What are the chances of getting a device compromised? - Android Q&A, Help & Troubleshooting

I had an argument with a friend the other day... I was arguing that a mobile device is a very sensitive thing because it allows to glean far more intimate information that may harm you very much and that people should be wary at what features are added to the phone. To which he replied "So what? What are the chances that an intruder would get remote access to my phone?".
Hrmp...
What are actually the chances of a non tech savvy but a conservative user (meaning that he largely doesn't experiment with completely unknown apps and he uses only the official markets to download) of getting someday his phone remotely accessed (at least once in his lifetime)?
If for instance we add a feature to the phone where it can destroy all of our home appliances- would it be wise? Is there a realistic risk involved? Why would someone want to destroy our possessions even if he gained entry?
Thanks

oy-ster said:
I had an argument with a friend the other day... I was arguing that a mobile device is a very sensitive thing because it allows to glean far more intimate information that may harm you very much and that people should be wary at what features are added to the phone. To which he replied "So what? What are the chances that an intruder would get remote access to my phone?".
Hrmp...
What are actually the chances of a non tech savvy but a conservative user (meaning that he largely doesn't experiment with completely unknown apps and he uses only the official markets to download) of getting someday his phone remotely accessed (at least once in his lifetime)?
If for instance we add a feature to the phone where it can destroy all of our home appliances- would it be wise? Is there a realistic risk involved? Why would someone want to destroy our possessions even if he gained entry?
Thanks
Click to expand...
Click to collapse
Malware is widespread on Android phones. Just search the web for "android malware" and you can find plenty of information about these threats. You can get malware-infected apps from Google Play, and sometimes legitimate-looking apps have been repackaged with malware.by someone else.
An attacker probably is more likely to take personal information: Your contacts, passwords, email/SMS, banking and financial info, health info, etc. They can use it to steal money (e.g., from your bank account or by using your credit card), impersonate you for purposes of identity theft, or for other reasons.

Well that is the thing- my wariness comes exactly from searches like that, from subscribing to various security blogs, from reading coverings of Blackhat, Defcon and the myriad ways a phone can be intruded. Not just by downloading and running software but by browsing the web, plugging things into USB cables/outlets, weaknesses in assorted programs and tons of other possibilities.
The abilities are copious. In theory.
The device seems so inherently dangerous that I basically treat it as if it was hacked (well, try to. It's hard to minimize information pass through), but then there are links like that: http://bgr.com/2015/02/17/android-vs-windows-malware-infection/ where even people with some vested interest talk about practical numbers of less than 1%.
I suppose that as a random for-profit-hacker I too would be firstly interested in stealing data and money directly, but there are other kinds of intruders (like police/for-the-lulz/ combination of the 3 and etc) and I'm not sure if in practicality concerns over other types of damage (other than steal info) are substantial.
I did recognized one type of financial profit from attacks of physical damage though- ransomware, but I can't think of any other monetary gain.

Related

[Q] safety of using community builds of roms

im relatively new to using community based roms please no bashing serious answers only
my question is if it is safe to use the builds of android on your phone as your primary OS as in can these community builds of android be trusted not to be stealing information would you use it for banking personal email etc....
it seams to me some one smart enough to modify an entire OS can easily build a key logger for it
its a valid point.....
its something ive wondered myself though its more the app developers and google that I distrust, cant help but feel a little suspicious when a game tells me it requires access to my contacts.....
personally I wouldn't use my phone for financial transactions anyway, android or not.....
haven't read any reports of things like this though if it helps to ease your mind.
the thing to remember is the sheer number of users on the site. for every member that actively posts, there are a dozen who don't, you only need to go to the forum homepage and see how many online users there are. (12500 logged in as i write this)
the point being that anyone doing anything underhand would be hard pressed to keep it secret for long.
so, yes its a potential danger, but id estimate that its probably far less dangerous to potential data leaks than, say, walking through a large city center with your phones bluetooth turned on.

[Q] How does one know this is all save and not NSA related?

