[Q] App Firewall - provide fake authorized access data? - Android Software/Hacking General [Developers Only]

Hi guys,
I have an idea against access-hungry apps on Android, since Android is so open, why don't we make an access emulation layer, if an trivial app asks for SMS and Contacts access, grant it, but you can feed fake data to it whatever you want, sort like a firewall to malicious apps.
This would involde several API hooks, is this idea plausible?
There is already something similar on iOS Cydia: Protect My Privacy

Not exactly what you invision but check out LBE Privacy Guard or PDroid Privacy Protect in Play Store. They both make fake response to privacy requests from apps such as Phone ID, Contacts, etc...

Related

password protect applications

is therea ny app that can perhaps let me passwrd protect certain apps such as i only want that i be asked for a password when i open Messaging.. any software out there that does just that? better if its free

[Q] Vicious Trojan: heur:Backdoor.AndroidOS.Wateh.a

I am begging for someone to help me.
I am not tech savvy, and wish to ask if anyone knows about this trojan, heur:Backdoor.AndroidOS.Wateh.a?
I have a nook hd +, six months old and I somehow got this trojan on my internal memory. I did a search of the forums but there is hardly anything yet, on these trojans, as a family. What are they?
I did a hard reset of my nook hd+ after running Kaspersky internet security. It was Kaspersky that finally named the virus for me.
I had 360 antivirus before and tried to clean the system with that, but could not do anything since it said that the virus could not be uninstalled.
I tried other free antiviruses which all stated the same thing.
My nook keeps rebooting in five minute intervals, I work a lot in the cloud, have I contaminated all of my cloud storage accounts?
A google search turns up nothing on this virus. What can I do to save my nook hd+?
Thank you, for your efforts!
Trojan:
Nook Demo: Version:3.4.1.2 Size:60K Security Level: Danger! This difficult trojan that steals my personal information has now been flashed into my Nook HD+'s ROM. Please see the screen shot of my antivirus Quihoo 360's diagnosis. Please suggest something, anyone who has knowledge.
Vicious Trojan: Help, Please! It has now flashed to the ROM
The trojan virus referenced above, has now flashed into my Nook hd+'s ROM. It is the same trojan as above, named, heur:Backdoor.AndroidOS.Wateh.a
Under my Quihoo 360 Antivirus, it is showing up as Nook Demo: Version:3.4.1.2
The heur:Backdoor designation is from when I had Kaspersky installed.
The 360 Antivirus has revealed some stats on this trojan. I just can't figure out how to upload the screen shot.
Please, help!
The 360 Antivirus diagnosis looks like this:
Nook Demo
Version:3.4.1.2 Size:60K
Security Level: Danger
[Behavior]
Forced autostart
Forced internet connection
Steals user's personal information
Uses risk permissions that do not comply with the software attributes
[Permission]
Your Personal Information:
add or modify calendar events and send emails to guests without owner's knowledge, read Browser's history and bookmarks, read sensitive log data, read your profile data, write Browser's history and bookmarks, write contact data, write your profile data.
Development Tools:
make all background applicatons close, send Linux signals to applications.
Services That Cost You Money:
directly call phone numbers, send SMS messages.
Your Location:
coarse (network-based) location, fine (GPS) location.
Your Messages:
edit SMSor MMS, read SMS or MMS, receive MMS, receive SMS.
Network Communcation
control Near Field Communication, create Bluetooth connections, full internet access, make/ receive internet calls.
Your Accounts
manage the accounts list, use the authentication credentials of an account.
etc, etc...
Vicious Trojan:
Would rooting this Nook get rid of this problem safely?
Obviously, I cannot backup this trojan flashed device.

Marshmallow permission management - better for invasive apps like Wechat?

Hello,
I have lots of family who use Wechat, and it's a great app. I'd like to install it on my main phone. But I'm afraid of how invasive it is. The first time I did it it read my address book. It automatically contacts people who have my phone number in their address book. It's just really annoying. But also it's a great app with useful features.
Does the new Marshmallow Android app permission system make it easier to manage these types of invasive apps? For example, prevent it from using contact list? I haven't found a good way to setup wechat without giving it my phone number, so there's that issue that can't be solved.
Thanks.

How to block internet connections for specific apps?

