this post was submitted on 14 Sep 2024
77 points (82.4% liked)

Android

17626 readers
336 users here now

The new home of /r/Android on Lemmy and the Fediverse!

Android news, reviews, tips, and discussions about rooting, tutorials, and apps.

🔗Universal Link: !android@lemdro.id


💡Content Philosophy:

Content which benefits the community (news, rumours, and discussions) is generally allowed and is valued over content which benefits only the individual (technical questions, help buying/selling, rants, self-promotion, etc.) which will be removed if it's in violation of the rules.


Support, technical, or app related questions belong in: !askandroid@lemdro.id

For fresh communities, lemmy apps, and instance updates: !lemdroid@lemdro.id

💬Matrix Chat

💬Telegram channels / chats

📰Our communities below


Rules

  1. Stay on topic: All posts should be related to the Android OS or ecosystem.

  2. No support questions, recommendation requests, rants, or bug reports: Posts must benefit the community rather than the individual. Please post to !askandroid@lemdro.id.

  3. Describe images/videos, no memes: Please include a text description when sharing images or videos. Post memes to !androidmemes@lemdro.id.

  4. No self-promotion spam: Active community members can post their apps if they answer any questions in the comments. Please do not post links to your own website, YouTube, blog content, or communities.

  5. No reposts or rehosted content: Share only the original source of an article, unless it's not available in English or requires logging in (like Twitter). Avoid reposting the same topic from other sources.

  6. No editorializing titles: You can add the author or website's name if helpful, but keep article titles unchanged.

  7. No piracy or unverified APKs: Do not share links or direct people to pirated content or unverified APKs, which may contain malicious code.

  8. No unauthorized polls, bots, or giveaways: Do not create polls, use bots, or organize giveaways without first contacting mods for approval.

  9. No offensive or low-effort content: Don't post offensive or unhelpful content. Keep it civil and friendly!

  10. No affiliate links: Posting affiliate links is not allowed.

Quick Links

Our Communities

Lemmy App List

Chat and More


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] MajorHavoc@programming.dev 5 points 1 month ago (1 children)

Security researchers would've noticed this.

They did notice. Malicious apps that use everything they can to spy on you are old news.

To your point - this isn't confirmation that any of the big players are listening directly. That would probably have been caught by security researchers, although it would be really difficult in Google's or Amazon's case, as they run proprietary software at a very low level.

The news here is two fold;

  1. Cox got caught buying that data, and when confronted about it, Google, Amazon, and Meta all failed to deny that they also buy that data from those malicious app makers.

  2. This is strong evidence that someone is routinely collecting that data. That's news. We've suspected for awhile that, at minimum, the malware apps do. Occam's razor says at minimum, we should now assume many malware apps are using microphone to collect speech and submit it elsewhere for analysis.

The unprovable part of this that smells much worse is: a kid in a basement writing malware does not have the computing power to turn tons of raw voice recordings into useful correlated data.

That kid needs an ally with a lot of computing power. Google, Meta, and Amazon all have a motive here and have the necessary computing power.

And all three worded their denials pretty carefully, I noticed.

[–] bdonvr@thelemmy.club 5 points 1 month ago (1 children)

Cox got caught buying that data, and when confronted about it, Google, Amazon, and Meta all failed to deny that they also buy that data from those malicious app makers

But what is that based on? This paragraph?

A spokesperson for CMG told Newsweek that "CMG businesses have never listened to any conversations nor had access to anything beyond third-party aggregated, anonymized, and fully encrypted data sets that can be used for ad placement."

I don't think that explicitly means they had datasets made up of clandestinely recorded conversations in the wild.

third-party aggregated, anonymized, and fully encrypted data sets that can be used for ad placement.

Really could describe ANY possible set of tracking data... Unless you put this quote into a clickbaitey article and strongly imply it's something sinister.

[–] MajorHavoc@programming.dev 3 points 1 month ago* (last edited 1 month ago)

You're not wrong to give the benefit out the doubt and believe their PR person isn't lying.

But I'm not inclined to give that benefit of the doubt. I don't trust these folks farther than I can throw them. I don't, myself, need proof, to believe they would try this crap.

And this is definitely evidence.