Because privacy matters ‼️

Secure Messaging Apps Comparison:
https://www.securemessagingapps.com/

#security #privacy #messaging #apps #comparison
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv

‘App Watch’ Allows Operators to Monitor and Ban Piracy Apps on Android Set-Top Boxes

Irdeto is mostly known for its 'Denuvo' anti-piracy tool, which protects many high profile games. However, the digital security company operates a broad suite of anti-piracy tools. This includes "App Watch," a service that allows content providers to monitor and restrict the use of pirate apps on their Android-based set-top boxes.

Many content providers and networks have their own set-top boxes that can be connected to any modern TV.

These devices are often running on Android and sometimes allow users to install third-party apps, via Google’s Play store, for example.

This opens the door to a wide range of other apps which can be problematic, especially when they offer a gateway to pirated content that directly competes with the operator’s service.

To address this potential threat, digital security company Irdeto is offering an ‘App Watch’ service. This is part of the company’s broad range of piracy tools and services which also includes the game anti-tamper software Denuvo, which recently expanded with an anti-cheat service.

App Watch is targeted at providers of streaming services who have their own set-top boxes. It’s meant to safeguard these companies against abuse and prevent consumers from using their boxes as piracy tools.

“The problem with giving consumers choice is that they may get distracted from your services, on your platform,” Irdeto writes, pointing out the worst-case scenario.

👉🏼 Read more:
https://torrentfreak.com/app-watch-allows-operators-to-monitor-and-ban-piracy-apps-on-android-set-top-boxes-200523/

#AppWatch #piracy #apps #android #SetTopBox #safeguard
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv

Docus

Android application for scanning and managing documents.

F-Droid (Requires IzzyonDroid repo)
https://apt.izzysoft.de/fdroid/index/apk/com.bretahajek.docus

Spystore
https://play.google.com/store/apps/details?id=com.bretahajek.docus

https://github.com/Breta01/docus


📡 @NoGoolag 📡 @Libreware
#docscanner #apps #pdf #converter #notes #scanner #camscanner

No, I'm not installing your app to order food.

https://tutanota.com/blog/posts/apps-track-you

Tracking is the new gold. Shops are following Google's example with their own tracking apps.

The outcry was loud when politicians started talking about corona tracing apps: Where is the privacy protection? How do we make sure that our personal data does not get into the wrong hands? Now, that we are sensitized against app tracking, do you know which apps track your every move, your browsing behavior, your shopping activities?

While everyone is talking about corona tracking apps and Google's extensive tracking, it is worrisome that no one talks about the tracking methods of every other app.


#tutanota #tracking #apps

The Beauty and the (Fraud) Beast

White Ops Threat Intelligence and Research Team June 2020

👉🏼 List (pdf) of fraudulent picture editing applications:
https://www.whiteops.com/hubfs/BeautyFraud-Appendix-A.pdf

#pdf #fraudulent #picture #editing #applications #apps
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_ES

Govt bans 59 Chinese apps including TikTok as border tensions simmer in Ladakh

As tensions along the Line of Actual Control (LAC) with China continues, the Government of India has decided to ban on 59 Chinese apps, including Tik Tok.

The government of India has decided to ban 59 apps of Chinese origin as border tensions simmer in Ladakh after a violent, fatal face-off between the Indian and Chinese armies. The list of apps banned by the government includes TikTok, which is extremely popular.

The government announced the ban on the 59 Chinese apps (full list below) Monday night. The government said these apps were engaged in activities that were prejudicial to the sovereignty, integrity and defence of India.

A government press release announcing the ban stated: "The Ministry of Information Technology, invoking it’s power under section 69A of the Information Technology Act read with the relevant provisions of the Information Technology (Procedure and Safeguards for Blocking of Access of Information by Public) Rules 2009 and in view of the emergent nature of threats has decided to block 59 apps since in view of information available they are engaged in activities which is prejudicial to sovereignty and integrity of India, defence of India, security of state and public order".

The press release further said that the Ministry of Information Technology has received "many representations raising concerns from citizens regarding security of data and risk to privacy relating to operation of certain apps".

👉🏼 Read more:
https://www.indiatoday.in/india/story/centre-announces-ban-chinese-apps-privacy-issues-1695265-2020-06-29

#china #india #apps #privacy #TikTok #DeleteTikTok
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@NoGoolag
📡@BlackBox

Espionage software: China is said to have surveilled mobile phones of Uighurs for years

IT security researchers have found numerous apps that spy on China's Uighur Muslim minority - even abroad.

The Uyghur Muslim minority in China lives in a surveillance state: As reported by the SZ, among others, Beijing has installed thousands of surveillance cameras in the cities of the Xinjiang region, and Uyghurs are sent to re-education camps. Only a few days ago the news agency AP reported that China is also trying to keep the Muslim population under control with drastic birth control.

👉🏼 PDF:
https://www.lookout.com/documents/threat-reports/us/lookout-uyghur-malware-tr-us.pdf

#china #Xinjiang #uyghurs #surveillance #smartphones #apps #malware #pdf #study #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@NoGoolag
📡@BlackBox

Report: Hundreds of apps have hidden tracking software used by the government

A new report exposes how a federal contractor secretly puts government tracking software into hundreds of mobile apps.

