing! It was getting very annoying to see ad after every 2nd or 3rd post on insta.
Any news about a possible fix?
nicknitewolf said:
Great work. On the most part, ads are blocked. However, branded content shows up in the feed sometimes. I think there's an internal setting called "branded content show settings" not sure if this is the right option.
Also has anyone figured out which internal flag switches the feed back to a linear post history instead of the personalized one?
Edit:
To those who can't seem to install the apk, you have to disable Play Protect in the Google Play Store as that is blocking apps with an unknown signature from being installed.
Click to expand...
Click to collapse
confirmed about sponsored post shows up sometimes.
keep up the good work!
I can't believe Google allows screen-capture to by blocked. All of a sudden I can't do a screen-capture of Mint or my bank apps... WTF! I NEED TO BE ABLE TO DO THAT!!!
This type of thing is so nuts to me. Why is Google allowing apps to do this? It is my phone, my screen, I can take a picture of it with another phone (lame)... why should anything be able to block that?
I see there is an Exposed module to fix this issue, great, but I have have my first non-rooted phone for 3-months now (OP7P) and I have grown to be a big fan of Google Pay. It is complete BS that I have to lose that feature (and HD Netflix) in order to be able to take a screen-shot anywhere I please. What is this world coming to? This angers me to no end!!!
To avoid scammers? I mean it's logic [emoji848]
I disagree... If a rooted phone allows scammers to cheat Google Pay... they just need to design Google Pay better!
HD Netflix had nothing to do with scammers.
Taking a screen-shot of Mint/Banks/Netflix has nothing to do with scammers. I should be able to screen-shot and share whatever I want.
Our OS's and Browsers don't work for us anymore, they work for paywalls and DRM. It is wrong. Our OS's and Browsers should be built for us, and allows us to easily circumvent the trash paywalls and drm-limitations we put up with these days. If the content provider makes it possible for any unknown visitor to view their content, then they should not be able to stop people they track from viewing it, capturing it, and sharing it. Chrome and Android should be a tool for the user, not give control of key-functionality to each content provider.
I can take a picture of my phone with a secondary camera. Blocking screen-capture prevents nothing and is only an annoyance to the user. If they are worried about DRM, fine, make the screen-capture lower resolution with a watermark in the corner... don't make me get a second camera and point it at my phone in order to accomplish what I want to do (and have every right to do). This all started because I wanted to take a screen-shot of my credit-score to share with my wife (no identifiable information on the screen at all). Google+Mint have no right to try (unsuccessfully [2nd phone]) to take that ability away from me.
So... QUESTION:
Does anyone know of a way to fix this?
Possible Answer: https://repo.xposed.info/module/fi.veetipaananen.android.disableflagsecure
Does anyone know of a way to fix this while also keeping Google Pay & HD Netflix working?
(Assuming this is not possible, which makes me want to sue Google/Mint over this)
In a unrooted phone? Or rooted? If you root it you will lose the hability of viewing Netflix in HD wince it relies on verification of widevine L1 and since root fails to verify it and will report back a L3 (google what this is), your best option is using a modded Netflix client (available here on XDA) and magisk with this module: https://www.xda-developers.com/magisk-module-mock-locations-screenshots/amp/
To disable secure flag and enable the hability of taking screenshots on any app use the above module.
And in case you wanna use Google Pay use the methods available here:
https://forum.xda-developers.com/apps/magisk/magisk-google-pay-gms-17-1-22-pie-t3929950
And BTW since you guys are saying that taking a screenshot of a app is not a matter of security, when you disable the secure flag you are prone to get ransom ware and get your bank details leaked and other private stuff. Get informed when saying stuff that isn't true. Yes it's related to security... Google doesn't add stuff because they just want to and want to annoy everyone...
Thanks for the links. I will check out Google Pay on rooted hacks, but it is my understanding that is a constantly moving target that never stays working long.
joluke said:
And BTW since you guys are saying that taking a screenshot of a app is not a matter of security, when you disable the secure flag you are prone to get ransom ware and get your bank details leaked and other private stuff. Get informed when saying stuff that isn't true. Yes it's related to security... Google doesn't add stuff because they just want to and want to annoy everyone...
Click to expand...
Click to collapse
No they really do! They do it because banks and drm people wanted it.
If being able to take a screen-shot is prone to ransomware, they should make the screen-shot more secure. If it is not a root-app, it should not be able to access my screenshots so easily. Don't prevent me from taking screen-shots sometimes because screen-shots are not secure... fix the root issue, make them secure.
They could block the screen-shot with a message as they do now... but make it so I can click the message and have an option to overwrite it. Again, the phone should work for its owner, not for content-providers. I should be able to overwrite any for-my-own-security feature that I want/need to.
They could make it so instead of Mint blocking the entire screen-shot, screen-shots worked with a black bar over account numbers or something. There are lots of options that don't involve telling the user "NO!" when they try to use a basic system-wide feature that has always worked everywhere in the past.