Hi,
with all media attention related to NSA spy activities.
How does one know this all happening here is not related to NSA activities?
If i'm correct the bloatware a provider installs when you bought it gives nsa access or gives provider unwanted access.
Maybe i'm thinking too much, but even NSA could bring out a rom which looks great and so and you think it's save and not accessing your private details, mic or camera.
Just a thought i had.
(on duckduckgo.com there was this advertising for save internet and cyanomod, thatss how i came here)
Thanks !
Have you been abusing ice or something ?
haha no, just curious that's all. As you know google ain't clean either in terms of privacy. And Android is Google.....
But no, i like what's happening here, it was just a thought.
Alright...
Intelligence agencies can already essentially look at whatever they want whenever they want via direct access to all networks. They can break a lot of encryption. Most operating systems (whether phone/PC/whatever) either have some NSA designed bits (I.E SELinux) or 'backdoors' which enable them to access even the most tightly 'locked up' systems.
I very much doubt they need to release a bit of 'crapware' or an OS of their own given the above. Though I can imagine in certain cases they custom design an exploit for a particular individual or organisation they want keep tabs on, but I can't imagine they'd want to do it to ordinary phone users en masse in the manner you suggested.
They already 'passively' surveil just about everyone (I.E collect all data but tend not to look at it unless they need to), so they don't need to do what you mentioned.
In my view opensource system has an advantage that you can check the source code yourself for a potential backdoor.
Most of the ROMs here are opensource so you can download, check, compile and install.
However you do not have 100% opensource devices - you have for example radio drivers which we just trust they will send data to correct receiver and in correct format...
I don't think it is proven SELINUX introduces backdoor or was it? If yes, I'm very interested to see it.
https://en.wikipedia.org/wiki/Security-Enhanced_Linux. Everything is backdoored.
MistahBungle said:
Alright...
Intelligence agencies can already essentially look at whatever they want whenever they want via direct access to all networks. They can break a lot of encryption. Most operating systems (whether phone/PC/whatever) either have some NSA designed bits (I.E SELinux) or 'backdoors' which enable them to access even the most tightly 'locked up' systems.
I very much doubt they need to release a bit of 'crapware' or an OS of their own given the above. Though I can imagine in certain cases they custom design an exploit for a particular individual or organisation they want keep tabs on, but I can't imagine they'd want to do it to ordinary phone users en masse in the manner you suggested.
They already 'passively' surveil just about everyone (I.E collect all data but tend not to look at it unless they need to), so they don't need to do what you mentioned.
Click to expand...
Click to collapse
yes you're right. it totaaly agree.
thanks a lot for your answer.
MistahBungle said:
Everything is backdoored.
Click to expand...
Click to collapse
I checked Wikipedia SELinux Entry. I remember Linus's nodding, however there is no hint it was with relation of SELinux.
I found another discussion on this topic and I agree with the point that "It would be singularly dumb of them to inject backdoors in their own name."
Time will show.
Anyway - if you do not trust it, you can turn it off completely or use an alternative - AppArmor - which does not come from NSA.

