this post was submitted on 18 Mar 2024
125 points (97.7% liked)

Android

27947 readers
177 users here now

DROID DOES

Welcome to the droidymcdroidface-iest, Lemmyest (Lemmiest), test, bestest, phoniest, pluckiest, snarkiest, and spiciest Android community on Lemmy (Do not respond)! Here you can participate in amazing discussions and events relating to all things Android.

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules


1. All posts must be relevant to Android devices/operating system.


2. Posts cannot be illegal or NSFW material.


3. No spam, self promotion, or upvote farming. Sources engaging in these behavior will be added to the Blacklist.


4. Non-whitelisted bots will be banned.


5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.


6. Memes are not allowed to be posts, but are allowed in the comments.


7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.


8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.


Community Resources:


We are Android girls*,

In our Lemmy.world.

The back is plastic,

It's fantastic.

*Well, not just girls: people of all gender identities are welcomed here.


Our Partner Communities:

!android@lemmy.ml


founded 1 year ago
MODERATORS
 

So this just happened - those of you who have a Xiaomi phone know when you install apps it has it's own "Virus Checker" screen which comes up before the app is approved for install. This is provided by Avast I just found out..

Anyway while installing an app from F-droid today I got an error message on this screen - which said "app from unknown source" and two buttons below - "Ignore" and "Install". So I clicked on "Install" since I wanted to install the app and then noticed that the install process seemed a bit different (I can't remember what happened exactly) but I checked the app on F-Droid and the version history wasn't available - which a notice says means the app was installed from Play Store or somewhere else. But I just installed it from F-Droid!

So I tried another few apps and it happened again for one of them. I clicked around and there it was, some sort of Xiaomi app store installing versions of the app instead of the one I told my phone to install.

I guess there is an innocent explanation for this - stopping people from installing malware and giving them a "correct" version of the app they wanted - but I have disabled it on my phone, I know what I am doing and if I want the cracked version it's because that's the version I meant to install ;)

you are viewing a single comment's thread
view the rest of the comments
[–] Paragone@lemmy.world 45 points 8 months ago (3 children)

XOR...

Xaiomi is installing versions with Microsoft-style spyware/malware in 'em..

Same as ISP's altering the web-pages that people view, for their own commercial-reasons...

Molesting-the-user seems to be THE SurveillanceCapitalism paradigm, in the Enshittocene..

I'm not competent to do the decompilation/analysis required to discover if your new "helpful" versions are spyware/malware, but I'd bet they are not as clean as the original versions are.

Avast has been caught being treason-against-privacy, recently, too, with their "privacy" app that was actually a trojan to enable Avast to sell privacy-information for profit..

( last few weeks in the Tech news, here on Lemmy.world, iirc )


You might want to ask the MalwareBytes people to look into it?

[–] VeganCheesecake@lemmy.blahaj.zone 9 points 8 months ago (1 children)

Without further evidence, I'd assume they just want to boost usage of their App Store. Since they're the O.E.M. of the phone and developer of the installed Android Rom, they could build in a back door in a much less conspicuous way.

[–] tomjuggler@lemmy.world 2 points 8 months ago

Yeah I'm going with they're innocent. Just the UI with the install button and no explanation is not cool.

[–] tomjuggler@lemmy.world 3 points 8 months ago

I heard about the avast thing, but how are isp's modifying web pages, that shouldn't be possible with with https, right?

[–] LunchEnjoyer@lemmy.world 1 points 8 months ago

Do you have a source in terms of the ISPs altering websites? Would love to mention that in my thesis.