Must I upgrade to latest Android version to continue receiving security patches? - Android Q&A, Help & Troubleshooting

Hello all, I searched extensively for an answer about this on here and the Android docs but found nothing.
I'm using a Pixel 3AXL that still has security updates thru 03/22(-ish)
Google is trying to beg me to upgrade to Android 12 and I don't want the upgrade. I tested Android 12 while it was in beta and I simply don't like the bubbly interface it's the opposite of what I prefer.
That being said there's no option to refuse the upgrade and continue on with updates for Android 11 until my security end of life occurs...
Anyone know how I can get just security updates on Android 11? Will I need to manual update by "side loading" update files with adb? (or if that's even possible?)

Don't know. Android 12 might as well be malware if it screws up you're device's functionality or usability
Backup all critical data redundantly to at least 2 hdds that are physically and electronically isolated from each other and the PC. Never encrypt data drives and make sure the data is all there, intact and readable. That's your best protection against all that can happen.
In real time use it doesn't seem to matter as long as you're running on Android 9 or higher. It's fairly secure.
This N10+ hasn't been updated in over 2 years and the current load is over 1.5 yo.
Malware hasn't been an issue but I'm careful with what I install, download and back out of or close the browser, sometimes clear the cache if things get sketchy, etc. I hawk the download folder daily. Wifi is locked down as well.
Most malware is downloaded* by the user... and there's no saving dumb bunnies.
*and/or they they fail to detect malware in the download folder such as a trojan preloader. Had one breach the Samsung browser 22 months ago in spite of file settings. Tricky little rascal. It got perished before it could download its payload

Thanks, my greatest concern these days is a fdroid package gone rogue or infiltrated with malware... I suppose the same thing can and sometimes does happen on Googles play store as well. So yeah mostly package manager attacks or supply chain or whatever they're known as.

bladerunnernexus said:
Thanks, my greatest concern these days is a fdroid package gone rogue or infiltrated with malware... I suppose the same thing can and sometimes does happen on Googles play store as well. So yeah mostly package manager attacks or supply chain or whatever they're known as.
Click to expand...
Click to collapse
When side loading scan with online Virustotal.
Scan occasionally with Malwarebytes as it will pick off one every now and then. It found a raskily trojan preloader in the download folder once that snuck in before it could retrieve its payload.
Lol, just because it's on Playstore doesn't mean I trust it. All my apps have been in use for a long time and I don't "sample" apps unless I need too.
It's rare but a poorly written Android app will sometimes do a dirty uninstall and leave you with a mess. My current OS load is over 1.5 yo, still fast and stable. In part because I'm careful what I install.
I firewall block apps that don't need internet access with Karma Firewall.
I also use this setting modification to kill ads globally...
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}

Excellent idea. Can some apps hide from karma? I'm using a KeePass compatible open source password manager downloaded from fdroid and it's not listed on my karma firewall apps list.
All my other apps and fdroid apps are listed though...

bladerunnernexus said:
Excellent idea. Can some apps hide from karma? I'm using a KeePass compatible open source password manager downloaded from fdroid and it's not listed on my karma firewall apps list.
All my other apps and fdroid apps are listed though...
Click to expand...
Click to collapse
Nothing can hid from Karma's logging feature that I'm aware of. Problem is that feature is only active on Android 9 and below.
I've use this feature a lot as you can see what accessed the internet and when.
It's "piggybacking" on another Android service be my guess or you just didn't spot it.
Some apks show only as UID numbers.
I use the logging feature to determine their purpose.

