Related
OK, I did search for this before I posted so I hope I don't get anybody mad for starting a new thread if this has been covered.
Regarding security threats and android phones. I did see the thread about a malware program out of Russia affecting android phones (installed via a movie program?). But in general, security issues do not seem to be a big issue.
The other threads I've found seem to have conflicting opinions.
So my question(s) is, how much do you all worry about security issues? Does anybody use Lookout (free mobile security app)? I did see that it has high ratings on the market, but I put more stock in what this community has for opinions than the market users.
Again, if this has been covered to death and I missed it, I apologize.
I do have concerns over security and therefore really don't install many apps. Since I have had an android phone, my gmail account has been compromised once, allowing spam to be sent from my gmail account and also spam to be placed on my Blogger site. While I cannot be certain it was something on my phone that allowed this, I rarely use my computer to access any of my Google apps. I also had never had issues with any email or other accounts being compromised for as long as I've had a computer. I also rarely get spam. So while I can't be certain, the fact it showed my account being logged into by a mobile device in Malaysia makes me very suspicious.
Sent from my HERO200 using XDA App
Thanks for the reply. I take it you haven't used Lookout or any of the other security apps?
Lookout looks legit, but I am a little skeptical. Guess I'll wait and see if I get any other responses before I do anything with it.
I haven't tried it in the past, as I'm skeptical too. I went ahead and installed it though after my post just to see. It is now being installed by some of the carriers by default apparently and I guess has won some awards, so hopefully it's been poked at a bit by people to where it itself isn't a large threat. Figure if it doesn't impact performance a lot there can't be any harm in trying it. Now, as for how effective it really is, I'd imagine that's something many people will never know.
Sent from my HERO200 using XDA App
Again, thanks for your input.
Performance impact is basically what I was worried about. I actually installed it the other day but when I realized it was on ALL the time, I uninstalled it before really giving it a chance.
I guess it's worth a shot. I'll install it again tonight and run a couple before and after quadrant benchmarks to see how much of an impact.
If I don't get anybody else posting here, I'll still post my experience in a couple/few days, so if you're interested, check back later in the week.
Thanks dpeeps, have a good one.
Paranoid much?
Sent from my HERO200 using XDA App
Eric_1966_FXE said:
Thanks for the reply. I take it you haven't used Lookout or any of the other security apps?
Lookout looks legit, but I am a little skeptical. Guess I'll wait and see if I get any other responses before I do anything with it.
Click to expand...
Click to collapse
seriously? lookout is featured in a Droid commercial for verizon. (i think its verizon anyhow)
i use it, i really haven't noticed any effect on the performance.
Vandelay007 said:
Paranoid much?
Sent from my HERO200 using XDA App
Click to expand...
Click to collapse
Not paranoid .... just cautious.
There is so much good information on this site that when I search for something that sounds too good (for free), and I can't find anything, yes, I'm going to "err on the side of caution".
ngholson, thanks for the input.
Eric_1966_FXE said:
ngholson, thanks for the input.
Click to expand...
Click to collapse
you are welcome. i use it mostly for the lost feature. if i lose it i can activate the gps and locate it that way, and i can also make it scream (caution this is really loud, and the only way to stop it is a battery pull) if it is somewhere close to me. it is very effective.
EDIT: they changed the scream feature, now it will scream for 1 minute and you can stop it by turning the volume down on the phone.
So I've been away for just a day (no phone, no pc) and when I get home I start browsing all the different sites I enjoy, finding anything that may be interesting and I feel like Ive been slapped in the face, I see several articles about malicious apps, nothing new really, and as I do often go on various spouts of randomly downloading apps, Im still over cautiously paranoid but this droid dream as they call it and the information (albeit lack of) surrounding this latest round of malware has me worried, although I do tend to wipe my phone twice a month (as I said I am rather paranoid) Im just wondering what the general opinions are and any tips that could be offered to help avoid problems like these, and as I have yet to do so and Im feeling quite ungrateful at this time, Thank you to the devs and community, Im either running a factory reset, wiping the phone for some patch or update, flashing a new kernel/rom that Im actually relieved that my phone never keeps anything long enough to be exploited, if it wasnt for all the helpful people, tutorials and advice I would undoubtedly be running a stock phone and Im 99% sure i would have a some malicious app installed (I almost downloaded one of the very apps listed on androidpolice for example)
- -sorry for the length of the post, i swear when i started writing it was 4 badly worded sentences
I never download programs that are just out. If a game sounds cool, I may wait a week or so to get it. I also run MyLookout and have it scan every night.
