Bobby installed an app to get free porn. Now Bobby has a Smartphone Transmitted Disease. Don't be Bobby. Abstain from 3rd-party apps.
-
-
Replying to @SwiftOnSecurity
Only consider installing a mobile app *after* you've determined that the mobile website does not meet your needs. Using the browser instead of an app protects your privacy and reduces your attack surface.
14 replies 61 retweets 191 likes -
Replying to @wdormann @SwiftOnSecurity
Your tweet sent me down a rabbit hole - namely, how far back in your TL would I have to go to find mention of an IOS app with a major flaw? Answer: I gave up. IOS seems more resistant to leaking data than Android. Would you agree?
1 reply 0 retweets 0 likes -
Replying to @JimDinMN @SwiftOnSecurity
At some point, iOS gave you granular control of app permissions, and Android did not. That's when I switched. However, modern Android does finally give the user a similar level of control. As for my personal focus on Android apps, it's simply because I have an app downloader.
2 replies 0 retweets 0 likes -
@tvidas did a paper on this precise problem a few years back. iOS does JIT permissions whereas android does install time perms. May be fixed more recently in android. http://www.ieee-security.org/TC/W2SP/2011/papers/curbingPermissionCreep.pdf … .1 reply 0 retweets 0 likes -
This changed with apps that target Android 6.0, which was released in 2015. Those apps behave similar to iOS apps, where permissions are granted or denied at run time.
1 reply 0 retweets 3 likes -
yep, and I follow some of your Android narratives (like the recent mass downloading and subsequent cert checks) One thing that
@Android doesn't really do, even after 6.0, is give users full selective control of perms. For instance, one cannot deny INTERNET for any given app2 replies 0 retweets 1 like -
Since I can deny Wifi and mobile data permissions for each App seperately, do you know of another way for the app to contact the Internet? If not, I'd say it totally is possible.
1 reply 0 retweets 0 likes -
Replying to @SaphiDragonRa @tvidas and
INTERNET (and plenty others) is a "normal" permission on stock Android. These permissions don't prompt before they're used, and they cannot be revoked. https://developer.android.com/guide/topics/permissions/overview …pic.twitter.com/wx7z5FRnRZ
1 reply 0 retweets 1 like -
Still, how do they access the Internet without passing through Wifi or mobile data? Seriously asking, because I want to feel less dumb next time I hear of it
1 reply 0 retweets 0 likes
Where have you seen the ability to disable WiFi or mobile data on a per-app basis? Here we have Candy Crush Soda Saga, where it hasn't requested any special permissions. Yet is uses the internet, which can be seen in the "Data usage" field.pic.twitter.com/KvvBbDxpz5
-
-
Under Network-apps, Android 6.0pic.twitter.com/QMPKzaLljf
1 reply 0 retweets 0 likes -
Replying to @SaphiDragonRa @wdormann and
Found anything?
0 replies 0 retweets 0 likes
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.