Chameleon Android malware can turn off fingerprint unlock to steal your pin::Be careful out there.

  • Deebster@programming.dev
    link
    fedilink
    English
    arrow-up
    32
    ·
    11 months ago

    It still needs a gullible user to change their settings for this to work; not much to worry about here.

    • VieuxQueb@lemmy.world
      link
      fedilink
      English
      arrow-up
      4
      arrow-down
      49
      ·
      11 months ago

      And not from the play store or official bank site.

      If you install an APK from unreliable source you should treat your phone and account as corrupted.

      • Cethin@lemmy.zip
        link
        fedilink
        English
        arrow-up
        65
        arrow-down
        1
        ·
        11 months ago

        It’s funny imagining people saying this for anything but a phone. “You can only download from the Microsoft store or you should consider your device corrupted.” Take caution, but you don’t need to rely on daddy Google alone.

        • Transporter Room 3@startrek.website
          link
          fedilink
          English
          arrow-up
          23
          arrow-down
          1
          ·
          11 months ago

          Damn, here I was worried I had bricked my phone and made it unusable by loading up my own personal apks when I was trying to learn coding and different app studios.

          I feel like I would have noticed if my phone was unusable though…

        • AdmiralShat@programming.dev
          link
          fedilink
          English
          arrow-up
          7
          ·
          edit-2
          11 months ago

          I don’t think this person was saying they think all manual apk installs are suspect, just that installing apks from an unreliable source. There are plenty of reliable sources to get apks

        • driveway@lemmy.zip
          link
          fedilink
          English
          arrow-up
          2
          arrow-down
          1
          ·
          11 months ago

          Most apps choose to distribute through Play Store only though. If the devs aren’t officially distributing on a separate platform or provide signing keys for you to verify the signature of the APK you get from elsewhere, you’re just asking for malware by downloading it anywhere else.

      • sir_reginald@lemmy.world
        link
        fedilink
        English
        arrow-up
        8
        arrow-down
        1
        ·
        11 months ago

        you need Google to tell you what safe and what’s not? have you ever used a desktop operating system where you usually install programs from different sources?

      • Scubus@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        7
        arrow-down
        1
        ·
        11 months ago

        Lmao what? I have literally never found an APK I was looking for that did anything sketchy to my phone