Use anti-virus software like Lookout. Search the market for anti-virus apps. Its really no different than using a computer. There are thousands of viruses for PCs. Nothing to really be paranoid over, there are ways to avoid them, and/or fight them. Just use your better judgement when downloading apps, and just to be safe use a trusted anti-virus app. But generally i'd say we are still pretty safe.
I never use anti-virus apps on my phone, as they can bog things down. Just take the same precautions you would on a PC. Don't download stupid **** and you should be fine. :b
I don't have an antivirus on my computer and least of all my phone. Common sense is the best antivirus.
DoctorComrade said:
I don't have an antivirus on my computer and least of all my phone. Common sense is the best antivirus.
Click to expand...
Click to collapse
This. I see no need for virus software. I have run my Win7 pc since I got it (@ Win7's launch) with no virus software and its still just as good as the day I got it. FireFox seems to block everything I need it to. And on my phone the most I might download would be an album or a movie and I only do that from trusted websites.
Sent from my PC36100 using XDA App
I am far more worried about the amount of time my server is gone with my credit card after dinner.
uniquenameevo said:
I am far more worried about the amount of time my server is gone with my credit card after dinner.
Click to expand...
Click to collapse
+1
ten char
DoctorComrade said:
I don't have an antivirus on my computer and least of all my phone. Common sense is the best antivirus.
Click to expand...
Click to collapse
Common sense doesn't save you from the identity thief that drives around neighborhoods looking for wireless signals to access, a good thief can crack a wpa secured router. This is where you want your anti-virus software, these days they almost always come as an "Internet" Security suite, which includes intrusion detection and prevention.
Or you could secure your network adequetly.and btw most identity theives are probably not trolling neighborhood networks. They are the people with access to mass amounts of accounts.ie cable companies, subscription services, and the like.
Khilbron said:
Common sense doesn't save you from the identity thief that drives around neighborhoods looking for wireless signals to access, a good thief can crack a wpa secured router. This is where you want your anti-virus software, these days they almost always come as an "Internet" Security suite, which includes intrusion detection and prevention.
Click to expand...
Click to collapse
Sent from my GT-P1000 using XDA App
hey guys.
i just now started thinking ,what DOES unlocking the bootloader achieve ?
i mean if its only implementing new kernels which make new rom implementation easier and OCing available.. well im not all that impressed by it then.
(yes oc is good, but people seem to be making new roms anyway...so)
so please helpful forumers, enlighten me ,what does the unlocking of the bootloader achieve for us ?
and yea i am kinda new to android stuff
yep basically what you said - being able to flash unsigned kernal which makes rom development easier as you have control over the kernal and the android system so you dont have to compile your android system to match up to the existing SE kernal.
In simple terms: Gingerbread, 16 M colors, all hardware pieces working at 100%, getting rid of SE layers, etc.
alright men thanks a bunch.
guess im definitely going to buy the neo, seems such a perfect price and power match and the bootloader question was the only thing keeping me from it, also the ram, but i have good faith in gingerbread task manager +the launcher is very nice
Indeed, it is so much more than just OC'ing.
Would an unlocked bootloader mean something could be done about the call volume on the X10?
And could you make the photo light work as a flash without third party apps?
