Firmware (made by Shanghai Adups Technology Co. Ltd) that "calls home" was found installed on chinese phones sold in US:
http://www.kryptowire.com/adups_security_analysis.html
SoNic67 said:
Firmware (made by Shanghai Adups Technology Co. Ltd) that "calls home" was found installed on chinese phones sold in US:
http://www.kryptowire.com/adups_security_analysis.html
Click to expand...
Click to collapse
Not just "Chinese" phones, else why are they contacting Google?
Well, at least my phone contacts Google because I have a Google account. I choose to allow that when I input my gmail address. I choose to trust Google with my contact lists and calendar and whatever. I choose when to update the apps or not.
This chinese spyware is embedded in firmware (trusted app, capable of escalation) and on a totally different level of what it can do, you could read it in the article. Or not. The article has even a comparison with a similar spyware from 2011:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
SoNic67 said:
Well, at least my phone contacts Google because I have a Google account. I choose to allow that when I input my gmail address. I choose to trust Google with my contact lists and calendar and whatever. I choose when to update the apps or not.
This chinese spyware is embedded in firmware (trusted app, capable of escalation) and on a totally different level of what it can do, you could read it in the article. Or not. The article has even a comparison with a similar spyware from 2011:
Click to expand...
Click to collapse
No I mean the security company Kryptowire are contacting Google, along with Blu. Does that mean a Google phone is affected or is it just as they have a sales channel? Probably the latter but it does raise a lot of questions about exactly & how much control they have of the manufacturing process across their supply chain. Whether it's the the actual phone or individual chips being programmed. And is there any attempt by companies that make products in places like China to check the phones that actually come off the line for compromises. I doubt it but it seems to be a security risk to me.
Of course we all have to trust someone or some company in some way as most things are not open. I to trust Google with much of my data & security.
(I have read several articles on this, but still not much info, all seem to be a rehash of the press release from Kryptowire)
Google code is not affected. This is part of the specific firmware that manufacturer puts in the phone and it is allowed to even be updated OTA.
Meanwhile if I root my device is considered "unsafe"... But that's the only way to see those files and act to remove them.
As much as I hate Apple, I am more and more tempted. At least they control all the manufacturing chain.
Can I load a custom firmware on my phone to eliminate this?
If you can unlock the bootloader, yes.
At the minimum you need root, to be able to disable/eliminate the software. The original article that I have linked has the details of the software names:
com.adups.fota.sysoper
com.adups.fota
Hi guys,
I knew that by now you have all heard about this news the Chinese budget android devices are secretly sending users’ data to China...
I thought I'll ask amongst the experts anyway how much of a thread could it actually be, as I'm a new P8 user (previously only had Samsung's)
What bothers me is the fact news comes from a private contractor to US govt which aren't really fair & square on the privacy issues in the first place, and apparently the 'feature' was 'accidental' discovered...really?!?
Considering the timing and situation on the market, seems to me to be a competition battle...but it's just my thought
Anyway...Do you think a simple root is enough to get rid of such 'back door' code?
Looking forward to your input
PS. articles available at:
http://www.theverge.com/2016/11/15/1...-text-messages
http://www.nytimes.com/2016/11/16/us...rity.html?_r=0
and original report http://www.kryptowire.com/adups_security_analysis.html
...and not two days later another news emerges... hehe just when some may have thought they are any different
https://interc.pt/2gkn4dz
M4ti said:
Hi guys,
I knew that by now you have all heard about this news the Chinese budget android devices are secretly sending users’ data to China...
I thought I'll ask amongst the experts anyway how much of a thread could it actually be, as I'm a new P8 user (previously only had Samsung's)
What bothers me is the fact news comes from a private contractor to US govt which aren't really fair & square on the privacy issues in the first place, and apparently the 'feature' was 'accidental' discovered...really?!?
Considering the timing and situation on the market, seems to me to be a competition battle...but it's just my thought
Anyway...Do you think a simple root is enough to get rid of such 'back door' code?
Looking forward to your input
PS. articles available at:
http://www.theverge.com/2016/11/15/1...-text-messages
http://www.nytimes.com/2016/11/16/us...rity.html?_r=0
and original report http://www.kryptowire.com/adups_security_analysis.html
Click to expand...