The data gleaned from this tracking is then sold back to the US government for undisclosed purposes.

This tactic is deceptive because the tracking isn’t disclosed. However, it appears to be totally legal.

A new report today from The Wall Street Journal exposes yet another concerning development when it comes to mobile phone tracking. According to the report, at least one federal contractor puts government tracking software in over 500 mobile applications.

The contractor — a Virginia-based company called Anomaly Six LLC — pays mobile developers to include its in-house tracking code within their apps. The trackers then collect anonymized data from our phones and Anomaly Six aggregates that data and sells it to the US government.

It sounds crazy, but it’s happening. What’s more, it appears it’s totally legal.

👀 👉🏼 https://www.androidauthority.com/government-tracking-apps-1145989/

👀 👉🏼 https://www.wsj.com/articles/u-s-government-contractor-embedded-software-in-apps-to-track-phones-11596808801

#usa #government #tracking #software #apps #smartphones #data #surveillance #why #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Pakistan blocks five dating apps including Tinder and Grindr

KARACHI, Pakistan (Reuters) - Pakistan said on Tuesday it has blocked Tinder, Grindr and three other dating apps for not adhering to local laws, its latest move to curb online platforms deemed to be disseminating “immoral content”.

Pakistan, the second largest Muslim-majority country in the world after Indonesia, is an Islamic nation where extra-marital relationships and homosexuality are illegal.

The Pakistan Telecommunications Authority said it has sent notices to the management of the five apps, “keeping in view the negative effects of immoral/indecent content streaming.”

https://www.reuters.com/article/us-pakistan-socialmedia-ban/pakistan-blocks-five-dating-apps-including-tinder-and-grindr-idUSKBN25S618

#Asia #Pakistan #dating #apps

Step-by-step guides and detailed information on secure messaging apps for Android, iOS, Windows, Mac and Linux.

💡 Apps are listed in order of:

✅✅ = "Highly Recommended"
✅ = "Worth a Try"
❌= "Not Recommended"

👀 👉🏼 https://securechatguide.org/centralizedapps.html

#secure #chat #messaging #apps #android #iOS #windows #mac #linux #guide
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Academics find crypto bugs in 306 popular Android apps, none get patched

Only 18 of 306 app developers replied to the research team, only 8 engaged with the team after the first email.

A team of academics from Columbia University has developed a custom tool to dynamically analyze Android applications and see if they're using cryptographic code in an unsafe way.

Named CRYLOGGER, the tool was used to test 1,780 Android applications, representing the most popular apps across 33 different Play Store categories, in September and October 2019.

Researchers say the tool, which checked for 26 basic cryptography rules (see table below), found bugs in 306 Android applications. Some apps broke one rule, while others broke multiple.

The top three most broken rules were:

‼️ Rule #18 - 1,775 apps - Don't use an unsafe PRNG (pseudorandom number generator)
‼️ Rule #1 - 1,764 apps - Don't use broken hash functions (SHA1, MD2, MD5, etc.)
‼️ Rule #4 - 1,076 apps - Don't use the operation mode CBC (client/server scenarios)

These are basic rules that any cryptographer knows very well, but rules that some app developers might not be aware of without having studied app security (AppSec) or advanced cryptography prior to entering the app development space.

👀 👉🏼 https://www.zdnet.com/article/academics-find-crypto-bugs-in-306-popular-android-apps-none-get-patched

#cryptography #bugs #android #apps
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Apple apps on Big Sur bypass firewalls and VPNs — this is terrible

Don't worry though, Apple really, really, really cares about your privacy

For all of Apple’s talk of being privacy-first, often its marketing speak doesn’t match up with what it’s actually doing. And the latest example? Well, it’s Apple apps on Big Sur bypassing firewalls and VPNs.

I don’t need to tell you just how worrying this is.

👀 👉🏼 https://thenextweb.com/plugged/2020/11/16/apple-apps-on-big-sur-bypass-firewalls-vpns-analysis-macos/

#apple #apps #privacy #bypass #firewall #vpn #thinkabout
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Windows 10 PCs will directly install and run Android apps from 2021, claims report

The report claims these apps will be brought to Windows 10 OS through the Microsoft Store.

https://www.indiatoday.in/technology/news/story/windows-10-pcs-will-directly-install-and-run-android-apps-from-2021-claims-report-1744347-2020-11-26

https://www.gizchina.com/2020/11/26/windows-10-to-receive-support-for-android-apps-next-year


#windows #android #apps

Insular

Isolate your big brother app.
This is a fork based on the excellent Island. Extra credit to Shelter which inspire me to make the completely FLOSS fork of Island.

