this post was submitted on 29 Jan 2024

48 points (100.0% liked)

askchapo

22959 readers

287 users here now

Ask Hexbear is the place to ask and answer ~~thought-provoking~~ questions.

Rules:

Posts must ask a question.
If the question asked is serious, answer seriously.
Questions where you want to learn more about socialism are allowed, but questions in bad faith are not.
Try !feedback@hexbear.net if you're having questions about regarding moderation, site policy, the site itself, development, volunteering or the mod team.

founded 4 years ago

MODERATORS

PorkrollPosadist@hexbear.net

replaceable@hexbear.net

VILenin@hexbear.net

EmmaGoldman@hexbear.net

SexUnderSocialism@hexbear.net

ZoomeristLeninist@hexbear.net

khizuo@hexbear.net

Sulv@hexbear.net

So is everyone just out here with tonnes of malware on their phone? (hexbear.net)

submitted 1 year ago by idkmybffjoeysteel@hexbear.net to c/askchapo@hexbear.net

14 comments fedilink hide all child comments

I know for a fact most people click every link they receive, or I wouldn't get so much mandatory security training at work, so if millions of people are just walking around after downloading random PDFs and word documents from their email onto their phone, what does this mean?

all 18 comments

sorted by: hot top controversial new old

[–] chickentendrils@hexbear.net 39 points 1 year ago

Mostly in the form of OEM-installed data collection/"analytics", but yeah.

Probably a lot of people install sketchy apps from Google Play too. Apple's not immune but it's a lot harder, you basically have to be pissing off a government. If you are then it's still entirely possible you're 0-click owned without ever noticing.

[+] PaX@hexbear.net 30 points 1 year ago* (last edited 1 day ago) (3 children)

[deleted]

[–] YearOfTheCommieDesktop@hexbear.net 13 points 1 year ago* (last edited 1 year ago) (1 children)

Unless you don't update your software lol

this is the key distinction. Many people who click on sketchy links all the time also don't update anything unless forced to (understandable but bad security practice lol). Plus even if you do, most phones don't get updates for that long, so if you're rocking a 3 year old phone odds are its not getting them any more unless it's Apple (pixel and samsung are trying to catch up tho)

[+] PaX@hexbear.net 10 points 1 year ago* (last edited 1 day ago) (1 children)

[deleted]

[–] YearOfTheCommieDesktop@hexbear.net 4 points 1 year ago* (last edited 1 year ago) (1 children)

I mean sure, true enough but people do hate updating and it only takes one app or component to not auto-update against their will to leave a hole. But yeah, most nasty links these days don't actually install an exploit on your device they just phish for your actual credentials. this trend is probably also influenced by the fact that people with 4 year old phones aren't likely to be high value targets to steal from

[–] buckykat@hexbear.net 3 points 1 year ago (1 children)

I don't think I have ever updated a phone app and thought "wow this is an improvement I sure am glad I updated"

[–] YearOfTheCommieDesktop@hexbear.net 3 points 1 year ago* (last edited 1 year ago)

exactly! I'm not saying people are wrong not to update, but if given the option many won't because of mostly valid reasons like that. free/open source apps tend to be better in this regard, generally security fixes will be backported to old versions for the lifetime of the OS, rather than forcing everyone to update to the latest version to get the security fixes. More recent developments like rolling release distros and flatpak, snap, etc. are moving away from this though... (for both good and bad reasons). But at least if it's open source there will always be the option of backporting the security fix, proprietary apps don't even give you (or the community at large) the option

[–] SaniFlush@hexbear.net 11 points 1 year ago* (last edited 1 year ago) (2 children)

I wish my phone could open .docx

[–] iByteABit@hexbear.net 9 points 1 year ago* (last edited 1 year ago)

I think OnlyOffice Documents can do that

[–] GinAndJuche@hexbear.net 16 points 1 year ago (1 children)

I intentionally click malware at work if I’m given the option. it’s not my problem, fuck the company.

My personal stuff is cleaner than a pornstars asshole.

[–] GaveUp@hexbear.net 4 points 1 year ago* (last edited 1 year ago)

Company policy here is if you get your computer infected with malware, you're responsible for any damages caused to the computer or if any data gets leaked (i.e. you'll get fired). Reasoning being you're only allowed to download corporate packaged apps 🙃

I'll leave the 3k dollar machine on a public table while I take a piss cause I can't be arsed to protect it but I won't even download an adblocker in case it has malware in it

[–] jack@hexbear.net 5 points 1 year ago (1 children)

Virus.web

Please click the above!

[–] GinAndJuche@hexbear.net 2 points 1 year ago

The link isn’t working, please resend

[–] allthetimesivedied@hexbear.net 5 points 1 year ago (1 children)

Not me I have an iPhone.

[–] GinAndJuche@hexbear.net 6 points 1 year ago

Apple hasn’t been safe like that fkr decades. Sorry to break it to you.