Click to collapse
who cares who finds it, so long as someone does. Rooting and deleting all the relevant files should work, I guess, but possible could cause some other issues, who knows.
Its pretty funny since most of the people reading those articles doesn't really understand it very well....people quickly jump into conclusion and think that Chinese Smartphone device secretly sending private information to China....
If you read the articles very carefully then you will realize that Shanghai Adups Technology Co. Ltd is a company that provide FOTA services, that means and manufacturers that use their services for OTA updates are likely to effected with the spyware not just Chinese Smartphone....their market share is exceeding 70% across over 150 countries and god know how many devices manufacturers & services operator have been using their services for OTA updates...
Related
Good news?
http://www.geek.com/articles/mobile/google-pays-12-5-billion-for-mororola-mobility-20110815/
hellmonger said:
Good news?
http://www.geek.com/articles/mobile/google-pays-12-5-billion-for-mororola-mobility-20110815/
Click to expand...
Click to collapse
I think it will be good for new motorola's devices but I think they wouldn't do anythink for our phone because of make an update cost money and they can't win by doing this because this phone is no more for sale.
I can't decide if this matters. On the one hand, we're now two corporate restructurings removed from a company that gave a **** about the XT720 (Motorola [small **** given] > Motorola Mobility [no ****s given] > Google [patent warfare]). On the other hand Google has legendary awful customer support. It seems like a heads Sanjay wins, tails I lose situation.
i'll say it's extremely good news
this should help improve Motorola's phone to have unlocked bootloader and stock AOS, without all the bloatware they always put on it
I don't suppose we'll receive an update for an unlocked bootloader, no? Probably not because it seems Motorola will continue to operate separately from Google
tharan.a said:
I don't suppose we'll receive an update for an unlocked bootloader, no? Probably not because it seems Motorola will continue to operate separately from Google
Click to expand...
Click to collapse
I've never seen any indication that Google disapproves of the bootloader lock. They do disapprove of the lack of updates, but I'm sure we missed the boat on that.
Mioze7Ae said:
I've never seen any indication that Google disapproves of the bootloader lock. They do disapprove of the lack of updates, but I'm sure we missed the boat on that.
Click to expand...
Click to collapse
Yes, couldn't have said it better myself. Most phones have support that barely lasts 2 years. I think this is the end of the XT720. On the brighter side, this will help google fight of apple and microsoft which were just trying to dominate the market with the patents. I see this as a good move for android/opensource as a whole!
With the capability to manufacture its own hardware, Google will be better equipped to take on the iPhone. That should be good.
Google World Domination Coming soon to a world near you.
Will be taken over within:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
3 years 124 days
Google needs Motorola to take over your living room
Google Evil Agenda
My original prediction:
Posted by Urgo at December 16, 2004 11:31 PM
"Don't Be Evil?" video - beta version
Google Xistence
For the past year now I've been predicting that within the next ten Google will 'take over the world'. Most people I tell this two think I'm crazy and this will never happen saying that Google is the best company ever and they will never turn evil. I tend to disagree.
Let me take just a few minutes to explain why I think this, and then at the bottom of this entry is a link to a flash video I found today with someone else thinking the same thing.
Facts - Google owns:
- Google is the most used search engine
- Gmail, while maybe not the most used email provider (maybe it is now?) it is definitely the most highly desired
- Orkut, while mostly blown over now is still a thriving social network site
- Google News is viewed as a #1 news site for many people
- Blogger is one of the leading blog sites and blogs are all over the news these days
- Keyhole offers a satalite imageing service
- Google Desktop Search
- Google Adsense - probably the most widly used advertising on the web these days (used even on this website although I haven't seen any return yet)
- And much much more, plus all the things normal people like myself have come up with such as the random google image in the right sidebar.
My point to all of this is the following:
Through GMail Google stores and never deletes your email. They catalog it and can do a LOT with that data. With time google can write robots to parse the data to find out every bit of data about you, who you know, what you talk about, etc. Gmail bundled with Orkut Google really has a solid grip on your social network with more detail and structure than email alone. Google knows who [email protected] really is, where he lives, what his passtimes are, etc and can link it up with your email conversations. Now to get even further into your life they have the Google Desktop Search which has already been called on being invasive bypassing security on people's PC's and cataloging files that it shouldn't.