Glad someone asked this question, as I have no idea what it all means and didn't want to start a new post
YES IT IS. But it seems to be too far since many of us are using this device from almost one year and would be able to renew our X10 soon letting it in the past. Too sad since with the bootloader opened this device could be amazing and safe. But now I'm blocking data traffic to avoid viruses and using it like an old phone and looking for a replacement, also the camera is next to be useless with such stupid light. GPS is fine but every smartphone out there come with GPS too !
xnewser said:
YES IT IS. But it seems to be too far since many of us are using this device from almost one year and would be able to renew our X10 soon letting it in the past. Too sad since with the bootloader opened this device could be amazing and safe. But now I'm blocking data traffic to avoid viruses and using it like an old phone and looking for a replacement, also the camera is next to be useless with such stupid light. GPS is fine but every smartphone out there come with GPS too !
Click to expand...
Click to collapse
and how exactly does the bootloader connect to the safety of your device ? just watch what ure dling ..
xilw3r said:
and how exactly does the bootloader connect to the safety of your device ? just watch what ure dling ..
Click to expand...
Click to collapse
It let you to install a clean copy of the latest software and why not another completely new and different operative system.
xnewser said:
It let you to install a clean copy of the latest software and why not another completely new and different operative system.
Click to expand...
Click to collapse
im sorry but i STILL dont understand how this connects to safety :X (if by safety you mean malware from infected apps.....)
xilw3r said:
im sorry but i STILL dont understand how this connects to safety :X (if by safety you mean malware from infected apps.....)
Click to expand...
Click to collapse
Yes, he means that. There are some security issues in past Android versions, but in Gingerbread those issues shouldn't have any effect.
Briefly, on the security topic... I've been wondering about malware in an app I use, but didn't know where to ask about it. Traffic Counter app tracks your usage of minutes, data, wifi, and texts. I started using because I have limited data, and 1500 text messages. Since I started using this app I have been flooded with text messages and emails from my carrier about their unlimited text message plan and their 2GB data plans. Is this the malware security issue?
agentJBM said:
Briefly, on the security topic... I've been wondering about malware in an app I use, but didn't know where to ask about it. Traffic Counter app tracks your usage of minutes, data, wifi, and texts. I started using because I have limited data, and 1500 text messages. Since I started using this app I have been flooded with text messages and emails from my carrier about their unlimited text message plan and their 2GB data plans. Is this the malware security issue?
Click to expand...
Click to collapse
I'd say yes, the famous spyware, wich sends information to your carrier about you and your preferences or "needs", so your carrier offers you something you may be interested on.
Of course that's not with the intention of damaging you (maybe...), but the point is that they're spying you
@agentjbm
I would say that if you are getting those from your carrier now then you could call them about it. They usually have an opt out for receiving messages from your carrier.
Sent from my Delorean using a flux capacitor!
Yes, I already asked them to stop. Outside of the nuisance of multiple messages I don't see the major "security issue". In fact, I prefer target marketing to mass marketing. As long as it is something that could be of interest to me, I don't mind it.
New to smartphones, I was just wondering do I need an antivirus for my Galaxy Note? And if the answer is yes, what do you guys recommend?
All you need to know about this subject is right here.
Regards,
Dave
foxmeister said:
All you need to know about this subject is right here.
Regards,
Dave
Click to expand...
Click to collapse
That's exactly the article I read that made me ask the question
Since it came from google, the manufacturer of android, I think they would try to protect the integrity of their product, so I am not sure....
Checkout these articles: http://www.neowin.net/news/free-android-anti-virus-products-virtually-useless - http://www.neowin.net/news/wp7-avg-antivirus-app-is-possibly-spyware
I personally feel Google trying to do their down things does allow malware to get in once a while and need to improve Android security. I am more worried with the privacy issue (Carrier IQ). I still feel there is a level of openness with Android, its not entire open source, but at least you can see something unlike some competing mobile os.
