this post was submitted on 22 Mar 2025
169 points (98.8% liked)

Android

18676 readers
204 users here now

The new home of /r/Android on Lemmy and the Fediverse!

Android news, reviews, tips, and discussions about rooting, tutorials, and apps.

πŸ”—Universal Link: !android@lemdro.id

πŸ’‘Content Philosophy:

Content which benefits the community (news, rumours, and discussions) is generally allowed and is valued over content which benefits only the individual (technical questions, help buying/selling, rants, self-promotion, etc.) which will be removed if it's in violation of the rules.

Support, technical, or app related questions belong in: !askandroid@lemdro.id

For fresh communities, lemmy apps, and instance updates: !lemdroid@lemdro.id

πŸ’¬Matrix Chat

πŸ’¬Telegram channels / chats

πŸ“°Our communities below

Rules

  1. Stay on topic: All posts should be related to the Android OS or ecosystem.

  2. No support questions, recommendation requests, rants, or bug reports: Posts must benefit the community rather than the individual. Please post to !askandroid@lemdro.id.

  3. Describe images/videos, no memes: Please include a text description when sharing images or videos. Post memes to !androidmemes@lemdro.id.

  4. No self-promotion spam: Active community members can post their apps if they answer any questions in the comments. Please do not post links to your own website, YouTube, blog content, or communities.

  5. No reposts or rehosted content: Share only the original source of an article, unless it's not available in English or requires logging in (like Twitter). Avoid reposting the same topic from other sources.

  6. No editorializing titles: You can add the author or website's name if helpful, but keep article titles unchanged.

  7. No piracy or unverified APKs: Do not share links or direct people to pirated content or unverified APKs, which may contain malicious code.

  8. No unauthorized polls, bots, or giveaways: Do not create polls, use bots, or organize giveaways without first contacting mods for approval.

  9. No offensive or low-effort content: Don't post offensive or unhelpful content. Keep it civil and friendly!

  10. No affiliate links: Posting affiliate links is not allowed.

Quick Links

Our Communities

Lemmy App List

Chat and More

founded 2 years ago
MODERATORS
ijeff@lemdro.id
ladfrombrad@lemdro.id
Paradox@lemdro.id
multimoon@lemdro.id
mikestevens@lemdro.id
Devgard@lemmy.world
limerod@reddthat.com
Netrunner@lemdro.id
169
Android Apps Use Bluetooth and WiFi Scanning to Track Users Without GPS (cyberinsider.com)
submitted 2 days ago by henfredemars@infosec.pub to c/android@lemdro.id
24 comments fedilink hide all child comments
 

A new study reveals that thousands of Android apps covertly collect location data using Bluetooth and WiFi beacons, allowing continuous tracking and profiling of users without explicit consent.

you are viewing a single comment's thread
view the rest of the comments
[–] marauding_gibberish142@lemmy.dbzer0.com 12 points 2 days ago (1 children)

If I don't give them permissions to use Bluetooth and cut off their access to WiFi (VPN based firewall), is this threat prevented or am I a fool?

[–] Ghoelian@lemmy.dbzer0.com 25 points 2 days ago* (last edited 2 days ago) (2 children)

The article states they cicumvemt androids privacy controls,, but doesn't say how. As far as I'm aware, WiFi access point scanning is behind the location permission and service for precisely this reason. So if you just deny that permission, you should be fine.

I wasn't able to use my WiFi ssid in home assistant automations without having location services enabled, for example.

[–] Sturgist@lemmy.ca 6 points 1 day ago (1 children)

I wasn't able to use my WiFi ssid in home assistant automations without having location services enabled, for example.

I was recently(6 months ago) gifted a very nice pair of Bang & Olufsen BT headphones. They come with a 3.5mm hardline as well...but since my phone, and basically everyone else's, no longer has a port for that....🀷
BT connection works amazing with both my laptops and my desktop. Zero issues. To use them with my android phone the B&O connection app has to be open, WiFi on, precise location approved. Because of my settings for precise location data not being available for apps in the background, the B&O app has to be focused. If WiFi is off, and precise location is denied the app refuses to connect to the headphones, despite my actual phone seeing and connecting to it with no issues. I'd just not use the app...but without the app there's (absolutely intentional) audio drops. I know it's on purpose because it happens in a pattern. 90 seconds of perfect audio, followed by four 2 seconds cuts 5 seconds apart, then another 90 seconds of perfect audio. So I just don't use them with my phone. πŸ–•

[–] Ghoelian@lemmy.dbzer0.com 3 points 1 day ago (1 children)

Damn, that's awful. Can't you just set the settings once, then delete the app and pair it like a normal Bluetooth device? Would imagine that should work, if it works with your laptop as well.

[–] Sturgist@lemmy.ca 3 points 1 day ago (1 children)

Nope. It only happens when connected to a mobile device. Tested it on all 3 of my android phones (current daily driver, back up phone, and an S4 that I use as a media player in my car,) my wife's iPhone X, my Samsung tablet, and my work iPad. The S4 doesn't have that behaviour, but isn't really a viable option. The battery is basically only good enough to keep it powered for an hour or two, and doesn't jive with my cell provider's SIM it's also running a Google free ROM... Both my more modern phones, my wife's, and the tablets have the exact same behaviour. When I got them I had no intention of even installing the app. Wasn't until I was trying to troubleshoot the audio drop out that I installed it. And through experimenting with permissions and services turned on and off decided to just not use them with my phone.
The settings provided by the B&O app aren't in userland for android, and as far as I've been able to find, can't be pulled up and implemented without the app.

[–] EngineerGaming@feddit.nl 2 points 1 day ago* (last edited 1 day ago) (1 children)

I wonder what happens if you deny the app internet access? The permission for it is separate from "nearby devices" or "location". Or use the firewall specifically for it?

Also yeah, the whole situation is messed up, never thought headphones could require an app :/

[–] Sturgist@lemmy.ca 2 points 1 day ago (1 children)

That.......is something I'd not tried yet....hmmmm. I'll try it tonight and get back

[–] EngineerGaming@feddit.nl 2 points 23 hours ago (1 children)

I also wonder what connections it normally makes and how many)

[–] Sturgist@lemmy.ca 1 points 22 hours ago (1 children)

There an app I can run on android that'd log that?

[–] EngineerGaming@feddit.nl 2 points 22 hours ago* (last edited 22 hours ago) (1 children)

Rethink, for example. Also allows denying an app internet access, if your OS can't do it by itself.

[–] Sturgist@lemmy.ca 2 points 22 hours ago

It can, but I'd like to see what it's doing instead of just out and out blocking it. Still going to block it, just want to know who all it's calling home to.

[–] marauding_gibberish142@lemmy.dbzer0.com 8 points 2 days ago

In theory that shouldn't be possible unless the app runs as root. Although I'm sure somebody out there has a zero day for it. Yeah I don't know, I don't give any application permission to use location services, and the ones like maps I set it to "Ask me every time". I hope that's good enough for now