Step back for a second, Google now knows who you know, what you talk about, details about every person, everything you say on your computer, what files you have, what is in each file, basically all of your Digital Data. Oh, also if you use the google search bar (IE plug-in) in advanced mode (default.. plus ohh! I want advanced features....) they track every webpage you go, although the desktop search tool does that as well. 0wned.
Next we start to see Google's current revenue. Blogs, Keyhole, Adsense. Wow, if the inflated stock doesn't make them enough $$$ then this sure helps. Although I don't believe Google charges for blogger right now they are setting themselves up for it in the future if blogging ever takes off as a legitimate news source... News.. Google news is one of the most used news services to gather news from many sources, sorted automatically for relevance...
Now, just think if Google DID want to turn evil (assuming they aren't already) how much of the market they already own. In the 90's people switched search engines all the time, but moving email providers, etc is a lot harder to do. In a few more years they'll have people so dependant on them and their products just like Microsoft people will be stuck with Google for better or.. worse.
More info on Google being evil is at google-watch.
Wow, well this was supposed to be a very short blog entry promoting a clip I saw today but I had to get my rant over with. Other then the Google-watch site that’s been around for a while, today on mefi I stumbled into a 10? min flash movie someone made giving a detailed rundown of a possible scenario that Google might take in the coming years towards world domination. I personally haven't come up with a scenario myself, and I am uncertain if this one is how its going to happen, but I was happy to see that others feel the same way as I do, that within the next ten years Google will takeover the world, or in this movie, the media forcing the New York Times offline.
Please take the time to watch this movie, and ignore the somewhat cheesiness of it. I really think they are being insightful and this COULD happen.
Flash Movie Of How Google Will Take Over The World
Google Plans To Kill Web In Internet Takeover Agenda
Google's Motorola Takeover Bid To Draw Antitrust Scrutiny, Analysts Say
I forgot that Motorola Mobility makes cable-top boxes. That's a plus for GoogleTV which I think is also Android based? Or is that Chrome based? I forget.
Today's android news keeps getting more and more interesting. First google and moto and now Cyanogen and Samsung.
"Steve Kondik, better known as Cyanogen, the father of CyanogenMod, has posted an interesting update to his professional life on his Facebook page. Steve, who has founded the largest family of custom Android ROMs on the planet, has just joined Samsung Mobile to presumably work on Android-related goodies for one of world's largest electronics manufacturers." -Android Police
(Can't post links yet, check Android Police)
Two developments which hopefully do nothing but improve the quality of the Android OS.
Good..Now Google control both software and hardware can make better opened source devices...stupid moto is dying , may google takes over and unlock all the moto build mobile deveice bootloaders
I was thrilled when reading about it. One of the main problems is that Moto seems to fail to optimize their hardware with the software. Meaning that, despite having powerful specs in several of their phones, it stills ends up being laggy and buggy. How is it that the Nexus S with its single core can outlag the Atrix? or even the Nexus One? resolution, graphics and processor needs to be better developed for usage.
Other than the bloatware, I find the Motorola developers really fail to take advantage of the specs and integrating it with Android.
Hopefully, the Moto and Google developers can get together and finally fix this problem. Specs mean nothing if the phone can't use it efficiently.
I'm pretty sure everyone will celebrate if Moto announces that they are switching to google stock, and turning motoblur into only widget apps, instead of a launcher apk. It still boggles my mind how companies can continue to push such applications, and this applies to Sony Ericcsons terrible Timescape app. it was already a trainwreck on the X10.
Hey just wondering how to get this crap of my phone. Don't want to be tracked in anyway.
WWW.carrieriq.com
Thanks in advance
How do you know its definitely installed? ..
Also I'm guessing your device is currently unrooted, which means chances are you won't be able to remove it. Unless you choose to root your phone.
Apart from that, the fact you have a mobile at all means you can be tracked ,just from the cell you are using to make or receive calls or txts
Excuse me sir, I seem to have misplaced my hat.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
zeekiz said:
Excuse me sir, I seem to have misplaced my hat.
Click to expand...
Click to collapse
I'm not paranoid ,just stating a fact .. Don't give a flying one who knows where i am lol
Lol sorry mate, that was actually directed at OP, not at you. I've never been overly worried as to location collection via my mobile phone(s), purely because pin pointing your exact location using the tower can be rather difficult.
det66 said:
I'm not paranoid ,just stating a fact .. Don't give a flying one who knows where i am lol
Click to expand...