Personally I use AdFree (which does more than block ads since it block malware sites from loading, it basically adds IP blocklist to your /etc/hosts file, which you can also do manually) and LBE Privacy Guard (which seems to be a great concept allowing to deny permissions of apps, my only concern of it is being closed source, there is a big thread about it).
having an antivirus is useful. a few months ago my motorola atrix was having a bug where the screen would only light up when i first turned it on. if i locked it and then tried to unlock it, the screen would work, but the backlight wouldnt work.
i grabbed dr. web light, not expecting it to really do anything. ended up finding malware, and after removing the malware, screen backlight started working properly again.
on a phone like the galaxy note, theres more than enough processing power to run a background virus scanner without running out of puff, so i say, why not?
The answer to this question is really quite simple, it depends on this:
Do you carefully watch the permissions of apps you are about to install?
If your answer is: "yes, I carefully watch the permissions and don't install apps such as tetris which wants access to sms" then you can quite safely go without any anti malware software.
If your answer on the other hand is: "no, I just install interesting apps and quickly click through the permission page to start the download" then yes, you might benefit of software to protect your device.
The beauty of Android is that whatever app you are about to install INCLUDING malware states clearly what part of your device it is going to access. If people don't bother reading the permissions then a big part of fault is on them also. However this isn't really too well explained, especially for new users, so I assume a majority of users don't really understand WHY the permissions are shown before downloading an app. This is something Google could improve on in my opinion.
And lastly, the fact that apps coming to Apples app store are screened doesn't make it any more secure than Android. It just has people making the choices FOR you. If something well hidden is slipped past them, not a single user will know about the threat. Just as one app developer showed in public a few weeks ago and as a result got his developer status cancelled by Apple.
edit
Also a small note here. A virus is something that multiplies and spreads (weather it's bacteria or code doesn't matter). The malicious apps in the market are malware and spyware and because of this the word antivirus for Android isn't really correct. They don't stop viruses, they stop malicious apps.
edit 2
here's the link to the story of that Apple developer:
http://www.forbes.com/sites/andygre...per-program-for-proof-of-concept-exploit-app/
this just proves that app store isn't any more secure than Android market. It just has people who take a look at apps before they are approved, and as you can read, they are far from perfect.
How many of you guys use Antivirus?
Who here does not feel the need?
Does Google recommend it like Windows does for PC? (already read the article from one Google guy saying Antivirus companies are playing on our fears, but he is only one guy)
And to those who have used antivirus software, which software did you use on your Note specifically and has it slowed down your Note or increased the battery consumption?
knowsnophones said:
How many of you guys use Antivirus?
Who here does not feel the need?
Does Google recommend it like Windows does for PC? (already read the article from one Google guy saying Antivirus companies are playing on our fears, but he is only one guy)
And to those who have used antivirus software, which software did you use on your Note specifically and has it slowed down your Note or increased the battery consumption?
Click to expand...
Click to collapse
You already have a couple fairly comprehensive answers to your first post but I'll answer these questions too:
I do not use any antivirus and I do not feel the need to
Aside from that article, I haven't seen a single mention from Google about needing any antivirus at all.
The so called antivirus programs that are made for Android right now suck. They don't stop enough malware to be worth the money or effort, here's a few source links for evidence: http://www.extremetech.com/computin...rus-apps-are-useless-heres-what-to-do-instead and http://www.informationweek.com/byte/news/231902823
Just by using common sense you will be fine with no antivirus app. If you really want an antivirus app, then go get it. It will be close to useless and it won't stop all threats anyway so you will still have to use common sense to be protected anyway.
I installed avast. it is free and no it doesn't slow down my note.
friedje said:
I installed avast. it is free and no it doesn't slow down my note.
Click to expand...
Click to collapse
I got the AVG pro, might not really need it since I´m kind of anal about what I install on the GNOTE... But better safe than sorry...
+1 doesn´t slow things down.
akselic said:
You already have a couple fairly comprehensive answers to your first post but I'll answer these questions too:
I do not use any antivirus and I do not feel the need to
Aside from that article, I haven't seen a single mention from Google about needing any antivirus at all.
The so called antivirus programs that are made for Android right now suck. They don't stop enough malware to be worth the money or effort, here's a few source links for evidence: http://www.extremetech.com/computin...rus-apps-are-useless-heres-what-to-do-instead and http://www.informationweek.com/byte/news/231902823
Just by using common sense you will be fine with no antivirus app. If you really want an antivirus app, then go get it. It will be close to useless and it won't stop all threats anyway so you will still have to use common sense to be protected anyway.