[QUESTION] Apps, Privacy Policies and Updates

Question: What happens when the T&C or Privacy Policy of an app we paid for changes in a way we're not content with?
Though this question relates to Endomondo, though I suppose it could apply to any app in the Play store that has been updated or undergone a Privacy Policy change during the course of use. I believe this issue is a larger one of how to protect ourselves in an ever increasingly dangerous world of data hacking and marketing abuse.
Here's a topline of the particulars, but again, it could apply to any app we use, on any platform for that matter.
Back in 2011, I purchased Endomondo Pro.
During a relatively recent OTA app update, they removed a feature I specifically bought the app for (the step counter) presumably in preparation for what happened next.
In the past year (give-or-take), the company (read: Endomondo app) was acquired by UnderArmor
The aforementioned update forced us to a different version of the program, so we either had to go along with the update, or be unable to use the app. Naturally, having paid for the program, I accepted the update.
Some time in the month of March(?) they updated their Privacy Policy in such a way that I am no longer comfortable using the program.
In any other world, what has happened here could be considered 'bait-and-switch' at best, racketeering and coercion at worst in that we were forcibly required to accept the update or lose use of the program we paid for.
Though they claim there has been no change in their Privacy Policy, I disagree, though I don't happen to have a copy of their old policy when it was managed by Endomondo. Thus, I have not been able to use the program because of my discomfort with what I believe to be a dramatic change in the language of the Privacy Policy.
Specifically, the change is way too intrusive for me, especially with our government being too much involved in our health care system, and the ever-increasing risk of hacks that have breached even the most secure systems.
DISCLAIMER: To their credit, Endomondo (and their new owners, UnderArmor) have honored the privacy settings. I have not received one shred of unsolicited advertisement. However, who knows what they may be cooking up in the back room without our knowledge, and who knows how that might change at any point going forward.
Here's how the mealy-mouthed lawyers spin this up:
How We Disclose Personal Data
Under Armour will only disclose your Personal Data with your knowledge and as stated in this Privacy Policy or as indicated at the time of collection. This includes disclosures that will enable us to fulfill our obligations to you, and allows us to manage our business operations. We will only share your Personal Data with third parties in certain limited instances, namely with your consent, or as is necessary to complete a transaction or provide a product, service, or feature that you have requested.
We may disclose your Personal Data as described in this Privacy Policy and in the following ways:
To Affiliates, Partners, Vendors, and Suppliers
During Recruitment and Job Applications
To Enable the Use of Our Services
In Community Forums
As We Grow and Change – Corporate Transactions and Reorganizations
As Required by Law and Special Circumstances
Click to expand...
Click to collapse
Translated: they can do whatever they want, any time they want, to whomever they want, for whatever reasons they want... all they need to do in order to disclose your most personal information is to say it's for "research" or "business operations". And, to complicate matters further, they say:
We may update this Privacy Policy from time to time without prior notice. You can determine when this Policy was last revised by checking the Effective Date. We encourage you to periodically review this privacy policy to ensure you understand our privacy practices.
Click to expand...
Click to collapse
Translated: Not only can we do whatever we want, but we don't even have to tell you.
It seems to me this is a violation not only of trust, but bordering on illegal, by coercing us into allowing the update and then unilaterally changing the privacy policy in such a way as to leave us no alternative to using what we paid for, no opt-out, and no other options. I don't need to have my workout data stored on their servers, I'd gladly keep it on my local device. Frankly, this whole 'cloud' thing is both overrated and worrisome at best.
Ironically enough, as a marketing professional, I completely understand and endorse the idea that (when used honestly and properly) data such as this is as good for customers as it is for the company using it. However, when things go bad (and not a month goes by when it doesn't), we who are the victims of data theft have no recourse.
I'm of the opinion that there ought to be legislation passed to hold companies accountable should they collect data that later becomes the subject of a breach. Though I'm probably the last person to want our government once again involved in our lives, there ought to be a way to provide consumers with recourse to hold a company accountable in the event of a breach should they collect our data that becomes compromised. As it sits now, when something goes bad, companies shrug their shoulders and say "sorry", and we're left cancelling credit cards, chasing our tails to fix it, and in extreme cases, rebuilding our lives in the aftermath of identity fraud.
So, I'd like to hear your thoughts on what we, as users, customers and consumers of technology products, might do to protect ourselves and assert our rights to what we paid for in the first place. To whom would one go in order to file a complaint? Should we look to Google? Perhaps the FTC (Federal Trade Commission)?
Just curious to hear your thoughts.

logout from google account on GalaxyNote 8 - pls. help.