Click to collapse
This information is used by our customers as a mission critical tool to improve the profitability of the network by invasion of privacy, understand device issues like imbedded spyware and ultimately improve the collection of user’s info. Our software is embedded by device manufacturers along with other diagnostic tools and software normally called viruses prior to shipment.
While we look at many aspects of a device’s performance, we are counting and summarizing performance, not recording keystrokes or providing tracking tools yet.
All this and more and we haven’t been sued yet, or any of our customers, for online stalking and the illegal distribution of information because the user signs away its rights when it buys that much needed mobile device.
Click to expand...
Click to collapse
I don't to be tracked no matter what. Thought you people would have understood that, guess I was wrong.
Short of not owning a mobile, flashing a custom rom will get rid of the HTC apps and widgets on the stock rom that has far, far too many permissions. Same with carrier apps, since they too mine data from the device in question. The peep, facebook, HTC power control and HTC calendar apps in particular required a disturbing amount of permissions to run. Part of the reason why I rooted and flashed to CM 7.1, actually. It has phone goggles and permission controlling built it actually, so it can be a safe, user controlled, relatively tracking free experience.
Hope this helps.
Oh to add, just rooting the phone will allow you to uninstall ANY app on the phone. But I think this can have a detrimental effect at times, since some of the apps tie in with the stock sense rom, which could have the consequence of having a unstable, buggy, crash prone device of your own making. Could be wrong though.
cheers mate, phone has been rooted for some time now but I thought you guys might be more specific about which files need to be deleted as to avoid detection.
I use startpage instead of google but I don't think that makes much difference.
I know it's definitely being done with i-phones and google is doing it with android devices
http://www.techrepublic.com/blog/mac...-you-care/1109
http://www.dailymail.co.uk/sciencete...s-company.html
http://radar.oreilly.com/2011/04/app...-tracking.html
http://www.wired.com/gadgetlab/2011/...hone-tracking/
http://gizmodo.com/5793925/your-ipho...ere-youve-been
http ://news.yahoo. com/ smartphone-spying-204933867. html
well its true now as to how to remove this goofy thing is dif story.
im pretty sure nobody in this forum thinks this is acceptable!
had to put in spaces due to im a NOOB!
I've read (Engadget or Lifehacker - I forgot) that this is only on stock ROMs.
according to one article
it looks like Android phones from Sprint have a keylogger and deep-packet inspector factory-installed, and you can't remove it without exchanging a chip.
Carrier IQ Video Shows Alarming Capabilities Of Mobile Tracking Software
You may be aware of the growing controversy surrounding Carrier IQ, a piece of software found pre-installed on Sprint phones that, according to developers who have investigated, is capable of detecting, recording, and transmitting various user actions and inputs. Among the data CIQ potentially has access to are location, SMS, apps, and key presses.
News of the software has been percolating for months on development forums, but when Trevor Eckhart recently summarized his findings, he found himself facing a cease and desist while Sprint vigorously denied the charges, saying “We do not and cannot look at the contents of messages, photos, videos, etc., using this tool.”
The C&D was quickly retracted, but Eckhart has now released a video that seems to give the lie to both Sprint and Carrier IQ’s assurances.
Click to expand...
Click to collapse
more here http://techcrunch.com/2011/11/29/ca...ing-capabilities-of-mobile-tracking-software/
from about 5 mins in
http://www.youtube.com/watch?v=T17XQI_AYNo&feature=player_embedded#
already an xda article on it
http://www.xda-developers.com/android/the-rootkit-of-all-evil-ciq/
Note also that if you're running an Android Open Source Project (AOSP) based ROM—like CyanogenMod—you do not have Carrier IQ installed on your system. These apps are based on the original, open source version of Android, and don't include any carrier or manufacturer additions like Carrier IQ. If you're using a modded version of your manufacturer's ROM, however—for example, a modded HTC Sense or Samsung TouchWiz ROM—you could still have it installed. To avoid this, either flash AOSP based ROMs, or flash ROMs with Carrier IQ specifically removed (many will say NOCIQ or something similar on their description pages).
Click to expand...
Click to collapse
makes sense.
