this post was submitted on 27 Apr 2025
90 points (85.7% liked)

Hacker News

1857 readers
376 users here now

Posts from the RSS Feed of HackerNews.

The feed sometimes contains ads and posts that have been removed by the mod team at HN.

founded 9 months ago
MODERATORS
patrick@lemmy.bestiver.se
rssbot@lemmy.bestiver.se
90
Hundreds of smartphone apps are monitoring users through their microphones (www.the-independent.com)
submitted 2 months ago by rssbot@lemmy.bestiver.se to c/hackernews@lemmy.bestiver.se
28 comments fedilink hide all child comments
 

Comments

you are viewing a single comment's thread
view the rest of the comments
[–] henfredemars@infosec.pub 33 points 2 months ago* (last edited 2 months ago) (8 children)

FUD. Apps cannot listen to the microphone without going through the OS first. I call FUD or share with me this magical OS-bypassing code. Compromising the OS at such a fundamental level on a recent Android version is almost certainly beyond their capabilities. I am more likely to believe the content that inspired this article is more aimed at investors and is blatantly making false claims, and that such claims from the privacy policy are generic disclaimers.

Further, have you ever tried to get an app to consistently run in the background on purpose? It's an enormous PITA when you actually want this to happen. Android apps do not typically run in the background at all unless they have again special permissions to bypass background restrictions. The OS strongly prefers to pause and eventually kill apps to save battery rather than permit background activities to occur unless they fall into specific categories and then only at specific times to optimize the battery usage.

If an app asks to run in the background all the time, bypass battery restrictions, and you grant it microphone access explicitly, the problem is no longer Android. The problem is the user being stupid by granting access against their own interests. And even then, it'll still trip the microphone indicator.

[–] Sylvartas@lemmy.dbzer0.com 10 points 2 months ago* (last edited 2 months ago) (2 children)

No one said they were bypassing the OS. Have you seen the permissions some apps ask for ? Messenger used to straight up refuse to work if it couldn't access your contacts and what your screen is showing at all times (allegedly to allow their shitty app widget to always display on top of whatever you're doing). Don't need a microphone to spy on anyone with that.

[–] Lichtblitz@discuss.tchncs.de 2 points 2 months ago

To be fair, the Android permission system is crap. I have an app to automate certain things. It requests only the exact permissions required for the actions I have configured. All I want to do is enable auto-rotate if a certain app is in the foreground and set portrait mode otherwise. In order to do that, the app needs full screen reader access and can theoretically see everything that's on the screen. That said, I personally don't believe the Messenger app was well intentioned. But if it were, it may not have a choice but to request these permissisions for legitimate use cases.

load more comments (1 replies)
load more comments (6 replies)