Hi Guys, just bought the Galaxy Note 8 from T-mobile,
I started the phone without logging in, and it was working fine, but as soon as I logged in, it does not allow me to log out.
It asked me to fully reset the phone, but I need blackberry for work app and park mobile app,, so if i reset, i will loose it.
Q1.) do you know how to can I logout without reset?
Q2.) if I reset, is it possible to sideloade those two apps?
Q3.) is there any alternate market?
when I try to go to
"cloud and account" --> "accounts" --> select "google" --> on account profile page menu --> "remove account" --> ack "remove account"
gives me message , "
Remove account
" Account is needed by some apps. You can only remove it by resetting device to factory defaults(which deletes all personal data). To do this go to setting > Backup and reset"
then "backup and reset" requires/forces me to create a "samsung account" and still I cant logout without restting.
I called T-mo. they were trying to help, but they couldnt' and told me only samsung can help, but "samsung" is not willing to help, not replying my email or private tweets,
Every person has their own level of tolerance for privacy, I am not looking for advises on why I want to log out, I need help on how to logout.
since I use it for work I can't root , blackberry app will not work.
Model: SM-N950U
Android V: 7.1.1
Samsung Experience V: 8.5
android security patch: oct 1, 2017
Kernal: 4.4.21-12461033
knox: 2.9
pls. help
It looks like this is called FRP (Factory Reset Protection) program, provided by Samsung..
objective is to prevent anyone from stilling your phone and reset it and use it.
but why not use samsung account ? why to use google account for this? they are too creepy if you logged in?
there are few instructions on removing sync , accounts.db and accounts.journal files, is it safe? is it going to screwup the phone ?
is there is no opt-in/opt-out for FRP?
The problem is that the apps that you installed is part of your account. So you need to add another Google account. Then any free app with no in-app purchases will also be part of that account. Any app that you have that is paid and/or in-app purchases attached to that Google account to it will need to be removed in order not to need to reset the device. The reason is that any app that you purchased or in-app purchased is attached to that Google account and can't be transferred to another account and can't be used without being logged into that Google account.
FYI - You can use Amazon app store for apps while signed in to any Google account or not even signed in to any Google account. You will still be signed into Amazon account. Amazon Store side load apps. So you need to give your device permission to side load apps.
Samsung Store is okay, but not forward thinking. Since you will need to stay with Samsung devices to keep using apps from Samsung account. That is the reason that I said Amazon App Store is much better alternative app store.
And you can still have more than one Google account signed in on your device as well.
But if you are not signed in any Google account your device will be limited usage. After all going for Android is going for its Eco-system. Just as when you go for iSO (Apple) is going for Apple Eco-system. That (Eco-system) is what we should be using as the first part of our decision in which device (Android or iOS (Apple) to get. Hardware should be the last part in our decision making when choosing which device to get. App neutrality doesn't really work 100% (for varies of reasons). So Eco-system should be THE FIRST PART of your decision.
If you don't want any company access to your information then go for a flip-phone and pen/paper.
Thanks!
I have my old galaxy S4 , where I can logout at will. so the advantages is you are not syncing your contacts, your location, search, youtube etc, and still use apps (including in-app purchase apps).
Currently if I have a fever, they tack that too, it is too intrusive..
I have never purchased an in-app item, never, and I have no intention too. but still my cc is at risk if one of my kids do it ( I know there are options berried in the settings to disable it) , but now apps also can access my contacts loc etc through google account.
if ppl can hack/steal govt data, this is nothing, like Equifax, they just apologized but no consequences.. CEO is not in the jail.. so why not to give options to their own users? why take/force decision for us? ( if I want to protect my phone and does not allow anyone to reset and start it --I need to stay logged in -- may be ok, although I think there are way to enforce that without giving up your privacy),
in anycase I am just looking to log out keeping those two apps.
Well......, too late for Samsung and Google for not getting that data. They all got that data very quickly when you first got into Android and Samsung devices. The same goes for Apple devices with Apple having your data (Apple calls that "Apple ID" information (data) that gets stored in the "Apple Cloud").
When it comes to your data (data that connects to you):
Your carrier like T-Mobile always have and logs your location with their tower's location and/or nods. As well as your web search, YouTubing, etc is logged not only by the search (Google, Microsoft, etc) and content provider (Youtube, Netflix, Amazon, Hulu, Sling, Pandora, Spotify, Apple, etc), but also your carrier too, like T-Mobile. If you use VPN service they logged your activity as well. Anytime you use Microsoft Office you are being logged by Microsoft too. Each app you use you are being logged by that developer, content provider, App Store that you got the apps from, ISP carrier (like T-mobile), and others. Logging out of your Google and Samsung accounts is not going to stop that.
So.... At that point, the only thing to do is enjoy the services or go for a flip-phone and pen/paper.
I use the finger print reader to protect app purchases and in-app purchases from my son. Works like a charm.
You can stop your device from syncing your contacts to Google and Samsung (This setting is in Contacts apps and in account settings). Then just backup your contacts with Samsung's Contacts app by just exporting a (VCF) file to your SDcard. Then you can import contacts from the (VCF) file. But the last Contacts that was synced to Google and/or Samsung will still be there with them.