Interested in your thoughts on this comment
The application accessibility will close on the phone, however the data will still be left behind as residual storage in the same way every computer in the work can leave behind traceable history even if you physically delete everything from the hard-drive. It only takes a external programmer from a wifi connection to gain access onto the phone (even when its turned off) and they are able to uplink all that information stored on the phones memory aswell as call/storeage/user memory.
Its protected by internal security devices from external attacks, however it doesn't stop the phone companies from getting into your data anytime, anywhere, without your permission. At least with computers you can be protected from such external hacking by setting up a proxy or multiple firewalls (however even this isn't a guarantee.)
Click to expand...
Click to collapse
Check out my posting!
http://forum.xda-developers.com/showthread.php?p=20281786#post20281786
there is also an app called logging test app which will do the same it's by treve here at xda check it out as well.
The Desire S shouldn't have carrier IQ, at it's mostly US phones which have it. The UK phones do not.
Dear all: This is my first post. I spent two days reading posts concerning the highly anticipated unlocking of the S7 G930T bootloader. It sounds as though the developers at XDA and anot entity known as Chainfire are chomping at the bit in expectation -- TWRP is written and waiting at the border. That is awesome and I wish you all the best of luck. There are several apps that I wish to install on my phone. Most of them address device security (firewalls, etc...) and secure communications. Thank you in advance for your many hours of work.
My question is one of methodology and the ultimate goals of device rooting using the Android 6+ OS. Why not use a virtual root as a cheap and tawdry temporary work around? A similar method appears to have worked well for a Corbin Champion who create Gnuroot. His app creates rooted Linux environments on Android devices and requires no Android root.
Will this work for applications that require a rooted Android? Is my question rooted in reality? What are the limitations of a rooted app or virtual root system?
Why would anyone want to use a cheap trick? Is it possible that using an app or a virtual root may avoid potential crashes and instabilities? Samsung may have locked the bootloader to prevent or slow the use of the S7 G930T in illegal activity. Wouldn't the development of an app for non-developers all us to benefit from many wonderful apps while preventing non-developers from engaging in less than ethical hacking with root as a lockpick?
I also read an XDA post concerning chain-loading an OS from a USB device. This also seems like a clever work around. It may also be an effective security tool that may allow a cellular device to be driven by a portable OS. It may allow one to protect device data and USB-OS data while enjoying network communications. What are your thoughts?
If I could pull this off on my own, I would do it and release it for free since that seems to be the thing to do -- to contribute in an academic manner to the karma/knowledge pool. I hope that capable hands consider a project like this to be worth while. If is already done, please point me in the right direction.
Thanks.
Cheers!
Dear all:
After I posted and asked questions that I though were interesting, I continued to read and look for helpful apps.
I lot of new apps appeared in the Google play store. Or maybe I just had not paid attention well enough before.
However the coincidence occurred, the most useful apps were the IP tools such as trace and location search.
Before that day I never once obtained an IP trace result and location that was at all useful or even remotely interesting. This time I was able to summon the leviathan.
The corresponding IP address to a machine that was and may still be in constant communication with my Samsung Galaxy S7:
172.217.3.238
The corresponding GPS coordinates:
37.4192000, -122.0574000
In the links below you will see that this corresponds to an office building on the property of the Moffett Federal Air Field near Mountain View and Stevens Creek California. How did that happen. My attorney doesn't know either. He says that no one is looking for me or is in great want of a chat with me. I am a medical student. ????
Ok. So I sent a complaint to the California State Attorney General Kamala Harris... several time by fax, online portal, and email. I called her office to confirm. Her staff confirm, don't confirm, and say that they have no way of tracing documents received by their server. So my attorney called and emailed.
Anyway... this smells of phone spoofing and phone trapping again so I will have to fight just to submit a complaint.
Links to the IPtrce and IP location searches.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
The link to my complaint to California Attorney General Kamal Harris.
Why wond the images post?
I am not sure what went wrong, But the image files are not visible.. How do I correct this?
Ahzreal2 said:
I am not sure what went wrong, But the image files are not visible.. How do I correct this?
Click to expand...
Click to collapse
I'm not sure about this whole thread... That IP is Google, which has nothing to do with your post about a 'virtual root', OS on USB, or whatever.
