fuk em keep using it
this post was submitted on 09 Dec 2024
788 points (99.9% liked)
Privacy
37075 readers
330 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
Well that's bad. I've been using revolut for years now.
Does anyone have a suggestion for a new bank that's operating under european law?
load more comments
(10 replies)
Just run PWA instead no?
For Revolut? Unlikely, their website forces you into using the app.
The others sure, i guess, but i don't see the user overlap.
load more comments
(1 replies)
So, uh, the next version of GrapheneOS will probably come with some Android OS version spoofing tech that solves this - if there isn't something on F-Droid already.
load more comments
(4 replies)
McDonalds? Uber?
They both have fully functioning webapps btw.
Right people who install various apps like McDonalds apps etc, are these even typical to GrapheneOS users? I'd think most would avoid superfluous data stealing apps.
I've been thinking of switching the GrapheneOS. I certainly enjoy my privacy, and are taking steps to move to sources that don't harvest my data. Outside of YouTube and android I've completely degoogled myself, even replaced Maps with magic earth and OsmAnd. I even swapped full time to linux a handful of months ago as a gamer with a VR interest. But I'm not so hardcore to not use any service that might sell my data. I still use vanilla firefox, food ordering apps, and discord for example. So while I'm not someone who goes to extreme lengths to protect my data, moving over to GrapheneOS doesn't seem like a huge inconvenience compared to the gains you get.
load more comments
(4 replies)
load more comments
(11 replies)
Are there any checker apps to see which of user's installed apps have this? Looking up "Play Integrity API" only finds the checkers for the phone itself...
Apparently, they don't need my business. Acceptable.
Anyone tried waydroid or android in an emulator for these type of apps ?
load more comments
(1 replies)
the problem here is not the banks or apps, the problem is Google Play Integrity API, which is supposed to enforce to run apps in secured phones and it is used to ban secured ROMs such as GrapheneOS and it allows to run apps on outdated phones without security patches.
So that's why it works on lineage? They seem to get around this somehow
load more comments
(4 replies)
which is supposed to enforce to run apps in secured phones
The point of the Google Play Integrity API is to ensure that the user is not in control of their phone, but that one of a small number of megacorps are in control.
Can the user pull their data out of apps? Not acceptable. Can the user access the app file itself? Not acceptable. Can the user modify apps? Not acceptable.
Basically it ensures that the user has no control over their own computing.
It's simply the "secure" isn't meant for users but the cooperations. Make it "secure" to their business.
load more comments
(1 replies)
load more comments
(2 replies)
load more comments
(14 replies)
I can't prove it, but I'm 99% sure Lyft did the same thing. Had a perfect rating (and was even a driver at one point), and they banned me without explanation right after I switched to GrapheneOS.
Emailed them a few times asking for the reason, and they refused to tell me.
_"Legally, we cannot release any additional information except that we found your account to be violating our Terms of Service.
We will be in touch if we are able to reopen your account in the future."_
There's absolutely nothing else that they could've misconstrued as "violating the Terms of Service."
If Uber's going down the same path, no more ride-sharing for me I guess. ¯_(ツ)_/¯
Uber still works under Lineage. Can't imagine what the heck they are trying to block
load more comments
(2 replies)
Do the web apps not still work? I’ve booked Uber eats from a computer in the past, I’m imaging the phone browser version might still function. I don’t have lyft in my country to know tho.
load more comments
(1 replies)
There's always traditional taxis I guess
load more comments
(2 replies)
Use the websites whenever you can. That's what I do at least. Although I had to stop using Lyft entirely, because they stopped supporting rides from their website apparently. And that leaves just Uber. I actually left my bank for a similar reason. It supported my phone just fine, and it worked without Google Play Services, but the website wouldn't let me do everything that the app would, and the app required that I have Aurora Store to download their banking app from the Google Play Store, and I wanted to get away from that, so I switched banks so that I could use the bank website instead. From what I can tell, you run into this kind of stuff a lot with FinTech apps. But if you use older banks, like Discover or Wells Fargo or things like that, they tend to work better. Maybe because they're not up with the newest technology, LOL.
lol, I've observed the same.
Fancy "Digital Wallet" thingy is absolutely decked out in Root detection, meanwhile my older, physical bank's app doesn't give a fuck.
I've never been too fond on the idea of a 100% digital bank so no loss for me!
Yeah Revolut is also the kinda app that is almost only a mobile app, not much you can do with their website, last i checked.
Correct. This is the reason not to use Revolut.
Choose Wise instead.
Revolut was the one I was looking at if I'd switch to Graphene.
Lol I spent a week going back and forth with Revolut support in august. I could sign into the app but it would always ask me for a "selfie" verification and every time support would say its a super dark selfie.
Eventually I decided to try a stock ROM and it just worked and I realised what was happening so I transferred all of my money out and deleted my account.
Most local banks here are terrible at making apps, some even require a separate device that looks like a calculator to use online banking, so hopefully they wont follow suit anytime soon
Crazy how the response is to completely gaslight you about what the real issue is
load more comments
(1 replies)
require a separate device that looks like a calculator to use online banking
To be fair this actually provides a very high level of security? At least in my experience with AIB (in Ireland) you needed to enter the amount of the transactions and some other core details (maybe part of the recipient's account number? can't quite recall). Then you entered your PIN. This signed the transaction which provides very strong verification that you (via the PIN) authorize the specific transaction via a trusted device that is very unlikely to be compromised (unless you give someone physical access to it).
It is obviously quite inconvenient. But provides a huge level of security. Unlike this Safety Net crap which is currently quite easy to bypass.
Those little boxes are just a bit of hardware to let the smartchip on the smartcard do what's called challenge-response authentication (in simple terms: get big long number, encode it with the key inside the smartchip, send encoded number out).
(Note that there are variants of the process were things like the amount of a transfer is added by the user to the input "big long number").
That mechanism is the safest authentication method of all because the authentication key inside the smartchip in the bank card never leaves it and even the user PIN never gets provided to anything but that smartchip.
That means it can't be eavesdropped over the network, nor can it be captured in the user's PC (for example by a keylogger), so even people who execute files received on their e-mails or install any random software from the Internet on their PCs are safe from having their bank account authentication data captured by an attacker.
The far more common ~~two-way-authentication~~ edit: two-channel-authentication, aka two-factor-autentication (log in with a password, then get a number via SMS and enter it on the website to finalize authentication), whilst more secure that just username+password isn't anywhere as safe as the method described above since GSM has security weaknesses and there are ways to redirected SMS messages to other devices.
(Source: amongst other things I worked in Smart Card Issuance software some years ago).
It's funny that the original poster of this thread actually refuses to work with some banks because of them having the best and most secure bank access authentication in the industry, as it's slightly inconvenient. Just another example of how, as it's said in that domain, "users are the weakest link in IT Security".
load more comments
(9 replies)
load more comments
(1 replies)