Click to expand...
Click to collapse
Just because YOU feel superior to most other users, doesn't mean that they have the knowledge or enough 'common sense' to understand the permissions some apps ask for. The fact that an antivirus is not 100% safe doesn't mean it is 100% useless.... If it stops just one threath it already made sense..
There are lots of good FREE antivirus programs so where is the reason NOT to install one ???
There are also ppl that don't take medics, because if they or their children die from FLU that was Gods will.......
Maybe you should consider that not all users of a smartphone are IT-gods like you
friedje said:
I installed avast. it is free and no it doesn't slow down my note.
Click to expand...
Click to collapse
ville7805 said:
I got the AVG pro, might not really need it since I´m kind of anal about what I install on the GNOTE... But better safe than sorry...
+1 doesn´t slow things down.
Click to expand...
Click to collapse
I have both installed, no slowdown issues and was running LBE too, may switch to droidwall or turn LBE back on. Worth noting the AVG pro is free if you qualify for the Samsung Hub exclusives.
Dave
I am using Lookout anti-virus ever since my first Android more than a year ago. It's never given me a hic-cup even when scanning.
Also, anyone knows an App which lists which App has what permission in a list form?
Thanks!
Sent from my GT-N7000 using Tapatalk
Does a free antitrust do as good a job as a paid one
Sent from my GT-N7000 using xda premium
ChimpNippl3s said:
Does a free antitrust do as good a job as a paid one
Sent from my GT-N7000 using xda premium
Click to expand...
Click to collapse
For now they all do a rather lousy job, the free and the paid ones.
But the paid ones seem to score a bit better.
I installed LBE aswell, but you need root for it to work well.
Same goes for avast, it prefers having root access.
I use avg on my galaxy tab, works without any issues.
friedje said:
Just because YOU feel superior to most other users, doesn't mean that they have the knowledge or enough 'common sense' to understand the permissions some apps ask for. The fact that an antivirus is not 100% safe doesn't mean it is 100% useless.... If it stops just one threath it already made sense..
There are lots of good FREE antivirus programs so where is the reason NOT to install one ???
There are also ppl that don't take medics, because if they or their children die from FLU that was Gods will.......
Maybe you should consider that not all users of a smartphone are IT-gods like you
Click to expand...
Click to collapse
No need to over react mate. I'm no IT-god, or a nerd or anything like an "advanced" user. The only common sense that I was referring to is something that everyone has. If you can read what the apps do, then you can read the permissions before installing them. There is no need to be an expert.
If you are installing a single player offline game that asks permissions for sms, phone calls and contacts and it isn't blacklisted by those antivirus apps yet, then it won't be detected and you can only blame yourself when you get a 600$ phone bill because the app has sent messages to premium numbers. It's not rocket science, just common sence.
If the tests conclude that 90% of androids antivirus programs manage 10-20% of malicious apps and you still want one, then go ahead and get one. No need to get offended when people are trying to give advice.
Unreal,
Read it here........
http://www.businessinsider.com/unpa...ung-smartphones-risk-hacking-nowsecure-2015-6
CC
cc999 said:
Unreal,
Read it here........
http://www.businessinsider.com/unpa...ung-smartphones-risk-hacking-nowsecure-2015-6
CC
Click to expand...
Click to collapse
From what I understand it has to be done on an unsecured network and has to be at the exact same time as you update the app. Making it next to impossible as a hacker would have to know your updating habits!
Sent from my SM-G920I using Tapatalk
Even with 600 million devices at risk, the chances that this exploit could ever be used is minimal because as mentioned above it required someone to do some pretty unlikely things on a network with a hacker
You guys act like you all work for some intelligence companies and hackers would give a **** to steal your data.
