- This topic has 103 replies, 1 voice, and was last updated 7 months, 3 weeks ago by
.
.
>sis just use common sense and you will be fine
>the google play store is constantly full of malware
your phone CAN install applications from other, trustable sources, right anon? oh wait…
>NOOOO M-MUH INDIA USES ANDROID NOOOOO
freaking lel iJeets keep grasping to straws
>t. *beep… beep* i… hhh *beep* i wh… *beep… beep* i wish i… *beep* c- consoomed… *beep beep* m- more… product… *beeeeeeeeee*
>freaking APP STORE
pinechads win yet again
kek
>not using an iphone is common sense
kek
>Good luck with your binary blob "write-once" shitty outsourced firmware effort, frekkin 0day heaven /vendor partition and failed project treble on Android.
>
>Good luck with the endless fuckery that is popups, dialogs, endless wizards and endless settings that is the norm on Android where you are distracted every fucken second from being productive on master race PC.
>
>Good luck with trying to hammer every tracking app down with more apps, while getting pwned by open-source library exploits like WebKit and we are all vulnerable anyways.
>
>Just don’t fucken say you got it all figured out right sis.. Cuz you don’t have a frekkin clue where to start to audit your android shit and its impossible to secure it 100% no matter how autistic Greta you are.
>
>Its not possiOMG to secure your phones 100%. Yesterdays secure phone gets pwned 2morow.
>
>But at least us iToddlers don’t waste time on the endless effort in securing an android.. its worthless in the end.
>
>Cry scriptkiddie brave browser neckbeard communist hak5 normie android tears..
I don’t have to pray since I don’t buy phones which don’t have good community support so I can keep my phone updated as soon as possible. And I’ve done so since the original S1 days. It’s not like there are reports every other week about millions of phones getting exploited if security patches are a couple of months out of date. On the other hand iOS updates introduce throttling after a year, so..
community support is worthless.
can’t patch binary blobs.
>Second, many users have likely read about the Quadrooter vulnerability coming out of DEF CON. Here, we have a bit of bad news. Of the four reported CVEs, we’ve been able to plug the ones that affected OSS code (ie the kernel), specifically CVE-2016-2059 and CVE-2016-5340. However, some of the reported vulnerabilities lie within OEM binary blobs, meaning we don’t have source access to resolve them.
>So what does this mean? Unfortunately, for many devices we may never be able to completely resolve the outstanding issues, as OEMs are unlikely to release updated blobs across the generations of devices CM 13.0 supports
https://web.archive.org/web/20161223020015/https://www.cyanogenmod.org/blog/cm-13-0-release-znh5y
LineageOS also communicates this with some vendor patch level which they cannot update. picrel.
security-conscious custom roms like Graphene will immediately drop support when there are no more patches from the vendor:
https://grapheneos.org/faq#legacy-devices
You can eat your fucken Android plushie toy when I say Elcomsoft and Cellebrite among other slimey forensic companies keep these a secret.
I’ve spoken to a police officer in private on numerous occassions and he always said Androids does not pose a problem to the police. But iOS is pretty tough for them to extract/exploit if secured and updated. KEK!
community support is worthless.
can’t patch binary blobs.
>Second, many users have likely read about the Quadrooter vulnerability coming out of DEF CON. Here, we have a bit of bad news. Of the four reported CVEs, we’ve been able to plug the ones that affected OSS code (ie the kernel), specifically CVE-2016-2059 and CVE-2016-5340. However, some of the reported vulnerabilities lie within OEM binary blobs, meaning we don’t have source access to resolve them.
>So what does this mean? Unfortunately, for many devices we may never be able to completely resolve the outstanding issues, as OEMs are unlikely to release updated blobs across the generations of devices CM 13.0 supports
https://web.archive.org/web/20161223020015/https://www.cyanogenmod.org/blog/cm-13-0-release-znh5yLineageOS also communicates this with some vendor patch level which they cannot update. picrel.
security-conscious custom roms like Graphene will immediately drop support when there are no more patches from the vendor:
https://grapheneos.org/faq#legacy-devices
He.. just proved that. And I have contacts in mobile forensics with law enforcement who say iOS pose a bigger challenge. You do know that CIA and FBI time and time again has contacted Apple directly for backdoors because of their top kek security they couldn’t break right? And the bug bounty is $500k not $50k like android (only for AOSP) go figure..