Related

"batteryoptimizer", malware, Galaxy Nexus

Hello!
My colleague has pulled of the amazing achievement of installing some sort of malware on his phone, i have no idea of how he did it or what .apk he installed to get it.
It shows itself by randomly showing a notice in the pull down bar, saying something about improving battery life, when the notice is clicked it opens a website:
hxxp://get.batteryoptimizer.net/lp6.b/index.html?utm_source=cb&utm_campaign=2012-01-13.c.pro&utm_term=sweden&custom_tag=en-minasmstips-Sweden
(disabled the automatic BB-code link, site contains mentioned malware use with caution )
View of the website in the phone:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
I can not find any suspicious app anywhere on the phone, and the phone is not rooted so i can not open a ADB shell to find it either.
Anyone have any idea of what this is? How can it be removed?
I cant find any information about this when googling it either.
He had the same thing on his old phone, Nexus One, so i dont know if he got the virus when it re-synced installed apps through gmail account when installing the new phone or if he succeeded to install the same malware .apk manually on both phones.
Ill be happy for any hints at all about this.
check all .apk's in /system/apps/ and try to remove those u dont know via titanium... also try avast! internet security from market... its free and imho the best anti-malware out there for android
PS: w/o rooting forget the titanium method...
Sent with my Galaxy Nexus running the AOKP milestone 2 by almighty RomanBB
I have seen people mention it on twitter
And from what I recall it was another app they have installed already that's spamming them with ads
this is only from what I recall from my twitter stream however, ask you friend what apps he has installed lately and check the market comments on those to see if other people have had the same issue
Uninstall all recent Market apps.. It may have been hidden inside another app, so just uninstall some apps. If you get forced to, you might have to clear data in recovery.
Its an ad nor.ally by airpush. Developers have been using this as these ads pay more. Look for an airpush locator app from the market. It will tell you what app has it built into it.
Great stuff! Quite helpful for me.
Thanks for the help everyone.
I found the app, some spanish learning app. link
Found it using theese two apps:
Addons Detector
AirPush Detector
Thanks everyone
is useless app
Received a notification of this batterycrap already 2-3 times. I will now use airpush detector to find out which damn app is the root cause for that stuff.
App removed
Hi Guys
Thanks for the advice on this piece of malware. I installed airpush locator app, and it identified my humble 'notepad' app (that was recently updated itself)
Notepad link
https://market.android.com/details?...1bGwsMSwxLDEsIm1lLmxhb3llLmZyZWUubm90ZXBhZCJd
Phew!
Hmmmmmmmm nasty indeed !!!!!!!
But everyone needs to stop calling junk like this "MALWARE",
It is "ADWARE" a well known form of spam essentially.
Where as "malware" is an application that either degrades system performance or is involved in malign activities.
It being hidden installed on your phones, against your will doesn't make it malware
The reason it matters is the rather rapidly growing assumption amongst the general public that Android is a malware troubled flatform. Which it is not.
Guru Zeb said:
Hmmmmmmmm nasty indeed !!!!!!!
But everyone needs to stop calling junk like this "MALWARE",
It is "ADWARE" a well known form of spam essentially.
Where as "malware" is an application that either degrades system performance or is involved in malign activities.
It being hidden installed on your phones, against your will doesn't make it malware
The reason it matters is the rather rapidly growing assumption amongst the general public that Android is a malware troubled flatform. Which it is not.
Click to expand...
Click to collapse
Hey Guru
Good point about the naming of the problem! Although on this occasion, whether it's 'malware', 'adware', or even 'underware' the name is less relevant. I think the point is that someone has infiltrated our phones and we needed to find the culprit
Personally, if it's 'pushing' stuff to my phone without me knowing, then in my book, that's 'malign activity'.
Glad I got rid of it though
stevep said:
Personally, if it's 'pushing' stuff to my phone without me knowing, then in my book, that's 'malign activity'.
Click to expand...
Click to collapse
You installed the app therefore giving it the permissions it requests
Sent from my ice cream powered Nexus S
DarkhShadow said:
You installed the app therefore giving it the permissions it requests
Sent from my ice cream powered Nexus S
Click to expand...
Click to collapse
Well said! Yeah..and that's the point. The original app - Notepad - was a 'safe' one.. so I let it install when it said that an update was available. The latest version introduced 'extra' permissions that I didn't look out for because I assumed it was still essentially the same app and therefore it would NOT allow ads/apps to be pushed.
I'd say that was 'less-than-honest-behaviour' - Maybe it should be called 'ReadTheSmallPrintWare'
stevep said:
Well said! Yeah..and that's the point. The original app - Notepad - was a 'safe' one.. so I let it install when it said that an update was available. The latest version introduced 'extra' permissions that I didn't look out for because I assumed it was still essentially the same app and therefore it would NOT allow ads/apps to be pushed.
I'd say that was 'less-than-honest-behaviour' - Maybe it should be called 'ReadTheSmallPrintWare'
Click to expand...
Click to collapse
If you install via market and an apps permissions change later it does highlight them in bold to bring them to your attention.
But they should say "can push notifications to your phone".
Dave
Sent from my LG P920 using Tapatalk
I have succses
Hi,
i have the same problem.
I find in my install apps two apps without peculiar icon (only universal system icon). This apps have in name too samsung. I don't remember when this apps I install. I uninstall it. And now I without batteryoptimizer malware message.
(Sorry my english is bad)
Same problem. Used the airpush and addons detector and found the culprit. Pin to Pinterest.
Thanks guys.

