Technology

967 readers

129 users here now

A tech news sub for communists

founded 2 years ago

MODERATORS

Security firm iVerify found stock Google Pixel devices' app "showcase" With Excessive System Privileges, Including Remote Code Execution (iverify.io)

submitted 3 months ago by yogthos@lemmygrad.ml to c/technology@lemmygrad.ml

6 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Comprehensive49@lemmygrad.ml 3 points 3 months ago (2 children)

Shiiiit. My mobile is in the vulnerable demographic. Time to see if Google will patch this out.

[–] yogthos@lemmygrad.ml 7 points 3 months ago (1 children)

it looks like it's not as bad as originally seems https://grapheneos.social/@GrapheneOS/112967309987371034

[–] Comprehensive49@lemmygrad.ml 6 points 3 months ago (1 children)

Oh, just an annoying marketing stunt. Capitalism distracts me once again.

[–] yogthos@lemmygrad.ml 6 points 3 months ago

It's still a question of why an app with elevated permissions was packaged in the firmware, but yeah it doesn't look like the exploit itself is easy to do.

[–] Bart@lemmygrad.ml 4 points 3 months ago (1 children)

If you use a pixel I would highly recommended Calyxos. You got a lot more privacy and so much less bloatware (and much less batteryusagess).

[–] Comprehensive49@lemmygrad.ml 2 points 3 months ago

I'm swapping to a brand new Samsung in a couple months. I need the S Pen for school. I don't think an alternate privatevOS exists for it 😭.