Privacy focused Android fork CopperheadOS became dead after the developer was fired. New forks like RattlesnakeOS, #!os or Android Hardening are available.
#security #privacy #news #latestnews #custom #ROM #google #dontbeevil
DETAILS: piunikaweb.com/2019/02/05/the
Conversation
This Tweet was deleted by the Tweet author. Learn more
1
Yes, that's accurate. It's not only behind several security patches, but lacks hardware and device security updates all the way back to August 2018. Those updates are available through Android Pie, and it was mandatory to migrate last year in order to continue providing them.
1
Pixel, Pixel XL, Pixel 2 and Pixel 2 XL stopped receiving security updates via the AOSP 8 branch in August last year. They never received an August 2018 security update via Android 8 as you can see from developers.google.com/android/images and the AOSP repositories for them which ended then.
1
If you look at a security bulletin like the February 2019 one, you can see it's divided into two:
source.android.com/security/bulle
The 2019-02-01 portion is made available via AOSP including the 8.1.0 branch that Copperhead continued merging months late.
The 2019-02-05 portion is not.
1
1
The -05 updates are tied to the SoC platform, kernel and other device-specific code not updated via the baseline AOSP releases. Copperhead does not have these updates since August 2018. They DO NOT have even the August 2018 security update and are dishonest about the patch level.
1
1
1
They resorted to doing the same thing that other ROMs have done for years: lying to their users (in this case customers) about the patch level they're providing to make it appear secure. They're aware they lack full security updates since August and are just incredibly dishonest.
1
1
They only applied a tiny subset of these additional patches, and are pretending that they did all the work. It's not feasible to provide full security updates for these devices via Android 8. I would have migrated to Pie within 2 weeks in August if the company hadn't gone rogue.
1
The company was unwilling to devote the necessary resources to the actual development work and became focused on selling companies contracts it was unable to fulfil. The hardened OS took a back seat to James lining his pockets and pursuing get rich quick schemes via the company.
In private, before things publicly fell apart, the company was already engaged in selling contracts it would be unwilling to properly fulfil with quality products. Copperhead sold Nexus 9 tablets to despite them being end-of-life. There is a lot that I considered unethical.
1
1