this post was submitted on 09 Dec 2024
12 points (100.0% liked)

Privacy

49792 readers
675 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago
MODERATORS
 

cross-posted from: https://slrpnk.net/post/15995282

Real unfortunate news for GrapheneOS users as Revolut has decided to ban the use of 'non-google' approved OSes. This is currently being posted about and updated by GrahpeneOS over at Bluesky for those who want to follow it more closely.

Edit: had to change the title, originally it said Uber too but I cannot find back to the source of ether that's true or not..

top 50 comments
sorted by: hot top controversial new old
[–] HiddenLayer555@lemmy.ml 7 points 2 years ago* (last edited 2 years ago) (1 children)

This makes me want to use GrapheneOS more. If the dataminers don't want you to use it then it must be doing something right.

[–] 0x0@programming.dev 3 points 2 years ago (2 children)

Too bad it only runs on Google's phones...

[–] Realitaetsverlust@lemmy.zip 2 points 2 years ago (2 children)

It's only officially supported on google phones because sadly those are the only ones that are not modified to fuck which makes installing and supporting other OS'es way too much work.

Giving google money once for a device is not a problem from a privacy or security standpoint.

[–] Samsy@lemmy.ml 1 points 2 years ago (4 children)

That's correct, but not the reason grapheneOS chooses only pixel phones. It's the level of hardware security features.

load more comments (4 replies)
[–] HiddenLayer555@lemmy.ml 0 points 2 years ago* (last edited 2 years ago) (1 children)

Wish they'd at least support Fairphone.

If Graphene reached out to them I bet Fairphone would even actively work with them to make it an official OS option.

[–] porous_grey_matter@lemmy.ml 2 points 2 years ago

Fairphone would need to substantially modify their hardware to make that work

[–] ryannathans@aussie.zone 1 points 2 years ago (2 children)

Right? Have to pay google for the privilege

[–] 50MYT@aussie.zone 1 points 2 years ago* (last edited 2 years ago) (1 children)

Your options are:

Apple phone

Bloated android phone like Samsung etc.

Chinese android phone (xiami etc)

Google phone with Android

Google phone with graphene. This still looks like the best of those options.

Or no phone? I guess people are hardcore enough that will be the option.

Edit: I stand corrected.

[–] Samsy@lemmy.ml 1 points 2 years ago (1 children)

Fairphone? Swiftphone? eOS? Linuxphone? PostmarketOS etc?

[–] Andromxda@lemmy.dbzer0.com 1 points 2 years ago* (last edited 2 years ago)

All of these are insecure as hell. Linux phones especially https://madaidans-insecurities.github.io/linux-phones.html

Fairphone also really fucked up: They signed their own OS with the publicly available (!) AOSP test signing keys. These guys really don't know that they're doing, and I would trust their hardware or software whatsoever. And no, installing a custom ROM doesn't solve this. Considering how bad their security practices are, we genuinely have to assume that there are security issues with the device firmware as well.

/e/OS is based on the already insecure LineageOS, and it weakens the security further, so it's not a good option either.

None of the options you mentioned can be compared to GrapheneOS. It's currently the best option if you value your privacy and security. You don't have to give Google money either, since you can just buy a used device, which is also cheaper and more environmentally friendly. Google also makes repairing their devices pretty easy for consumers and even works with iFixit. Here's a Mastodon post I recently saw about that: https://social.linux.pizza/@midtsveen/113630773097519792

[–] OrganicMustard@lemmy.world 0 points 2 years ago (1 children)

You can always buy a second hand one

[–] ryannathans@aussie.zone 0 points 2 years ago* (last edited 2 years ago) (1 children)

Someone installing graphene os for security shouldn't be trusting random second/third/etc hand hardware lol

[–] OrganicMustard@lemmy.world 2 points 2 years ago* (last edited 2 years ago) (2 children)

There is absolutely no problem with that. The phone is wiped and encrypted when you flash graphene, and it does an integrity check every time it boots.

load more comments (2 replies)
[–] Charger8232@lemmy.ml 2 points 2 years ago (2 children)

This is very bad news, because this means any app that wants your data could do the same.

[–] mp3@lemmy.ca 3 points 2 years ago (1 children)

On the other hand, it makes it easy to find which apps aren't to be trusted with your data.

[–] themurphy@lemmy.ml 2 points 2 years ago

Also very obvious when an app or website have an US and an EU version. You just know they buttfuck the Americans because no rules.

Even Apple had to make two versions of iOS.

[–] dutchkimble@lemy.lol 1 points 2 years ago

Maybe graphene will find a way into duping those apps to think you have a regular android phone?

[–] Railcar8095@lemm.ee 1 points 2 years ago (1 children)

Just to be clear, they banned all custom roms, not only graphene.

[–] Andromxda@lemmy.dbzer0.com 0 points 2 years ago

Most ROMs like LineageOS and CalyxOS drastically weaken the security of Android, so that would actually make sense. GrapheneOS has far better security than AOSP, the Stock Pixel OS, or basically every other version of Android that you would find pre-loaded on a device. https://grapheneos.org/features#exploit-protection

[–] Andromxda@lemmy.dbzer0.com 1 points 2 years ago (2 children)

I don't think it's a coincidence that the shittiest companies are those, who enforce Google's broken and monopolistic "Play Integrity" API. Revolut has connections to Russia, McDonalds supports the Israeli genocide in Palestine and Authy has always just been a massive piece of shit, not even allowing users to export their TOTP seeds. These are three companies I would NEVER even consider using anyway.

