this post was submitted on 06 Mar 2024
206 points (97.2% liked)

Android

27857 readers
263 users here now

DROID DOES

Welcome to the droidymcdroidface-iest, Lemmyest (Lemmiest), test, bestest, phoniest, pluckiest, snarkiest, and spiciest Android community on Lemmy (Do not respond)! Here you can participate in amazing discussions and events relating to all things Android.

The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:

Rules


1. All posts must be relevant to Android devices/operating system.


2. Posts cannot be illegal or NSFW material.


3. No spam, self promotion, or upvote farming. Sources engaging in these behavior will be added to the Blacklist.


4. Non-whitelisted bots will be banned.


5. Engage respectfully: Harassment, flamebaiting, bad faith engagement, or agenda posting will result in your posts being removed. Excessive violations will result in temporary or permanent ban, depending on severity.


6. Memes are not allowed to be posts, but are allowed in the comments.


7. Posts from clickbait sources are heavily discouraged. Please de-clickbait titles if it needs to be submitted.


8. Submission statements of any length composed of your own thoughts inside the post text field are mandatory for any microblog posts, and are optional but recommended for article/image/video posts.


Community Resources:


We are Android girls*,

In our Lemmy.world.

The back is plastic,

It's fantastic.

*Well, not just girls: people of all gender identities are welcomed here.


Our Partner Communities:

!android@lemmy.ml


founded 1 year ago
MODERATORS
206
Great, the worst of both worlds. (share.jackgreenearth.org)
submitted 8 months ago* (last edited 8 months ago) by JackGreenEarth@lemm.ee to c/android@lemmy.world
 

I can't root my phone because I don't have an image for it (Moto G73) although I'd like to, but for some reason my banking app thinks it's rooted and refuses to work. This happened just after I updated it, it wasn't happening before.

Edit: I'm regretting not getting the Motorola Edge 40 Neo, which also costs £250, but is slightly better in multiple ways, and seems like it has better root support.

top 50 comments
sorted by: hot top controversial new old
[–] skullgiver@popplesburger.hilciferous.nl 89 points 8 months ago* (last edited 8 months ago) (2 children)

If you didn't root your phone, but multiple root detection apps go off (don't just try one), there's a good chance some piece of malware managed to root your phone. This is exactly the scenario banking apps include root detection kits for. It could be a false positive, but this certainly warrants further investigation.

If other apps also indicate root access (i.e. antivirus apps), it's probably best to restore factory settings and hope this clears up the infection. If it doesn't, you'll need to restore the entire system from a factory image (if that's possible in the first place) and hope your phone doesn't get infected again.

I would advice installing multiple antivirus apps and having them scan your phone. If they also tell you you've been rooted, I would trust them to tell the truth. If they don't report root access, but do report a bunch of viruses, the virus may have found a way to evade root detection by AV and may be installing weird apps in exchange for money from shitty ad fraud companies. If none of them are throwing up any warnings and only this specific app is complaining, you might want to wait a while and see if it goes away; if could just be a bug in your banking app.

If you can't clear the infection, I'm afraid your phone is rootkitted. In that case, I would recommend you not to use it for anything important. To prevent your phone becoming part of a botnet, you might need to remove your SIM, not enter your WiFi credentials after the next factory reset, and consider leaving it off entirely. If you start needing to enter more and more CAPTCHAs to enter websites, that can be a sign of some kind of infection on your network. If you've noticed something like that recently, it may be connected.

~~Your phone was last updated almost a year ago, so if you were infected, it may just be a matter of time before you're infected again.~~ Edit: I was wrong, it'll receive security updates until early 2026. Staying away from pirated apps and apps from sketchy sources may help prevent reinfection.

[–] Kbobabob@lemmy.world 7 points 8 months ago (1 children)
[–] skullgiver@popplesburger.hilciferous.nl 2 points 8 months ago* (last edited 8 months ago)

Hmm, weird. That website wasn't in any of my Google search results. I guess it's because of their weird SPA design? It also seems to provide security update information from before the phone was released? Your link just provides a bunch of details about CVEs for me.

But I looked again at the Motorola site and it does appear the phone receives updates up until 2026, so you're absolutely right. Motorola should really publish this data somewhere easier to find, IMO.

[–] JackGreenEarth@lemm.ee 3 points 8 months ago

Hypatia, which is the only antivirus I could find on F-Droid, didn't return any negative results. It would be helpful to be able to monitor my internet and what connections my phone is making, but all I have is simple net monitor, which can tell me the speed and nothing else. I can see there's background network activity, but no way to tell if it's legitimate (for something like syncthing) or malicious.

[–] Forester@yiffit.net 39 points 8 months ago (1 children)

Just FYI, rootkit malware does exist for phones

[–] JackGreenEarth@lemm.ee 6 points 8 months ago (2 children)

What is that and how does it relate to my issue?

[–] Chainweasel@lemmy.world 34 points 8 months ago (1 children)

Spyware that roots your phone.

[–] JackGreenEarth@lemm.ee 2 points 8 months ago (2 children)

Well how could it do it if I can't?

[–] troyunrau@lemmy.ca 4 points 8 months ago

A lot of exploits exist to root a phone. Bad apps can abuse those exploits.

[–] laurelraven@lemmy.blahaj.zone 2 points 8 months ago

You don't actually need an image to root a phone, that's not what rooting is... It's just gaining full administrative privileges over the device

[–] Jake_Farm@sopuli.xyz 35 points 8 months ago (2 children)
[–] chemicalwonka@discuss.tchncs.de 11 points 8 months ago* (last edited 8 months ago) (1 children)

This happens because "normie" Android devices has a proprietary shit called SafeNet Attestation API

[–] lemmyvore@feddit.nl 13 points 8 months ago

SafetyNet is the old thing. It's all about Play Integrity now. Magisk & friends have already moved on to a new method of fingerprint spoofing.