Sent from my SM-G920T
Totally overblown and already being discussed in the S6 Edge forum (link). Here are the most pertinent posts:
tanjiajun_34 said:
I believe it should be easy to fix. I cannot try because I have have Swiftkey preinstalled but I believe these are the methods you can try...
1. Update the Swiftkey to the one on Play Store.
2. Disable the Swiftkey application. I believe all non Samsung system applications and some of Samsung's system applications should be able to be disabled. Swiftkey shouldn't be a problem...
3. You are here on xda so chances you will be rooting your phone I assume? If you have root, you can just uninstall it.
Click to expand...
Click to collapse
droidzer1 said:
Totally overblown vulnerability article today on Swiftkey. Firstly I seriously doubt 600M phones have it. I just checked 8 Samsung phones from various carriers - Sprint, Verizon, US cellular - S3, S4's, S5's, Note 2 and 3's and out of those 8 only one had Swiftkey on it. Easy to uninstall or Freeze if rooted. I take this as a punch back from someone on the Apple fan club finding a minor and hard to exploit vulnerability in android since Apple just got hit big in the last week or so. If you didn't find one of the articles detailing this exploit here's the skinny: It only can be exploited if you are on Wifi and on the same Hotspot or router as a would be hacker. That hacker needs to do some fairly complex stuff to spoof a Swiftkey server and your phone has to be trying to download a language pack update. I'd say there is about a 1 in 600 million chance of that happening
Click to expand...
Click to collapse
So, this pretty much sums it up in one word:
cc999 said:
Unreal
Click to expand...
Click to collapse
Galaxy S6 Keyboard Security Fix
Hello all,
So we all know about the security flaw of the Samsung keyboard app that has affected the Galaxy S6, S5, S4 and other devices. Simply installing a third-party keyboard will not fix the problem. You need to completely uninstall it.
Source: http://www.naldotech.com/how-to-fix-galaxy-s6-keyboard-swiftkey-security-issue/
Note: Make sure to have a third-party keyboard installed or you will not be able to use the phone.
1. You need root access and Titanium Backup.
2. Open Titanium and go to Backup/Restore.
Scroll down until you find Samsung Keyboard 4.0 and tap on it.
Make a backup first and then press the uninstall button"".
This isn't the best solution but it will work for all the people who want to sleep well at night without the fear of the flaw.
there is nothing to worry about, don't connect to unsecure networks (but how often do you do that) and don't update the language packs when you are on one (how often do you do that? once during setup!!)
ive always preferred the google keyboard, thank you.
The bug is not in the app called "SwiftKey" that comes preinstalled or the one you might get from the Play Store, but in the stock Samsung keyboard app, which uses an SDK from SwiftKey (here referring to SwiftKey the company, not the aforementioned SwiftKey app) to do its word predictions. The vulnerability can be exploited (as I understand it) as often as this stock keyboard polls for language updates. Not sure how often that is, but it isn't user initiated, so it could happen at any time if the app polls for an update while the user is connected to a network with a malicious user on it. The best protection for the average user (as I understand it) is to simply avoid connecting to networks whose security you aren't absolutely certain of. this is the technical writeup where I got most of my info from, however, they do talk about a "Swift keyboard", which the other reputable sources I've seen (such as this SwiftKey article on the issue) clarify as the stock Samsung keyboard.
okay if I understand you correctly you are saying that the Samsung keyboard was developed using the SDK from swifty and the only way to not be vulnerable to this exploit is to remove the stock samsung keyboard and use a third-party alternative is that correct?
Sent from my SM-G920F
OSI-813 said:
okay if I understand you correctly you are saying that the Samsung keyboard was developed using the SDK from swifty and the only way to not be vulnerable to this exploit is to remove the stock samsung keyboard and use a third-party alternative is that correct?
Sent from my SM-G920F
Click to expand...