Hi, I have a Samsung Galaxy S8+ which I purchased 3 or 4 months ago but I have never used it.
The device has been stored in a drawer because the first time I logged in I could not find a way to block Internet access for specific applications.
Now I would like to start using the device, but only if I can block Internet access (mobile data AND Wi-Fi) for specific applications.
I do not want to allow Internet access to applications like Contacts, Messages, Goople Play Store, Google Play Services, Gallery, etc., etc., etc.
So the question is:
How can I block Internet access (both mobile data and Wi-Fi) to all the applications I choose to? I am not talking about third party apps like firewalls... I want to block Internet access using the built-in (stock) apps/features/whatever... I mean by making use of the options that the device has by default.
Thanks in advance!
No there's no way to limit one app from getting to the Internet built into the phone. You could turn off the sync settings for some of them like Contacts, Gallery, etc.
I have to ask, why does it matter if those apps can get to the Internet? I mean how do you expect to install apps if you were able to block the Play Store?
Un-sync is the only thing you can do, https://play.google.com/store/apps/details?id=eu.faircode.netguard&hl=en is the other option.
What do you mean you can't? What about adhell2? As far as I know, it has internet permission for individual apps, and it doesn't need root...?
mjones73 said:
No there's no way to limit one app from getting to the Internet built into the phone. You could turn off the sync settings for some of them like Contacts, Gallery, etc.
I have to ask, why does it matter if those apps can get to the Internet? I mean how do you expect to install apps if you were able to block the Play Store?
Click to expand...
Click to collapse
Many of those apps have permissions like "storage", "phone ID", "contacts", "calendar", "camera", "microphone", etc...
Therefore, when those applications are given Internet access they will be able to send all our data via the Internet ...
That's why it's so important to block them having Internet access.
For example, if an application has access to your data, to your storage or your contacts, it stands to reason that it should not have Internet access...
Google or any other companies are not my tutor or my parents (I'm old enough to have grand children). They should not have, simultaneously, access to my storage data, contacts, calendar, and Internet access to send out all those data and info...
My son has a Huawei P10 and that device allows the user to block Internet access to specific apps.
So if this Samsung device does not have a way to limit specific apps from getting to the Internet, then the phone is a spyware device...
With the due respect, only a completly fool would use such a compromised device.
Note: my biggest problem is not Google Play Store because it's an app which I could use without allowing permissions like "storage", "contacts", and such. But I don't use Google Play Store. I use F-Droid and (if needed) Yalp Store.
Niccolò Paganini said:
Many of those apps have permissions like "storage", "phone ID", "contacts", "calendar", "camera", "microphone", etc...
Therefore, when those applications are given Internet access they will be able to send all our data via the Internet ...
That's why it's so important to block them having Internet access.
For example, if an application has access to your data, to your storage or your contacts, it stands to reason that it should not have Internet access...
Google or any other companies are not my tutor or my parents (I'm old enough to have grand children). They should not have, simultaneously, access to my storage data, contacts, calendar, and Internet access to send out all those data and info...
My son has a Huawei P10 and that device allows the user to block Internet access to specific apps.
So if this Samsung device does not have a way to limit specific apps from getting to the Internet, then the phone is a spyware device...
With the due respect, only a completly fool would use such a compromised device.
Note: my biggest problem is not Google Play Store because it's an app which I could use without allowing permissions like "storage", "contacts", and such. But I don't use Google Play Store. I use F-Droid and (if needed) Yalp Store.
Click to expand...
Click to collapse
I was gonna say maybe use tinfoil around your phone . If you decide you want to use internet on a specific app remove the foil. But IDK if it'll work though.
dalanik said:
What do you mean you can't? What about adhell2? As far as I know, it has internet permission for individual apps, and it doesn't need root...?
Click to expand...
Click to collapse
Hmm i'll have to look into that.
eddyo1993 said:
I was gonna say maybe use tinfoil around your phone . If you decide you want to use internet on a specific app remove the foil. But IDK if it'll work though.
Click to expand...
Click to collapse
Couldn't he just keep the phone in his tinfoil hat?
Mr. Orange 645 said:
Couldn't he just keep the phone in his tinfoil hat?
Click to expand...
Click to collapse
Yes he can. He can call it a phone accessory.
Take a look at "Datally: mobile data-saving & WiFi app by Google"
https://play.google.com/store/apps/details?id=com.google.android.apps.freighter
Sent from my SM-G955F using Tapatalk
gesbon said:
Take a look at "Datally: mobile data-saving & WiFi app by Google"
https://play.google.com/store/apps/details?id=com.google.android.apps.freighter
Sent from my SM-G955F using Tapatalk
Click to expand...