At the end:
The Note series is designed for cloud based business and entertainment usage. That is despite that Samsung allows local usage. Still this Galaxy Note 8 is designed to be really a powerful cloud connected based business and entertainment usage device. Gone of the old PDA devices (local based usage devices). Once they put in cellular and WiFi radios within the PDA these devices have change forever.This includes tablets.
Sorry!
Thank you for you reply!
I wished there was a comprehensive law. Europe at least has an active body to do it..
Tmo/carriers --I think (at least now), might not be after your very personal data, and we already gave our ssn when we signed up, we have seen multiple times that they have easily lost that data too.. (like Target)
but Google or FB on the other end are on different level, they intervene with your life. I wonder how much they must be (paying ) lobbying senators and house reps, to keep away from bringing bills on privacy..
the last privacy law was 1974 and last revision was on 2004, that too only dictating how govt should store/use data , nothing about corporates.
I would go to flipphones, the only reason I am on the new phone is the there are new bands on Tmo that are not supported on my S4, and have no/very weak signal, so I dont think flip-phone option is there at all
but hopefully, there will be some kind of control over it. but before that I wished these CEOs had some moral, or the big schools should have taught them 1 class on morality
sendi_t34 said:
Hi Guys, just bought the Galaxy Note 8 from T-mobile,
I started the phone without logging in, and it was working fine, but as soon as I logged in, it does not allow me to log out.
It asked me to fully reset the phone, but I need blackberry for work app and park mobile app,, so if i reset, i will loose it.
Q1.) do you know how to can I logout without reset?
Q2.) if I reset, is it possible to sideloade those two apps?
Q3.) is there any alternate market?
when I try to go to
"cloud and account" --> "accounts" --> select "google" --> on account profile page menu --> "remove account" --> ack "remove account"
gives me message , "
Remove account
" Account is needed by some apps. You can only remove it by resetting device to factory defaults(which deletes all personal data). To do this go to setting > Backup and reset"
then "backup and reset" requires/forces me to create a "samsung account" and still I cant logout without restting.
I called T-mo. they were trying to help, but they couldnt' and told me only samsung can help, but "samsung" is not willing to help, not replying my email or private tweets,
Every person has their own level of tolerance for privacy, I am not looking for advises on why I want to log out, I need help on how to logout.
since I use it for work I can't root , blackberry app will not work.
Model: SM-N950U
Android V: 7.1.1
Samsung Experience V: 8.5
android security patch: oct 1, 2017
Kernal: 4.4.21-12461033
knox: 2.9
pls. help
Click to expand...
Click to collapse
Notices this too on the latest T-Mo firmware. Nope. No way to logout without factory reset. Exactly what that screen says. You will have to factory reset from the settings, like it or not.
You can always go to apk mirror to look for the apps and install them. But if any require you to log into a Google account, then you'll be back where you started. Sorry.
I understand why its frustrating, but it is what it is I don't mind it, cause I don't care what Google knows about me., and find their services extremely convenient. My mom won't even get a smart thermostat because she's scared the government is watching her utility usage. Me? I tell my Google Home to change the temp on my Nest Thermostat, cause I prefer convenience.
Thanks for your opinion and suggestions!
As I said, everyone has their level of tolerance. I wouldnt mind giving the information if I can control it, but this is actually intruding. like creep. ( like not letting us log out, making decision for you as if you are dumb).
I also would like convince sure, but would you like
1.) If your kids are graded over google class room, and the full academic-history is recorded there, in future your potential employer will be able to request it without even your knowledge, same thing as "agree all"
For your little convince "now" your are giving up your (or your kids )future by letting them think that this is acceptable or this is "new reality" and ppl will forgive or ppl are adaptive.. I sincerely wish you give one thought to it.
Tomorrow, they will tell you this food it good for you and you should't eat this or that.. you will say "oh I prefer convince that it is telling me what to do for my health" -- next thing you know it does not even "allow you to eat anything else." -- like it is not allowing me to log out -- b/c I dont loose the phone --making decision for me--
you can wait for that day or try to consider a "little less" convenience ..
I am not that old, at least that's what I think , but I assume old ppl. have some prejudice with govt and I dont know why... but I dont have that, govt can track it , but they dont have any corporate interest at least.
I can give more examples when you search up a deceases or your kids are in trouble everything is recorded. (no 2nd chance for them). I am not convince that you are willing to weigh those things with minor inconvenience of setting temp on your nest thermostat from your computer or logging in again and again with your fingerprints when required ..
Thank you for putting your perspective. I hope that we as a consumer see beyond apparent
Like I said before :
Both Apple and Google have you log into your account (Apple ID if it is iOS or Google account if it is Android) for their mobile devices (both tablets and "smartphones").
If you don't want this then:
Use a flip phone and pen/paper.
The things are that you have a choice and that is your choice.
On The Side Talk - I worked for some of these corporations. I find that they have less interest in your and your family's personal lives. They want customers. And the future is going towards device assistant future. That is the future our children and their children will live in the future. As business you want that piece of that pie. And for customers it is a way to have always on assistance.
