Oddbean new post about | logout
SimplifiedPrivacy.com Podcast | 3 months ago (raw) | export | reply | flag +18 
 "Google Play is axing its Security Reward Program"

The program paid devs up to 20k to locate vulnerabilities in popular Android apps.  Google says they’re "winding down the program due to a decrease in actionable vulnerabilities reported by security researchers"

In other words, they no longer give a shit if there's malware on Google Play, because now they changed the legal liability to be on the app dev.  Over a year ago, they changed the legal wording so the dev has to self-report what permissions are used.  This shifts responsibility away from the Play Store onto the dev.

But if Google shifts the responsibility on the dev for the bad side, but they keep the good side (collecting user data), then why do we even need them?  We don't.  Avoid Google Play... switch to F-Droid, APKs, and Obtainium.
Zardoz | 3 months ago (raw) | root | parent | reply | flag 
 Another reason I do NOT use Android on anything but “burner” phones. No personal data on them.. no contacts on Google. Etc.
finrod | 3 months ago (raw) | root | parent | reply | flag 
 What alternatives do you use ?
Zardoz | 3 months ago (raw) | root | parent | reply | flag +1 
 I use iOS. If I had to use an Android device id get one I could run GrapheneOS. But having worked with both iOS and Android I can tell you iOS is inherently more secure.
finrod | 3 months ago (raw) | root | parent | reply | flag 
 True, Apple runs a much tighter control on their App Store, and much much less vulnerabilities system-wide.
pedro | 3 months ago (raw) | root | parent | reply | flag 
 ..and nostr:nprofile1qqs83nn04fezvsu89p8xg7axjwye2u67errat3dx2um725fs7qnrqlgpz4mhxue69uhhyetvv9ujumn0wd68ytnzvuhs8kht6h 🤙