• cheddar@programming.dev
    link
    fedilink
    English
    arrow-up
    39
    ·
    6 months ago

    If only there was what to install. It’s crazy that I have to essentially throw away a perfectly capable device because the manufacturer doesn’t provide updates anymore. That if I want security updates.

  • [moved to hexbear]@lemmy.ml
    link
    fedilink
    English
    arrow-up
    28
    ·
    6 months ago

    I think the moral of the story here is more along the lines of “don’t install weird off-brand versions of apps from dodgy places” (F-Droid excepted, obviously)

    Like what the fuck is a “Black WhatsApp”?

    • Psychodelic@lemmy.world
      link
      fedilink
      English
      arrow-up
      12
      ·
      6 months ago

      Ratel RAT is spread via various means, but threat actors are typically seen abusing known brands like Instagram, WhatsApp, e-commerce platforms, or antivirus apps to trick people into downloading malicious APKs.

      During installation, it requests access to risky permissions, including exemption from battery optimization, to be allowed to run in the background.

      Yeah, that’s a weird thing to do and then blame on a lack of updates.

      “Make sure to extend your car’s warranty! I mean, just look at what happened to this drunk driver’s car.”

      I personally really dislike forced updates and how some people try and justify them with examples of people doing dumb shit like this where they literally side load a sketchy APK and grant it all permissions. Why not promote tech literacy instead of blind confidence into updates that are almost never explained in any significant detail? It’s honestly just so weird how superstitious it all seems

    • noodlejetski@lemm.ee
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      1
      ·
      6 months ago

      Like what the fuck is a “Black WhatsApp”?

      there are some modded Whatsapp versions that add features that don’t exist in the official version, like hiding typing indicator for you while still being able to see the other person’s, same with read markers, and so on. while I’ve never tried any myself, some of them seem to be legitimate.

      • psychOdelic
        link
        fedilink
        English
        arrow-up
        1
        ·
        6 months ago

        they are, but they probably also install a bunch of other stuff, I’ve had one once. had to reset my phone.

        • EddoWagt@feddit.nl
          link
          fedilink
          English
          arrow-up
          2
          ·
          6 months ago

          I ran yowhatsapp for like 5 years, was great until whatsapp forced me to use the official app

  • henfredemars@infosec.pub
    link
    fedilink
    English
    arrow-up
    13
    ·
    6 months ago

    Title doesn’t really follow the data from the article. Updating your smartphone doesn’t appear to be related to the RAT investigated here. Rather, the researchers note older devices were targeted more often.

    This could be an incidental finding.

  • Tom@lemdro.id
    link
    fedilink
    English
    arrow-up
    9
    ·
    6 months ago

    It’s ironic that this website is being posted here. The amount of ads is atrocious, and the scrolling looks like 10fps. Privacy much…