What I worry about is the govs into your personal lives. It doesn't take much work for the gov agencies and law agencies in stitching in your activities and activities of people you connect with into a crime or would be crime without you doing the crime and without you planning a crime. That is what both individuals and business don't want. That is much more danger than any corporation. Meaning that I don't have any fear of any corporation becoming a gov. But I do believe we need to be aware of what the govs can and will do with your data.
When it comes to corporations my largest fear is what they will do to our accessing the whole Internet since net neutrality is reversed.
Thanks!
Sure. It sounds like 90's Microsoft saying if you dont want to use IE "your are not forced to" just dont use it , but there is no other option, but now it is cool b/c google/aaple is saysing it? same as we dont have any option for cable only optimum or comcast RCN or TWC in perticular area only one is available..
but I think we dont want to pick up another topic on this this very important subject of privacy. Net-Neutrality is very important we can open another thread.
" I worked for some of these corporations. I find that they have less interest in your and your family's personal lives" -- I bag to differ strongly. only thing they care about is "bottom line" they dont/can't (since that there business model) give a dime about your privacy..
Since you have worked for these big corporations, let me pick your brains, what do you think about Wells fargo case where false/dummy , without permissions, accounts were created.. the banks objective is to make money available/make markets/provide basic banking services -- "do you think htey have less interest in your information?"
Where as google /insta/ FB's bread and butter is Your informaiton.. do you still think they have less interest? the whole economics is based on your infromation.. while you were there what was the pricing model? on top ad. when you search for "fever", I assume there will be a real time "bidding" between aspirin/advil/ tylenol to show up as the 1st link, + bidding on your location by riteaid, walgreen, cvs, DR etc. the more the information(like age,women,kids, other conditions, are you searching it again in howmany months? is it cyclic issue can I market every month on these dates? there you go for data science .. etc) the more the price of the link since you can market other drugs too.. or children medecine on the local store.
thisi s a very basic thought, although I have not worked for those big companies.. so i dont have as much experience as you do.. let me know how they do it.. if not using our information.
Everyone needs to be aware of their data that is accessible to the public and semi-public. This is and was very true much longer than we average people had computers within our daily lives. Remember the cold war fears of whom was a communist, fascist, socialist, etc? You can look into the days of witch hunts. And go much further in time. In the data accessible world it is even more important to be aware of your data in the public and semi-public.
But that should not stop you from living the life of a modern person in the modern world.
With Google, you have the choice what data is public, semi-public and semi-private and totally private. So you have that power of what data is accessible and to whom that data is accessible to.
But I can understand if someone is in fear of what data the governments (including law enforcement agencies) can get to and have access. Corporations don't control that. In fact tech corporations rather the governments (including law enforcement agencies) not have any ability to access the data. Basically it is bad business for tech corporations in the governments (including law enforcement agencies) to have access of people's data, because of the lack of trust to the tech corporations due to governments (including law enforcement agencies) hands in people's data. Again, tech corporations don't have that kind of power to stop governments (including law enforcement agencies) from accessing the data beyond certain legal points. That is why I said "Both individuals and corporations don't want this".
We just got to be aware of what data we have out there, how the data is accessible, and to whom has access to that data. Then make intelligent decisions of what data we allow out there and to whom will have access to each data. Then practice this throughout our modern lives in this modern world.
What I do agree is that there should be "Personal Data Awareness within the Internet" classes for each child. This class would teach children the facts in the dangers of their own personal data on the Internet and how to protect themselves & their own data. I feel that this is important.
To answer your bank question: When it comes to banks. They are much different from the tech industry in so many ways. And yes, the financial industry did caused the great recession ten years ago.
I kind of agree with some of your points.
But one basic difference that you are confusing or merging corporate with governments. I am not referring government, I am okay with govt having data or even tracking since that is for security (at least I want to believe that ) , otherwize based on above logic somebody will say if you don't like it leave usa -- like if you dont want google to track you dont use google/apple/fb right?
The basic problem is, why google/apple/FB needs to carry so much personalized data? and not give us control? a basic thing like log out, even if I "log out," they can still feed me localized ads, since they have my ip and device id.. only thing is they can not say this is "sendi" who did the search ( even though they can indirectly figure it).. they can not "profile" a user. remember a few months ago when Law and Enforcement ppl. were stopping and you had to show your legal docs? and there was a huge public outcry..
But now google/apple/FB etc tracks you more than that is it still cool?
Once you (or someone else --think revenge) "post" pic/contact/vid etc on google/FB/Apple/Insta , the privacy policy you signed "agree all" makes that google/FB "property", and you have to beg them to take it out.. in the name of modern society, are you willing to bite that ?