(Huawei P40 Lite/5G Aurora Store the unofficial FOSS client to Google's Play Store!

Alohaaa Community,
I know a lot of you have or are planning to buy Huawei devices without the Google Services, like: Play Store, Youtube, GMail etc., that's why I decided to write this article and let you know, that there exists a better life without the Play Store. Why? Simply, because there aer already a lot of alternatives, like: Aptoide, APKPure, APKMonk, Aurora Store etc.
Alternatively I recommend you Aurora Store! Here a short instruction how you can use it to get your favorite apps with it, without needing the Google Play Store.
First, you should download the official APK, which you can find right here >>> h***s://auroraoss.com/downloads.php
After you get to the page, simply tap on the Download button from below the Aurora Store. After this, the app download should begin and you will be able to install it (If needed, enable the "Unknown Sources" from the settings, which will appear instead of the "Install" button for the app).
In one other way you can find the "Aurora Store App" by searching with the "Petal Search by Huawei"!
Well, defining it briefly would sound like this: "Aurora Store is the unofficial FOSS client to Google's Play Store, having an elegant, concise and fresh design, from where you can download or update apps". Actually, this is just a short description of the app. It can be used with or without Google Mobile Services installed on your Huawei device. You can search for apps, get details about what each app tracks and what permissions it needs, about its size, reviews, the address of the developer and much more. Aurora Store spoofs the information about your phone/tablet, the language, the region and makes available apps that aren't allowed or available in your country. Below each app page, you can also find a button, which will bring you to the apps that were developed by the same author. The number of apps is enormous!
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
I always prefer the anonymous login, because it works just like having an account
I've been using the store for almost four weeks now almost daily and so far i can't find any problems - so far i've also found all the apps i need on Aurora! Personally, I see the Aurora Store as a real alternative to Google Play and its intrusive services! in the past, one always looked to have as little as possible installed on the smartfone from Google's site.....
greetzZ...
secproof
To be honest, this app is the best alternative app to use. I have been using this app probably for 2 months now.. its really good. Only problem is that when you update apps you have to manually install them.. Like the click to install button
Billabomb75 said:
To be honest, this app is the best alternative app to use. I have been using this app probably for 2 months now.. its really good. Only problem is that when you update apps you have to manually install them.. Like the click to install button
Click to expand...
Click to collapse
Yes but there is no synchronization of photos and contacts with this solution
I use only Huawei AppGallery, F-Droid and Petal Search, managed to find and install all the apps that I want.
Without GMS, I can still sync my Google Calendar and Contacts without any problem by using CalDav/CardDav sync.
ykkhern said:
I use only Huawei AppGallery, F-Droid and Petal Search, managed to find and install all the apps that I want.
Without GMS, I can still sync my Google Calendar and Contacts without any problem by using CalDav/CardDav sync.
Click to expand...
Click to collapse
I'm hoping you have a solution to restore paid purchases too please lol
Lizzo said:
I'm hoping you have a solution to restore paid purchases too please lol
Click to expand...
Click to collapse
Lol.... Never have to worry about this as I don't use any paid app, and I don't play game either