And "Play Integrity" API actually does NOTHING, absolutely NOTHING for your security as an end user.
You use an outdated, unpatched Android version with multiple severe, publicly known exploits on an insecure device?
Google doesn't give a single fuck.
You use the newest version of Android with all the patches applied on Google's own hardware, with a locked boot loader and a hardened operating system?
That's not allowed by the "Play Integrity" API.
It's only purpose is to serve Google's monopolistic business interests.

[–] Sunny@slrpnk.net 1 points 2 years ago
[–] mercurial@lemmy.ml 1 points 2 years ago

What are Revolut's connections to Russia except its founder/owner's nationality? /nm

[–] zako@lemmy.world 1 points 2 years ago

the problem here is not the banks or apps, the problem is Google Play Integrity API, which is supposed to enforce to run apps in secured phones and it is used to ban secured ROMs such as GrapheneOS and it allows to run apps on outdated phones without security patches.

[–] GhiLA@sh.itjust.works 1 points 2 years ago

Odd timing considering I've banned McDonalds, Revolut and Authy from my phone.

[–] BigDanishGuy@sh.itjust.works 1 points 2 years ago

OK McDonald's, I will not use your most cost effective ordering method. I guess I will just have to order my 10 individually custom cheeseburgers at the counter instead. I might have to have e the order read back, and change my mind about a few burgers.

[–] tisktisk@piefed.social 1 points 2 years ago

Is this not a sign of the true intentions on both sides of the dilemma here!?!?
Let us go to the end. We cannot afford to carry on in fear of these bans. Let the lines be neatly placed and the sides chosen wisely. If sustained profits are desired, the walled-gardens must come down.

Vote with your dollar and vote again with your data. Wary, but never afraid is the motto privacy comrades!

[–] AnEilifintChorcra@sopuli.xyz 1 points 2 years ago (2 children)

Lol I spent a week going back and forth with Revolut support in august. I could sign into the app but it would always ask me for a "selfie" verification and every time support would say its a super dark selfie.

Eventually I decided to try a stock ROM and it just worked and I realised what was happening so I transferred all of my money out and deleted my account.

Most local banks here are terrible at making apps, some even require a separate device that looks like a calculator to use online banking, so hopefully they wont follow suit anytime soon

[–] kevincox@lemmy.ml 2 points 2 years ago

require a separate device that looks like a calculator to use online banking

To be fair this actually provides a very high level of security? At least in my experience with AIB (in Ireland) you needed to enter the amount of the transactions and some other core details (maybe part of the recipient's account number? can't quite recall). Then you entered your PIN. This signed the transaction which provides very strong verification that you (via the PIN) authorize the specific transaction via a trusted device that is very unlikely to be compromised (unless you give someone physical access to it).

It is obviously quite inconvenient. But provides a huge level of security. Unlike this Safety Net crap which is currently quite easy to bypass.

[–] chicken@lemmy.dbzer0.com 1 points 2 years ago (1 children)

Crazy how the response is to completely gaslight you about what the real issue is

[–] jagged_circle@feddit.nl 1 points 2 years ago

That's pretty typical when its a low level machine learning algorithm that flagged the account. Usually the support rep legitimately doesn't know, and you'll get stuck in an infinite loop

Maybe it's worth keeping a budget mobile phone at home with Rustdesk host running on it? When you have a need for an app that must run on a genuine Android, you just remote into that phone. Since the phone never leaves home, there's less to track.

[–] AstralPath@lemmy.ca 1 points 2 years ago

Fuck both of these companies. Never used McDicks app in the first place. Spyware bullshit.

[–] Roopappy@lemmy.world 0 points 2 years ago (1 children)

Why would anyone load an app from McDonalds? You want to give them elevated access to your most personal data for a few dollars of coupons?

What are they taking from you that's worth more than the discounts they are giving you? Because they are definitely making a profit, or they wouldn't be doing it.

[–] FriendBesto@lemmy.ml 1 points 2 years ago

I used to work hosting Focus Groups, we would pay cash, and top dollar for even small chunks of specific data sets on demographics that would age very quickly. Since people's habits change, different trends, feedback, etc. Hence the need of constant campaigns. Today, people give a lot of this data away, for free, in a constant data stream, for months if not years on end for cents or even a couple of bucks a month. Via constant tracking and profiling. It's crazy how privacy illiterate people are.

[–] Realitaetsverlust@lemmy.zip 0 points 2 years ago* (last edited 2 years ago) (1 children)

Well that's bad. I've been using revolut for years now.

Does anyone have a suggestion for a new bank that's operating under european law?

[–] hanrahan@slrpnk.net 1 points 2 years ago

Perhaps WISE? You can use the web page unlike Revolut.

[–] SnotBubble@lemmy.ml 0 points 2 years ago (1 children)

Would not updating Revolut keep the app compatible as long as you don't sign out?

If so, don't update the app and write down the build number of the last app version which worked on GrapheneOS. That way you would have a bit more time to sort things out.

[–] Andrew@mnstdn.monster 1 points 2 years ago

They constantly force you to update or the app won't work. I was already having issues with Revolut on GrapheneOS so I just closed my account and switched to Wise. The Revolut app was a bloated mess anyway.

[–] utopiah@lemmy.ml 0 points 2 years ago (2 children)

Seems like my time to move away from Authy. Any drop in alternative for iOS? Ideally I could export services and load them back, not manually adding/removing 1 by 1. Even if I can't though, suggestion still welcomed.

[–] Sunny@slrpnk.net 1 points 2 years ago

Highly highly recommend Ente Auth!

Also featured on Privacy Guides

load more comments
view more: next ›