Google’s Unannounced Update Scans All Your Photos—One Click Stops It
(www.forbes.com)
from hypertown@lemmy.world to privacy@lemmy.ml on 02 Mar 09:32
https://lemmy.world/post/26233193
from hypertown@lemmy.world to privacy@lemmy.ml on 02 Mar 09:32
https://lemmy.world/post/26233193
cross-posted from: lemmy.world/post/26233189
“Android System SafetyCore’ claims to be a ‘security’ application, but whilst running in the background, it collects call logs, contacts, location, your microphone, and much more making this application ‘spyware’ and a HUGE privacy concern. It is strongly advised to uninstall this program if you can. To do this, navigate to 'Settings’ > 'Apps’, then delete the application.”
If you don’t want to navigate android settings you can also simply uninstall it from the Play Store play.google.com/store/apps/details?id=com.google.…
Additionaly you can install this placeholder app to prevent Google from reinstalling it every time it updates: github.com/daboynb/SafetyCore-placeholder
threaded - newest
I’ll repost my comment from the other post:
For people who have not read the article:
Forbes states that there is no indication that this app can or will “phone home”.
Its stated use is for other apps to scan an image they have access to find out what kind of thing it is (known as "classification"). For example, to find out if the picture you’ve been sent is a dick-pick so the app can blur it.
My understanding is that, if this is implemented correctly (a big ‘if’) this can be completely safe.
Apps requesting classification could be limited to only classifying files that they already have access to. Remember that android has a concept of “scoped storage” nowadays that let you restrict folder access. If this is the case, well it’s no less safe than not having SafetyCore at all. It just saves you space as companies like Signal, WhatsApp etc. no longer need to train and ship their own machine learning models inside their apps, as it becomes a common library / API any app can use.
It could, of course, if implemented incorrectly, allow apps to snoop without asking for file access. I don’t know enough to say.
Besides, you think that Google isn’t already scanning for things like CSAM? It’s been confirmed to be done on platforms like Google Photos well before SafetyCore was introduced, though I’ve not seen anything about it being done on devices yet (correct me if I’m wrong).
Yes like most things this is misunderstood, bandwagoned and thus overblown.
Getting tired of social media. Even Lemmy.
The other one is the Firefox tou update… Not saying it won’t eventually be a problem but as of today it’s not sending your data to Mozilla. You have time to see how this pans out.
Let’s see how this plays out.
As someone who has never used Firefox only librewolf/mull/ironfox this analogy is asinine. Switching browsers is trivial and not at all like dealing with the threat of violence. It’s exactly bullshit like this that is tiring. No one is really thinking just making unintelligent quips and reactions or parroting the bullshit of others.
Do you understand what an analogy is?
Anyways, Firefox is the project. All of those other “projects” are mostly configuration changes of the upstream project- not even code changes.
When Firefox decides to become hostile to those “other” browsers you use- they’ll be able to do fuck all about it.
Yes, hence it being a shit one.
No, for example fennec for fdroid which is the base for mull or ironfox has multiple code deletes to remove unsolicited data sent to Google.
That’s not how open Source works…
These projects focusing on configuration changes and feature removal demonstrates their lack of creative potential.
Who cares if they fork? They don’t have the ability to do anything but sit on dead code at that point.
even if it was completely safe now, it will change in the fututure. Corporations just cant keep their hands to themselves and will saw any branch for short term profit because they will never get any REAL consequences for anything. Before long it would start connecting to internet to “better classify” the images by uploading everything to some server. Likely it will expand to every file eventually so it can “protect” you from whatever their spindoctors come up with.
(Edit: There were two screenshots here, showing wildly different ratings for the app on the DuckDuckGo results page and the Playstore itself. The comment below kindly reminded me that DDG doesn’t update in real time. Duh.)
Ddg obviously hasnt updated it’s cache. Safetnet is new. Had a high rating at 4k reviews and the obviously social media misrepresents it and ppl flock to the store to drop 56k+ reviews on something they now misunderstand. So in just a few weeks the rating has changed dramatically and now ddg needs to update the cached review score.
Not that reviews matter for this app.
Out of date cache makes sense although I don’t think I’ve seen any system app ever above 3 stars (that’s why I even checked the Playstore page). Deleting the comment to not further propagate my false assumptions.
Finally degoogled as a result. Stupid to treat peoples data like this.
“I AM AFRAID I CAN’T DO THAT!!”
<img alt="" src="https://lemmy.ml/pictrs/image/56ecf82a-2ce6-4a9f-af78-3dfab9528882.png">
shit like this is why I run LineageOS on my phone
And why I replaced my phone with a Pixel and installed GrapheneOS straight away.
Just because it LOOKS like you deleted it can you know for a 100% certainty that it isn’t still running and hidden in the background?