See this: http://172.217.3.238.ipaddress.com/
If you are concerned about security updates, you can check this report (updated 07/02/2018), providing information for device between 2011 and 2017 and report if your device is updated not.
This is a compilation of data based on official reports, official support responses and users feedback community.
Source : https://twitter.com/SecX13/status/961691443931820033
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
TD.
Again with this exaggerated focus on security updates. Am I the only one going "who the **** cares?" I mainly care about general OS updates, and even then I don't go around being angry for not getting it (if anything, I get more angry if the update is **** and I have to wait a long time for the next update to come along and fix the problems the first one brought). But not once in my life have I gone around thinking "hmmm, wonder when I can get my next security update..." This issue with security updates seems to be completely blown up by tech nerd sites and a small minority of enthusiasts online. Hell, I even consider myself a smartphone enthusiast, as I buy and sell phones for a living (and get to test virtually all flagship phones). But even I don't give a **** about this. I doubt the average consumer do either.
For a basic user this can be not so important, until he’s affected with a malware or other security issue.
This is more important for business company, organization and people that need minimum security, especially during this time with Meltdown, Spectre and also other malware affecting Android.
You can look this table like «*Brand that does good/bad job to update and maintain quickly/slowly your device*» not only with the security purpose.
Don’t forgotten that brands that does minimum security updates does also minimum and slower OS updates.
TylerD13 said:
Don’t forgotten that brands that does minimum security updates does also minimum and slower OS updates.
Click to expand...
Click to collapse
That's just wrong, and you know it. There's no real coherence between fast security updates and fast OS updates. A great example is how fast Essential is with security updates. They're not as fast updating to a newer OS version compared to, say Google, now are they? And that's even despite the fact that their interface is virtually stock Android and should be an easy job for them, as well.
Also, you exaggerate the security update’s importance by your talk about malware, spyware etc. issues being of importance. But the fact of the matter is that of all the phones I have tested and owned over the years, I have never ever run into issues with malware or any other kinds of security problems with my Android phones. That includes a ton of phones from Google, Samsung, Sony, LG, OnePlus, Huawei, Xiaomi, HTC, Motorola, etc. All OEMs with large variations in times they take to give security updates. It also includes 4+ year old devices that family members have; no issues there either. So this worry you seem to have is blown out of proportion. It's an issue no average user or even enthusiast really gives a **** about.
generalako said:
That's just wrong, and you know it. There's no real coherence between fast security updates and fast OS updates. A great example is how fast Essential is with security updates. They're not as fast updating to a newer OS version compared to, say Google, now are they? And that's even despite the fact that their interface is virtually stock Android and should be an easy job for them, as well.
Click to expand...
Click to collapse
There can of course be exceptions, but overall with main OS like iOS and Android this is most the time true.
Essential is not a good example, it’s a new and small company compared to other.
If your device brand don’t take care of your software with security update, there’s great probability that is the same with other updates.
i'd say it depends on how valuable your data and "transactions" on the smartphone is to you. if you dont giva a ****, so be it and maximum damage/risk is caller/sms fraud or some minor annoyances like crypto trojans and the like which exhaust your battery. if your doing banking apps, password save or or have other confidential data on your phone (test: you'd handover your photo gallery to a stranger?), then you might think again about your personal risk management.
my 2 ct.
Hi all,
My appologies up front for asking this question as I realize its fairly general and dependent upon my security requirements... Just got a new SGS22ULTRA and need some guidance on getting it secured.
Background info:
--- I never use any cloud services to backup, store, or use applications or files.
--- I only use Software that I can purchase a one time license, download it and use it directly from my devices. No yearly rotating fees, monthly fees, services, nothing.
----All files including media, movies, music, I purchase hard copies, DVD, CDs, So I own the actual movie, music, licenses, etc...
---- I dont use any streaming services, or paid subscriptions, news services, etc...
With the above stated I am hopefull you all can provide me with some direction on what is the best ROM to secure and lockdown my phone for privacy and security. Amongst obvious reasons I truly hate having a green leather Ikea sofa following me around and popping up everywhere.... I truly dislike the constant tracking, monitoring, etc.... any thoughts or suggestions I would be grateful to hear.
Thankyou all in advance
A bigger question is backup without using cloud. No SD card means you lose all data on internal memory in a crash and burn, every time.