Differences from Island:
Basically no difference, except that
-all blobs (gms, crashlytics, etc) are removed to comply with F-droid's policy
-Internet access of this app is removed because we just don't need it

Features:
Isolate app, for privacy protection.
Clone app, for parallel running.
Freeze app, to completely block its background behaviors.
Hide app, for various reasons.
Archive app, for potential future use on-demand.
Use VPN only on one side, or different VPN on both sides.
Prohibit USB access.

https://gitlab.com/secure-system/Insular

Get it on f-droid


📡 @NoGoolag 📡 @Libreware
#insular #island #shelter #isolate #apps

IzzyOnDroid@mastodon.technology - For those who missed it, and those who want to repeat it: the recording of our first training session / talk on "F-Droid App Review" is online now

https://libre.video/videos/watch/5d32d19d-e012-4b6c-a962-14e670f1648b​

I've created a new channel for it, as hopefully more are to come (and hopefully also in better quality than this "quick cut", I'm out of training in video editing):

https://libre.video/video-channels/foss/videos​

#fdroid #foss #contribution #getInvolved #android #apps​

IzzyOnDroid@mastodon.technology - Drizzle in my repo today with 2 new apps. Most prominently:

Watomatic – to help those of you still stuck at WhatsApp to leave that s(t)inking ship without being afraid "nobody can find you": it sends auto-responses to everyone writing you, telling them you've left and where to look. So: no more excuses, here's your door! https://apt.izzysoft.de/fdroid/index/apk/com.parishod.watomatic​

Further running: SpaceXFollower (SpaceX events, facts, statistics) and Auxio, a nice music player, added yesterday.

Enjoy #foss #Android #apps with #fdroid!

TrackerControl

TrackerControl allows users to monitor and control the widespread, ongoing, hidden data collection in mobile apps about user behaviour (‘tracking’).

To detect tracking, TrackerControl combines the power of the Disconnect blocklist, used by Firefox, and our in-house blocklist is used, created from analysing ~2 000 000 apps! Additionally, TrackerControl supports custom blocklists.

💡 This approach

👉🏼 reveals the companies behind tracking,

👉🏼 allows to block tracking selectively, and

👉🏼 exposes the purposes of tracking, such as analytics or advertising.

The app also aims to educate about your rights under Data Protection Law, such the EU General Data Protection Regulation (GDPR).

Under the hood, TrackerControl uses Android’s VPN functionality, to analyse apps’ network communications locally on the Android device. This is accomplished through a local VPN server, to enable network traffic analysis by TrackerControl.

💡 No root is required, other VPNs or Private DNS are not supported. No external VPN server is used, to keep your data safe! TrackerControl even protects you against DNS cloaking, a popular technique to hide trackers in websites and apps.

TrackerControl will always be free and open source, being a research project.

https://trackercontrol.org/

https://github.com/OxfordHCC/tracker-control-android/releases/latest/download/TrackerControl-githubRelease-latest.apk

#TrackerControl #data #collection #android #apps #opensource
📡 @nogoolag 📡 @blackbox_archiv

Microsoft Demos GUI Linux Apps Running on Windows 10

Microsoft has shared video demo of desktop Linux apps running on Windows 10
The capability is made possible using the new and improved Windows Subsystem for Linux (aka WSL 2) plus a new companion layer called WSLg (one assumes the ‘g’ stands for ‘GUI’, but don’t quote me on that).

You can watch Microsoft’s Craig Loewen showcase the feature in the following video. We’re talking about real desktop Linux apps running on Linux via WSL on Windows 10, and both X11 and Wayland-ready apps are supported

https://www.omgubuntu.co.uk/2021/04/run-linux-apps-on-windows-wsl-2

#Windows #Linux #apps

Apple accused of breaking UK competition law by overcharging for apps

Almost 20 million users could be eligible for compensation, with £1.5bn damages sought

Apple is facing a demand for billions of pounds of consumer compensation in a British lawsuit that accuses the company of overcharging users by up to 30% on its App Store.

The claim argues that Apple’s restrictive policies, which limit app developers to using its own payment systems, are generating “excessive” profits for the company and leading to consumers paying more than they otherwise would. As a collective action, it seeks to represent the almost 20 million people in the UK who have spent money on the App Store, and seeks damages of up to £1.5bn.

Apple has dismissed the action as “meritless”.

Leading the suit is Dr Rachael Kent, an expert in the digital economy and lecturer at King’s College, University of London, who said: “The App Store was a brilliant gateway for a range of interesting and innovative services that millions of us find useful, myself included. But 13 years after its launch, it has become the only gateway for millions of consumers. Apple guards access to the world of apps jealously, and charges entry and usage fees that are completely unjustified.

“This is the behaviour of a monopolist and is unacceptable.”

https://www.theguardian.com/technology/2021/may/11/apple-accused-of-breaking-uk-competition-law-by-overcharging-for-apps

#apple #uk #competition #law #apps #overcharging
📡 @nogoolag 📡 @blackbox_archiv

IzzyOnDroid@floss.social - @fdroidorg now passed the mark of 100 apps using #reproducibleBuilds (factor 10 to a year ago) – about 9 out of 10 apps recently added opted for that extra step.

What does this mean to you?

* you know #FDroid builds from source
* you see the app is signed by the developer
* => double trust!
* plus: cross-updates. Already have the app installed from Play? Seamlessly switch over to F-Droid for the extra trust!

Expect more and more #Android #apps at F-Droid using this :awesome:


https://nlnet.nl/project/reproduciblebuilds/