Categories
Android

LineageOS 15.1 is rolling out

LineageOS 15.1 (Android Oreo) brings a lot of new changes and some devices might getting the update while others don’t this more because of driver changes rather than a software problem.

TNMpdeb

Categories
Android Applications Security

Android P blocks background Camera and Microphone access

Googles tries to improve the security and data privacy in the upcoming Android P release, right now after the app gets the permissions to use the microphone or camera the app theoretically can ‘spy’ on you secretly in the background, this will be changed.

android-p

Categories
Android Tutorials

How to disable Android “Usage & Diagnostics Sharing”

By default, Android collects a bunch of data, like battery usage and how fast the internet in which you’re connected to, these data can be useful but in most of the cases, it’s not really needed to share it with other devices or Google.

google-is-watching-you-1
Picture: stuartwilde.com
Categories
Android

Android Patchday: 57 holes closed

6 critical holes got a fix, the Media Framework got yet again fixes (like every patchday since 2015) among nVidia and Qualcomm patches. Pixel owner can download a ‘fixed’ OTA image, which solves a huge issue with the latest patchday.

android1-71cb45c4a86f9f17
Picture: heise.de
Categories
Android Applications

The best ways to Download Google Play Store APK’s/App’s

So you’re here because you searched for a solution to download Google Play Store apps without an Google account or with another fake account? No problem! Google normally doesn’t allow external apps to download or intercept into their Store download mechanism but it’s still possible to get apps from it without the need to use your own account. It’s not illegal because Google not like it but it’s a grey zone and it might get closed officially at any time or Google simply block your fake/real account if they see you use it against their Terms of Services (TOS).

play-store-download

Categories
Android

Most Android Dialers stealing your Data

Another day and another big announement, this day it’s hitting Android, well more the Dialer apps which you might use daily, the problem is sometimes you can’t even opt-out and you’re more or less forces to use the integrated Dialers, uninstalling them might not be possible without rooting your phone – and that’s the big thing here you can’t do much except to install another more privat friendly dialers and hope it doesn’t collect any data.

dialercode
Cerberus & Co, are designed to help us by eg. tracking the device or remotely lock it – but mostly there spying on us.
Categories
Browser

Chrome 64 is out

Google just announced the new Chrome final release for Android and all other platforms. An explicit log-file can be found here. Security updates were one of their focus, Meltdown & Spectre got fixes among several other WebGL and URL related fixes. Starting with Chrome 64, autoplay videos are disabled by default

google-chrome-logo

Categories
Android Lemme fix

Lemme fix: Android DNS issue

AFWall+ (Android Firewall+) is a firewall application for Android OS and the only one which works with iptables – so far the best solution since it doesn’t create a VPN tunnel to filter/block ads because such a tunnel causes more battery drain. The benefits of using iptables are almost endless and AFWall+ is really powerful in the right hands.

Android DNS

The normal way how to change the DNS on a WiFi connection, this might not work on newer Android versions and behind a mobile connection.

Categories
Android

MITM Android HTTPS traffic via Magisk and Burp

MITM is needed whenever an attacker, pentester or a network specialist want to gain the needed information to veryify specific informations, these can be used for good or bad things. NVISO-BE wrote a little Magisk module which can intercept into the traffic to abuse the pre-installed user certificates so that the OS thinks it’s a system certificate, the madoule basically bypasses to add the network_security_config property to an application’s manifest. Google Play Store specifically scans for such kind of things in every manifest to avoid ‘security problems’.

cybersecurity-2