Google will fix it on their phones but not on other Android phones.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Android Phones Exposed to Remote Access Vulnerability
- Thread starter MacRumors
- Start date
- Sort by reaction score
Palantir commenting on it confirms this was actively used by state actors or their contractors (aka Palantir) and they’ve since moved on to a new exploit.
Well I guess I shouldn't have pre-ordered the Google Pixel 9 Pro Extra-Large and Extra-Fabulous Rose Quartz model. 😩
...though to be fair, if cybercriminals did break in, all they'd find are my vast collection of cat memes. 🤪
...though to be fair, if cybercriminals did break in, all they'd find are my vast collection of cat memes. 🤪
IOS would somehow have to grant the app privileges that allow dangerous exploits. The issue in the present case is that the app was preinstalled with system privileges as part of the OS install by Google.
The correct analogy would be that a first-party built-in Apple app would have a vulnerability and also system-level privileges.
And yet Android users come into the iPhone forums to tell us how superior their platform is.
No software is 100% secure. Stop pretending like iOS doesn't have its share of flaws
Apple to Address '0.0.0.0' Security Vulnerability in Safari 18
Apple plans to block websites from attempting to send malicious requests to the IP address 0.0.0.0 on macOS Sequoia, according to Forbes. The means...
www.macrumors.com
Make Sure to Update: iOS 17.4 and iPadOS 17.4 Fix Two Major Security Vulnerabilities
iPhone and iPad owners may want to update to iOS 17.4 and iPadOS 17.4 in the near future, as the updates address two security vulnerabilities that...
www.macrumors.com
Update your iPhones and iPads now: Apple patches security vulnerabilities in iOS and iPadOS
Apple has released a security update for iOS and iPadOS to patch two zero-day vulnerabilities which are reported to already have been exploited.
www.malwarebytes.com
The sheer amount of garbage running in the background of Android and even iOS to some extent is staggering.
Look at a process list of either one and you'd be able to disable half of that crap and still have a phone that functions normally.
Look at a process list of either one and you'd be able to disable half of that crap and still have a phone that functions normally.
Opening up same level of access to iOS like Apple has done for decades with macOS. Look at all those vulnerabilities macOS users (like yourself!) have been exposed to. It's terrible.
Pixel phones come with a Files app that permits you to search through the phone for this app; search for "show". My 6a did not have it present.
That’s a misrepresentation, Microsoft is arguing in bad faith here: https://www.it-daily.net/en/it-secu...using-the-crowdstrike-outage-to-its-advantage
EU gave CrowdStrike keys to Windows kernel, Microsoft claims
Was a 2009 agreement on interoperability to blame?
TL;DR: Nothing required Microsoft to expose unsafe interfaces.
Firewall, y'all.
I'm still salty at Google and Apple for not having a built in firewall on an OS that's connected 100% of the time.
I'm still salty at Google and Apple for not having a built in firewall on an OS that's connected 100% of the time.
The number of interaction points (many are critical as well) in a mobile is much more than in a PC or Laptop where you would carry your device anywhere, touch anywhere, click anywhere, take picture, unlock with Face ID or finger, receive calls, make calls, connect to WiFi while connect with 5G, update GPS location, play music, send message, connect to your car, connect to watch, connect to ear buds, stream videos, ask apps to process information etc…the interrupt points are too many that requires background processes. Mobile OS and the tech is really complicated unlike laptop.Those days even desktop machines used to crash if you overload them even with few more additional devices to your desktop or laptop/
Ever notice how the Android fanboys reveal themselves when an article like this appears? They have a myriad of Android tech blogs to choose from but they pop up here all the time. Why is that?
They are referring to fact that users in the EU can side load. Heavy handed EU isn't helping anyone. The only positive to anything they have done is USB-C.
People can enjoy more than one thing.
You piqued my curiosity with that comment, so I had to go look up some info. Apparently, both mobile OSes do indeed have a system-level firewall that protects the device from unexpected external probes -- they just don't necessarily make their respective firewalls available to the end user for any kind of reconfiguration purposes, other than On/Off.
Additionally, it's worth noting that both iOS and Android are *nix like operating systems... but they have been essentially stripped of the vast majority of the typical communication suite that you would expect to find on a desktop computer running such OSes. So if you actually want something like telnet, a shell or a web server, you have to go install it yourself. The premise is that the lack of those default open ports is presumed to reduce the attack surface of mobile devices.
I've got an Android phone and I don't go to those forums. So I can only assume that they think MR is more fun, or that lots of people are insecure and feel the need to defend their device purchasing decisions here. But yes, it is weird.
Amazing how people here happily attacks android when IOS probably has multiple zero days exploits being sold on black markets as we speak.
Just some months ago a security company was gladly advertising the fact that their software can spy people on even the latest IOS versions, the article was posted here on macrumors, I’m too lazy too look it up again.
Absolutely no company is completely “safe” but android has the advantage that being open anyone can audit the source code if they’re willing, only apple knows how many exploits are left unpatched on IOS because there’s just no good way to fix them, security by obscurity is an absurd.
Just some months ago a security company was gladly advertising the fact that their software can spy people on even the latest IOS versions, the article was posted here on macrumors, I’m too lazy too look it up again.
Absolutely no company is completely “safe” but android has the advantage that being open anyone can audit the source code if they’re willing, only apple knows how many exploits are left unpatched on IOS because there’s just no good way to fix them, security by obscurity is an absurd.
Have you ever considered that a lot of people here are not just “apple fans” but fans of technology in general with plenty of devices from multiple brands? Are you trying to gatekeep the forums so only people with positive attitude towards apple and negative towards android can post? I guess the obvious solution is that people should stay on their echo chambers and never read different opinions.
Last edited:
But it's still a deep hole into the system. Lots of people are just not paying attention. The app should scream out every time it starts, at least.
No, but wading through a sea of argumentative posts from Samsung evangelists and Android fans on many threads does get a little tiring sometimes.
No, I don’t think Apple is perfect, yes I prefer them to Google.
Yes, I’ve tried Android, no I don’t like it.
I’m not going to switch because some people come to a Mac forum and complain about how Apple is really bad, their competition are really the better choices, with ever increasing vitriol.