Packet Sniffing and SSL Pinning on an Android Game

Hello XDA forum,
I've tried everything in my knowledge so far, so I've finally decide to come on to this forum as I've completely ran out of idea as to how to move forward with this problem at this point.
I'm not that tech savvy so please excuse my terminologies or any assumptions as I describe the problem as they could be completely wrong.
Background:
Currently I'm playing a game called Fate/Grand Order. This game has many servers, and published by different companies in certain regions. In the beginning I was playing the Global/North American (NA) version of the game, but later I've began exploring different servers.
While playing the CN version of the game, and I was able to successfully packet sniff on this version of the game. The CN version of the game is published by Bilibili and downloaded via their games site (link) as Google (Play) is blocked in China, and its online interactions communicates with the Bilibili server. Whereas the other versions of the game such as NA, JP or KR are downloaded via Google Play.
Since I was able to packet sniff the CN version of the game, it got me curious into packet sniff the other versions of the game (I have tried with NA and JP). However, when I did my proxy software Fiddler was unable to pick up any of the important packets once the game has started.
What I have tried so far:
Initially I did a bit of digging around as to why after "Tunnel to cdn.data.fate-go.jp:443" or "Tunnel to data.fate-go.us:443", no more important packets would show up again.
At first I thought it was me not setting up my Fiddler's cert properly, however I can exclude that possibility for 2 reasons.
The first is that if I hadn't set it properly the first time around, I wouldn't be able to properly see and read the CN's server packets, secondly when I used HTTP Toolkit instead of Fiddler, the same situation is happening.
After bit of research, I was suggested that it could be modern Android Apps utilising SSL Pinning to prevent MITMs and so I've decide to find a way to disable SSL Pinning for the JP and NA version. After installing Frida, launching the Frida server on my device (an Emulator), and using Objection to boot the App and using "android sslpinning disable"
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
the results were still the same, therefore leaving me extremely confused whether I have gotten this all wrong. This lead me to speculate whether I have successfully unpinned the SSL or even if it uses pinned certs. I've tried to install this APK (an SSL Unpinning Demo), but I can't seem to be able to install it on my emulator. I then looked into whether I could manually swap out the pinned certs with my own, but when I opened the game APK in APK Studio there were no certs to be found.
So right now I'm not sure how to tackle this problem further. Maybe someone could explain what this game is doing to protect itself from having its packets read/modified, or if there's any way around it., or maybe I'm just an idiot and probably got my steps wrong somewhere along the way. This is all the info I can provide from the top of my head right now, let me know you need anything else.
I would like to try the same with Smash Legends so I will just leave my reply here hoping someone may know the answer.
I've met the same question now. Do you find any method for fgo.jp sniffing? If so, pls email me at [email protected].

Question Microsoft Confirms There's a 'Strange' Problem in Stable Version of Windows 11