Click to collapse
If Datally allows control that'd be great. You can control an apps permissions, but none are directly internet.
Niccolò Paganini said:
Many of those apps have permissions like "storage", "phone ID", "contacts", "calendar", "camera", "microphone", etc...
Therefore, when those applications are given Internet access they will be able to send all our data via the Internet ...
That's why it's so important to block them having Internet access.
For example, if an application has access to your data, to your storage or your contacts, it stands to reason that it should not have Internet access...
Google or any other companies are not my tutor or my parents (I'm old enough to have grand children). They should not have, simultaneously, access to my storage data, contacts, calendar, and Internet access to send out all those data and info...
My son has a Huawei P10 and that device allows the user to block Internet access to specific apps.
So if this Samsung device does not have a way to limit specific apps from getting to the Internet, then the phone is a spyware device...
With the due respect, only a completly fool would use such a compromised device.
Note: my biggest problem is not Google Play Store because it's an app which I could use without allowing permissions like "storage", "contacts", and such. But I don't use Google Play Store. I use F-Droid and (if needed) Yalp Store.
Click to expand...
Click to collapse
I guess I'm a fool because I don't care if Google is syncing my data so I could also get to it from my account via my PC..
Maybe you should stick to a Huawei P10 or a flip phone I guess...
Funniest thing ever!! He is complaining that his son can block internet access on his Huawei device, and then complains that his Samsung cannot due the same and therefore is a spyware device. EVEN THOUGH HUAWEI HAS BEEN PROVEN TO BE SPYING ON US CITIZENS BY THE FBI!! Like if u actually cared about your privacy you would stick with Samsung and stay far far away from Huawei
If you have root, use any firewall app available on Playstore such as AFWall+ or Droid Firewall
Niccolò Paganini said:
Many of those apps have permissions like "storage", "phone ID", "contacts", "calendar", "camera", "microphone", etc...
Therefore, when those applications are given Internet access they will be able to send all our data via the Internet ...
That's why it's so important to block them having Internet access.
For example, if an application has access to your data, to your storage or your contacts, it stands to reason that it should not have Internet access...
Google or any other companies are not my tutor or my parents (I'm old enough to have grand children). They should not have, simultaneously, access to my storage data, contacts, calendar, and Internet access to send out all those data and info...
My son has a Huawei P10 and that device allows the user to block Internet access to specific apps.
So if this Samsung device does not have a way to limit specific apps from getting to the Internet, then the phone is a spyware device...
With the due respect, only a completly fool would use such a compromised device.
Note: my biggest problem is not Google Play Store because it's an app which I could use without allowing permissions like "storage", "contacts", and such. But I don't use Google Play Store. I use F-Droid and (if needed) Yalp Store.
Click to expand...
Click to collapse
Hello, i have same concerns with you. Have you find solution to this problem ?
Stock Samsung Apps like samsung music, calendar, camera etc. sending information to internet. I don't want this.
I used to use lineage os before, and this process was so simple. But now i have a s10e. I can't block internet access per apps.
Jail break your phone for true control (definitely worth it), everything you need to know is online. Tin foil ???
Found any solutions? I'd really be happy to find a way to do this without rooting my s10e.
And if you're only solution is still tin foil and think it doesn't make any sense, buy yourself a brain before answering please.
Kojackk said:
Found any solutions? I'd really be happy to find a way to do this without rooting my s10e.
Click to expand...
Click to collapse
Grab Activity Launcher on the Play Store (the one by Adam Szalkowski) and search for "Manage App Data. You can restrict access to mobile data and wifi on a per-app basis.

Protect your privacy with Applock: Lock other apps your phone with a pin,pattern pass

You do not want anyone to be able to see sneak content on your phone. You need to protect information, privacy and prevent unauthorized access on the phone, Applock is a practical application for your phone.
Applock is an application with a simple interface but covers all the necessary functions to keep information confidential to users.
With the private lock app for Android, you can lock apps easily with pin codes, drawing passwords and fingerprints. You can optionally change the method to lock the application whenever you want. By downloading a security lock application, you don't have to worry about someone gains unauthorized access to your library application, banking application, etc.
Password locker app - fingerprint lock app[/URL] that can lock any application on your phone of your choice.
Lock all social networking applications, no one will be able to see sneak your private chats anymore.
Lock application system. System applications such as contacts, messages, collections, etc. can all be easily locked with one click.
All payment applications will have an extra layer of protection when you use Applock.

Categories

Resources