Crashes rarely happen but not rare enough. A drop can have the same result.
Kill bixby, and keep location off unless needed for starters. No social media or shopping apps installed, ever. Disable Samsung, app, carrier and Google feedback. A firewall with logging be very useful.
This setting change to globally block ads:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Ratfink11 said:
Hi all,
My appologies up front for asking this question as I realize its fairly general and dependent upon my security requirements... Just got a new SGS22ULTRA and need some guidance on getting it secured.
Background info:
--- I never use any cloud services to backup, store, or use applications or files.
--- I only use Software that I can purchase a one time license, download it and use it directly from my devices. No yearly rotating fees, monthly fees, services, nothing.
----All files including media, movies, music, I purchase hard copies, DVD, CDs, So I own the actual movie, music, licenses, etc...
---- I dont use any streaming services, or paid subscriptions, news services, etc...
With the above stated I am hopefull you all can provide me with some direction on what is the best ROM to secure and lockdown my phone for privacy and security. Amongst obvious reasons I truly hate having a green leather Ikea sofa following me around and popping up everywhere.... I truly dislike the constant tracking, monitoring, etc.... any thoughts or suggestions I would be grateful to hear.
Thankyou all in advance
Click to expand...
Click to collapse
There is nothing like this, you will always be tracked by someone (read Google, Samsung, Facebook or whatever). You want privacy and no tracking? Get a firewall and block everything but you'll cripple the phone and your experience.
Rapier said:
There is nothing like this, you will always be tracked by someone (read Google, Samsung, Facebook or whatever). You want privacy and no tracking? Get a firewall and block everything but you'll cripple the phone and your experience.
Click to expand...
Click to collapse
Cookies, cookies everywhere... it's amazing how much data they pack away even on a good browser. I just clear the data every week or two.
A grossly handicapped phone isn't much fun or very useful.
So phone OS that focus on privacy and security such as Copperhead, Graphene, etc... dont work? Im not out for perfection, and like I said, I dont use streaming services or cloud based apps, I dont use google play, or anything like that. Any apps I use work directly from phone or I build my own apps to function as I need.
Im looking to plug as many privacy security holes as I can and figured, hopefull someone was working on a custom ROM that helps with this.
Thx
Ratfink11 said:
So phone OS that focus on privacy and security such as Copperhead, Graphene, etc... dont work? Im not out for perfection, and like I said, I dont use streaming services or cloud based apps, I dont use google play, or anything like that. Any apps I use work directly from phone or I build my own apps to function as I need.
Im looking to plug as many privacy security holes as I can and figured, hopefull someone was working on a custom ROM that helps with this.
Thx
Click to expand...
Click to collapse
You'll likely end up with a can full of worms to chase down or live with. It will make troubleshooting exponentially harder especially on a new model like this.
Why buy a Sammy flagship and not use it's many features and customizations? You can lock it down fairly well without going totally fort Knox on it.
I think you bought the wrong phone for your specific needs. A Pixel device would have been the better choice.
Its been a while since logging on... I got hit with the nasty dirty stinky pipe linux kernel. Hard reset phone, etc.... So, if I may ask for some assistance... is there a link to how to lockdown, privacy, etc... for S22 Ultra? Unfortuneatly as awsome as this phone is I find it has automated capabilities surpassing my permissions and desires.... If someone can help me update my intelligence level and verify I have Overseer Mode turned off I would be gratefil.... thanks for all your suggestions and frankness.... best regards
Ratfink11 said:
Its been a while since logging on... I got hit with the nasty dirty stinky pipe linux kernel. Hard reset phone, etc.... So, if I may ask for some assistance... is there a link to how to lockdown, privacy, etc... for S22 Ultra? Unfortuneatly as awsome as this phone is I find it has automated capabilities surpassing my permissions and desires.... If someone can help me update my intelligence level and verify I have Overseer Mode turned off I would be gratefil.... thanks for all your suggestions and frankness.... best regards
Click to expand...
Click to collapse
Not sure how it got in. Be helpful to know the vector used to compromise your device ie web surfing, download or installed app. Nasty little bugger.
You need the patch if you're on Android 12 if Samsung has released a patch for it.
Since I'm still running 9... no worries about this exploit. So much for Gookill's security hype.