I am not against new technology, I like and trade in crypto, but you need to have technology help you live better life, not creep you ... or make it immutable, force, all negativity they are bringing.. It is like having so much power and no responsibility ..
This is case of Moral and Ethics, Google/Apple will only act if it "come out" .. like memo from google a few months ago and publicized.. like Uber CEO case (how they operate) do you think they care about anything unless it come into media?.
https://www.boston.com/news/untagged/2015/03/24/how-to-try-to-get-your-nude-photos-removed-from-the-internet
Boston.com talked to Mitchell J. Matorin, a Wellesley-based lawyer, and Lissa McKinney, an Acton-based attorney, about some of the ways to try to get these photos removed. Matorin said that, under the act, victims trying to get photos removed can turn to federal criminal law, intellectual property law, and, in some cases, state law.
Alleging copyright infringement is a victim’s best bet, he said.
If a victim’s photo is posted without her consent, she still owns the copyright as long as she took it herself. If her partner took the photo—with or without consent—he owns the copyright unless he agrees to transfer it.
A victim who owns a copyright must file the image with the U.S. copyright office, which will then submit a copyright number to indicate that it has been registered in a federal database. Once the image has been granted a copyright number, she can sue for infringement.
Click to expand...
Click to collapse
You cant take out your picture , (even if it is yours) , you need a lawyer + proof (meaning take that pic again , show it to copywrite ppl, and prove it) and then websites take it out.. where are apples 267 billions in cash sponsoring that bill? for us to trust them they they wont misuse anyone's privacy?
Again: We are responsible for our own data. What others do with the data that they have with them (including the data that they downloaded from public or what you gave them or someone you gave the data gave them) is out of the tech industry's hands (outside of copyright data that the tech company may need proof of before taking action). Believe you me you don't want the tech industry to start being the police on the Internet.
Tech industry will always be on the side of "freedom of speech". Yes they have been and are being fired back from this "freedom of speech" from the public and the governments with this in several different directions. This is a fine line. And the tech companies are not the Internet police. And you don't want the governments to be the Internet police either.
The "right to be forgotten" breaks the Internet in the same way that censorship and no net neutrality does. The "right to be forgotten" makes the information on the Internet as much of a lie as "fake news" does by hiding the facts (data) through limiting and even stopping the data from getting to the public. That is how it breaks the Internet.
I am not saying that people in the tech industry doesn't do things wrong or don't do what is becoming the modern times socially unacceptable. After all we all are humans and the exceptions of the modern world is in a huge movement of change. As we and our technologies moves us closer in many ways our exceptions of what is acceptable changes. I remember that it was normal to of found your love in or around your workplace (after all you live most of your time at work). Now days looking at someone in wrong way (without realizing you doing it) or even an unconscious blink of your eyes towards someone is unacceptable. Yet at the same time: blasting your music and videos out loud in public places & around other people (that don't want to hear/watch the stuff), legal drug use in CA (marijuana), and street gang clothing style fully with the street gang attitude to boot is fully acceptable in our world at this current moment in time.
What a twisted world we are currently living in right now where: We are not allow to even unconsciously blink our eyes towards the wrong person. Yet we can't speak against certain things what we may find offensive and even dangerous without being considered as discriminative, dangerous, and all around bad in the eyes of the modern public. While other things get way too much attention from the public. Like I find the street gang life style with the street gang attitude to boot, drug infested, blast your stuff in public with no regard to anyone else type culture to be more dangerous and offensive on a larger scale then a few bad behaviors & few bad apples within the business world. Business world always needs cleaning up in their behavior, that I agree and support. But there are much worse things that need more attention. And yet, I would be consider as a bad person with all the dressings that I mentioned above to think this way in this modern world. That is truly messed up.
The tech industry is not responsible for the data leaks either. Look onto the bad "black hat" (lack of a better terminology) hackers and governments for that. The tech industry is doing their best to stop the leaks (hacks). And the tech industry is not responsible for how the non-tech industries responds. It is up to each company to weigh the risk of when to tell the public of such leaks. If they tell the public too soon they can put the data even more risk before they can fix the problem. And the knowledge of the leak can bring scare to the public that can create more damage in many ways than it can help. Things like these are the reasons for not telling the public or delays of such knowledge like leaks. And not all these companies are tech companies. So they may not understand what happened nor the risk involved.
The tech industry is not the monster. They, like all of us, are just part of the times of this world that we live in that is going through its own changes.
Again: Know the risk, what data you have and want out there, whom should and may have access to it and how the data can be accessed. Then make your decisions from there.
Again: Protecting our privacy is very important to corporations. Since consumer's trust means business to corporations. Losing consumer's trust means lower profits.
Fears, half baked knowledge, half-truths, true data in wrong content/s, and conspiracy theories doesn't help.