[–] FartsWithAnAccent@lemmy.world 11 points 8 months ago

This is the correct take.

[–] ma11en@lemmy.world 16 points 8 months ago (1 children)

Is your system software fully updated?

Are you running a Beta version of the system software?

[–] JackGreenEarth@lemm.ee 3 points 8 months ago (1 children)

It's the latest stable version, it updated a couple of days ago.

[–] Kbobabob@lemmy.world 2 points 8 months ago (1 children)
[–] JackGreenEarth@lemm.ee 1 points 8 months ago

That shows a bunch of FAQs, was there a specific one you wanted me to see?

[–] henfredemars@infosec.pub 13 points 8 months ago (1 children)

Did you enable developer mode and their message is stupid?

[–] JackGreenEarth@lemm.ee 1 points 8 months ago

I enabled developer mode, but it's not rooted.

[–] AnomalousBit@programming.dev 12 points 8 months ago

But Android is open source! Oh, until you actually do any fucking thing with it. Be gone, Google.

[–] AlternatePersonMan@lemmy.world 11 points 8 months ago (4 children)

Adjacent topic... Do you use a credit union? Because fuuuuuuck banks.

[–] Cheems@lemmy.world 7 points 8 months ago (1 children)

My bank just merged with another and released a new app. Immediately when trying to log in it said that the app can't be used with developer mode enabled.

[–] JackGreenEarth@lemm.ee 6 points 8 months ago

With developer mode enabled? I have that enabled, although my error message is about root. With a degoogled stock ROM, you have to have adb to backup system data, it's crazy your bank was blocking that.

[–] Osiris@lemmy.world 2 points 8 months ago* (last edited 8 months ago)

Credit unions are better but that doesnt mean their app will work on a rooted device
Source: My credit Union app doesnt work on my rooted devices 🙃

[–] JackGreenEarth@lemm.ee 1 points 8 months ago

Nationwide is a building society, which I think is kind of similar.

load more comments (1 replies)
[–] FrameXX@discuss.tchncs.de 9 points 8 months ago* (last edited 8 months ago) (1 children)

Did you unlock your bootloader? Some apps just scan for Google Play SafetyNet or in some other way to check whether you unlocked your bootloader or rooted and if they think you do they will vaguely state you are rooted.

Other's concern about your phone being infected are justified and I recommend you to try whether a dedicated root checking app thinks your phone is rooted. These usually don't lie.

Regarding your rooting situation I always rooted the lazy way. Renamed magisk.apk to magisk.zip, flashed it and it always worked for me. But I rooted only 2 phones in my life really and this is not the recommended method by magisk developer.

[–] umbrella@lemmy.ml 1 points 8 months ago

what is the recommemded method?

[–] lemmyvore@feddit.nl 9 points 8 months ago (1 children)

Install TB Checker and use the various detection modes to figure out what the bank app might be picking up on.

They check for a lot of (dumb) things instead of just checking for Play Integrity like they're supposed to. For example it might be detecting an app that could be using root, even if it's not, and assume that means you must be rooted, even though you're not. 🤷

[–] JackGreenEarth@lemm.ee 2 points 8 months ago

8 known trackers, and won't open when I install it from Aurora. Yeah...

[–] bulwark@lemmy.world 8 points 8 months ago* (last edited 8 months ago)

Lineage OS user here, my banking app got an update a while ago that stopped trusting my finger scanner because I'm rooted. Luckily it still allows passwords or else that would be a deal breaker.

*Edit, now that I think about it I'm not even rooted, just an unlocked boot loader.

[–] BearOfaTime@lemm.ee 4 points 8 months ago (1 children)
[–] JackGreenEarth@lemm.ee 1 points 8 months ago (1 children)

Yes, but not rooted. I could relock it and see if that solves the issue, but the app was opening fine when it was still OEM unlocked for several months until the app was updated yesterday. I didn't want it locked in case I did ever find a custom ROM for my phone and I didn't want to delete all my data.

[–] Hubi@feddit.de 2 points 8 months ago

Pretty sure this is the reason then, OEM unlocks can trigger this on some devices.

[–] where_am_i@sh.itjust.works 2 points 8 months ago (1 children)

magisk can hide root from apps

[–] JackGreenEarth@lemm.ee 2 points 8 months ago

Yes, but only if I actually rooted it, which I didn't. I'd like to root it, but couldn't find any trustworthy image for my phone to patch.

[–] ilinamorato@lemmy.world 2 points 8 months ago (5 children)

More and more every day, I wish the Firefox Phone had survived.

load more comments (5 replies)
[–] Thcdenton@lemmy.world 1 points 8 months ago (1 children)

Online banking has always been a disaster.

[–] echodot@feddit.uk 1 points 8 months ago (2 children)

I remember when I got a new phone and I could not figure out how I was supposed to get the banking app on my phone so I called the bank and they said oh you just have to remove the app from your old phone.

Weird but ok.

Thing is, what if I don't have the old phone what am I supposed to do then banking app people? The rep really couldn't get her head around the idea that the phone was in at the bottom of a lake.

Then I had to go through this carry-on where I had to send in all sorts of bits of info and then the video of me waving just so they let me install the app again. And that's on top of all of the other security the banking app already has.

load more comments (2 replies)
[–] MigratingtoLemmy@lemmy.world 1 points 8 months ago

I keep waiting for KernelSU support for more devices

load more comments
view more: next ›