{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Microsoft has confirmed a 'weird' issue in the stable version of Windows 11, some users may not be able to log in after adding a new Microsoft account user to the operating system. The company has shared details about the bug on the official Windows Health Dashboard website and explained how to fix it.
According to Microsoft, users are briefly locked out after the first restart or logout. The issue only appears once and for a short time on devices using Microsoft accounts, while Active Directory domain users and Azure Active Directory accounts remain unaffected. It only occurs on systems running the client version of Windows 11 21H2.
Reporting from Neowin, Thursday (8/9/2022), those who are having problems logging into their accounts on Windows 11 21H2 should not do anything to remedy the situation. The operating system will allow users to log in after a few minutes, plus Microsoft resolved the issue using the Known Issue Rollback system.
The latter automatically undoes problematic changes without any action required from the end user. In case you missed it, Microsoft recently alerted Windows Chile customers about a potential issue due to daylight saving time (Daylight saving time).
The company says users need to manually change their time and date settings to avoid problems with notifications, incorrect system times and other annoyances. Fortunately, this bug does not apply to customers outside of Chile.
Source:
heldean.com
Glad I've not "upgraded" to 11.
Happy with 10 and will stay until 2029, then maybe change to Windows 12 if Microsoft learned their lesson from 11. If not, Linux will be.
PhilipF8_2010 said:
Glad I've not "upgraded" to 11.
Happy with 10 and will stay until 2029, then maybe change to Windows 12 if Microsoft learned their lesson from 11. If not, Linux will be.
Click to expand...
Click to collapse
You do know windows 11 is basically a skin on windows 10.
Android-Desire said:
You do know windows 11 is basically a skin on windows 10.
Click to expand...
Click to collapse
With more restrictions and instability.
PhilipF8_2010 said:
With more restrictions and instability.
Click to expand...
Click to collapse
No, that is cause you think that, the people that think that are not really good on windows or PCs in general.
You got the same system/kernel behind, you got the same apps and you even got more theme options.
Just cause there is some new things does not mean restrictions or instability, i have 16 PCs in my home with different hardware, from AMD only systems to Intel 12gen and Nvidia, even got a few Arm based machines here all running windows 11.
People that say windows 11 is unstable is cause they did not upgrade drivers and or is lying about said instability.
If you don't even try to understand how a computer works then maybe go Apple?`They dont need as much knowledge as windows.

Question Unable to pay after upgrading to android 13!

Hello. I have a problem with phone payments after updating to android 13 in GT2 Pro. Payments stopped working. I checked through google wallet and directly through the bank application. A message appears on the terminal that the card is not supported, card reading error. I've already reset the banking app and cleared the app's memory, but it didn't help. Could the problem occur because I downloaded this system via VPN Germany? If I knew, I wouldn't install this android because I really care about phone payments. I do not know what to do. In Samsung, the matter was easier, among other things, because the Internet is full of Polish forums and Samsung has very good support and such problems were eliminated within a week. I don't even know where to write to get help. I factory reset my phone and it worked for two days and now it stopped working again. Card reading error pops up every time. What else can I do?
After updating to Android 13, I paid for the first time and it works for me so far.
After a factory reset it worked for 2 days. I will add that before the reset it was not working at all. I bought this phone because of payments and here's something. After a factory reset it worked for 2 days. I will add that before the reset it was not working at all. I bought this phone because of payments and here's something.
Thanks for pointing out this issue, I'll keep an eye on it.
I found on the forum:
realme Community
Welcome to realme Community, your virtual playground to learn the latest tech news, win exclusive prizes, or simply chat about realme!
c.realme.com
I saw it too. My play store is certified so the problem lies elsewhere. Sorry for the wording, but I'm using google translate.
Hello everyone. Probably the problem with payments occurs only for people who have additional profiles on their phones, additional users, or a business profile for work. I just had a work profile and payments didn't work. I deleted the profile and everything is ok. But to be honest, I care about payments and the work profile, so I hope that some action will be taken to remove the error. I have no idea why this is happening but then the phone goes stupid and you can't pay. If you have any cloned apps, you may also have a problem. Let me know if I helped you and if the payments started working. Regards
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Same situation as yours, tried all means (I heard about clone wallet app that will help but I assume the work profile somehow corrupts the nfc payment.)
manage to find an alternative "fix" create a sub account (multi user) and nfc/payment works in that sub account.
I am not using real me, I have an Xperia 10 III and updated to Android 13
I now have the same problem (and yes I have a work profile)

Categories

Resources