Click to collapse
If you are rooted and have the ability to completely remove it, I think that would probably get rid of the issue as well, but I can't say that definitively, and I can't say for sure what side effects that might have. (If someone who knows the internals a bit better would weigh in, I would appreciate some clarification on that point as well.) I know that just switching the default keyboard to a third-party isn't good enough. What I am doing until a fix comes out (which doesn't really differ from my normal behaviors, but that's beside the point) is basically only connecting to the wifi at home, work, and the university I am attending. I also added the update site (skslm.swiftkey.net) to my hosts file (using AdAway), which should block any traffic to the update site from leaving the phone.
OSI-813 said:
okay if I understand you correctly you are saying that the Samsung keyboard was developed using the SDK from swifty and the only way to not be vulnerable to this exploit is to remove the stock samsung keyboard and use a third-party alternative is that correct?
Sent from my SM-G920F
Click to expand...
Click to collapse
You could just wait a few days, knowing that the risk is very insignificant in the first place:
Update: Samsung reached out to us to announce that it will soon patch the vulnerability through Knox. Read the full statement below:
Samsung takes emerging security threats very seriously. We are aware of the recent issue reported by several media outlets and are committed to providing the latest in mobile security. Samsung Knox has the capability to update the security policy of the phones, over-the-air, to invalidate any potential vulnerabilities caused by this issue. The security policy updates will begin rolling out in a few days. In addition to the security policy update, we are also working with SwiftKey to address potential risks going forward.
Click to expand...
Click to collapse
Click to expand...
Click to collapse
Source: Phone Arena
They have to initiate the hack the SAME EXACT TIME you update your keyboard app...lol. You've got better chances of being robbed at gun point FYI.
bloodrain954 said:
They have to initiate the hack the SAME EXACT TIME you update your keyboard app...lol. You've got better chances of being robbed at gun point FYI.
Click to expand...
Click to collapse
False. Anyone with a little programming knowledge and the right tools could easily set up a program to passively take advantage of this exploit. It doesn't require the user to do anything to the keyboard app, the app polls for updates to its language files every so often regardless of anything the user does. And all the attacker has to do is use software that's already out there that lets them write programs to intercept and alter web traffic. Heck, there's a proof of concept by the people at NowSecure that should be pretty easy to turn into a usable hack. An industrious hacker might not even have to be nearby, they could tuck a Rasperry Pi away in the corner of a starbucks and infect some phones that way. Are you at any risk in most situations? Probably not. But I still would make sure your phone doesn't automatically connect to unsecured wi-fi.
dustfinger314 said:
False. Anyone with a little programming knowledge and the right tools could easily set up a program to passively take advantage of this exploit. ....
An industrious hacker might not even have to be nearby, they could tuck a Rasperry Pi away in the corner of a starbucks and infect some phones that way. Are you at any risk in most situations? Probably not. But I still would make sure your phone doesn't automatically connect to unsecured wi-fi.
Click to expand...
Click to collapse
Curious, how often are you on an insecure network? For me, basically pretty much never.
krelvinaz said:
Curious, how often are you on an insecure network? For me, basically pretty much never.
Click to expand...
Click to collapse
Haha, also pretty much never.
dustfinger314 said:
False. Anyone with a little programming knowledge and the right tools could easily set up a program to passively take advantage of this exploit. It doesn't require the user to do anything to the keyboard app, the app polls for updates to its language files every so often regardless of anything the user does. And all the attacker has to do is use software that's already out there that lets them write programs to intercept and alter web traffic. Heck, there's a proof of concept by the people at NowSecure that should be pretty easy to turn into a usable hack. An industrious hacker might not even have to be nearby, they could tuck a Rasperry Pi away in the corner of a starbucks and infect some phones that way. Are you at any risk in most situations? Probably not. But I still would make sure your phone doesn't automatically connect to unsecured wi-fi.
Click to expand...
Click to collapse
I'm curious, do you buy tinfoil hats in bulk or as needed?
bloodrain954 said:
I'm curious, do you buy tinfoil hats in bulk or as needed?
Click to expand...
Click to collapse
I can't tell you that for security reasons.
I think you're more likely to be killed by a cow.
hese security flaws happen all the time and are blown out of proportion by people wanting to scaremonger. Tell me OP how many have been exploited