Question Trojans, viruses, sniffers and malware in custom firmwares?

Does anyone care about the presence of Trojans, viruses, sniffers and malware in custom firmwares?
Depends on what kind of danger you're thinking about.
If you feel threatened in the sense of being tracked and having your personal information collected by "Big Brother", then you are primarily threatened by the factory software.
If you feel threatened by misuse of your accounts or misappropriation of funds, you may be more concerned about this with custom ROMs.
Declaring a ROM "OFFICIAL" does not guarantee anything. It's a community ROM and nobody watches the code in detail. Most custom ROMs are open development projects.
In that respect, I see perhaps only Lineage OS as closed. So I would look at it as a factory ROM. If it is OFFICIAL from the creators website.
To keep everything safe, don't use your phone to make payments, to access your bank account and for your accounts with the most sensitive data.
All this is not to say that every ROM is actually dangerous.
I'm just saying it's not really safe either.
Always monitor your assets to detect account breaches fast. Have a backup plan in place and act asap if breached.
Stock firmware is released on a large number of devices so it has a lot of eyes scrutinizing it.
Look what Apple is proposing to do.
No warrant searches of all their devices.
Apple Will Scan iPhones for Illegal Child Abuse Images, Sparking Privacy Debate
Apple announced Thursday it is planning to scan all iPhones in the United States for child abuse imagery, ...
m.theepochtimes.com

Categories

Resources