Rabat_ Social Media Exchange (SMEX)—a nonprofit organization dedicated to advancing human rights in digital spaces across MENA [Middle East and North Africa] — is warning that Israeli-linked software secretly embedded in Samsung phones across the Middle East and North Africa region poses a serious surveillance threat.
According to SMEX, Samsung’s A and M series devices either come preloaded with the app “Aura” or install it automatically through system updates, without the user’s consent. The application reportedly collects a wide range of personal and device-specific data, including IP addresses, device fingerprints, hardware details, and network information.
That’s why they say that free cheese exists only in traps.
(Or sometimes cheese paid for, but less than needed to not look for other sources of financing. Think all of modern electronics and the Internet.)
It’s not about other schemes of profiting than paying forward not existing - it’s about you the customer being interested in them not being used. They are always worse for you. The lesson of “free” stuff on the Internet.
Including free and open source software, with no doubt - because when a FOSS project could go the direction that would badly hurt corporate business relying on traps, it doesn’t - because its scheme of existence is based on said corporate businesses’ funding and developer participation and embrace and testing. And there won’t be a discussion inside that project, no matter how democratic, because money likes silence. Nobody will even think about a direction not supported by work, and work is done by people, and people are paid. All of big FOSS events cost a lot ; some of it is in volunteer resources, but most of it is people on their jobs.
I’m honestly starting to think about going the Apple way - at least they only send hashes of the binaries you run to the daddy.
i have a samsung phone and im not surprised to hear this. my phone keeps installing these crappy mobile games without my consent and i had to manually uninstall them a few times. so yeah, not much of a stretch.
Could it be your carrier somehow doing that? I’ve literally never had that happen
it definitely is a carrier thing. my phone is carrier unlocked, but because it used to be a T-Mobile phone I still had their shitty T-Mobile app manager randomly installing shit. I was wise enough to disable it but many have no idea you can. same goes for this appcloud thing, it’s been around for a long time and affects a lot of Japanese and Chinese phones too. I switched from iPhone and this bewildered me, no idea how it’s even legal.
Has anyone actually analysed this app to see what information it can actually access? The few articles I’ve found don’t elaborate.
Like, does it just track what games you play and websites you visit? Or can it log your keyboard, steal all your banking passwords and read all your private conversations?
It’s a rage bait article that’s why they leave out all of the information. It’s working too.
Seems like a popular Kuwait based e-commerce app in the region:
https://play.google.com/store/apps/details?id=com.alshaya.aura
That being said android apps are sandboxed and dont really have any capabilities unless launched. Still shouldn’t be included by default but the impact here is definitely overexaggerated.
“is this runoff full of poop or just pee???”
if anyone has one of these phones, please contact CitizenLab. they can reverse-engineer it.
Thank you Samsung for giving us, not one, but two reasons this week to not buy your overpriced shit.
whats the 2nd? beside their push ads, spying and unremovable overbloated junk?
They recently announced that they were going to insert ads on their smart fridges. What soured me towards Samsung products was when they started to lock the bootloader on their phones where previously this wasn’t a problem.
Yet another reason why running GrapheneOS is a great idea. The surveillance state is now.
Pixel only?
yes, and you have to get one that is from google and isn’t from a carrier so you can unlock the bootloader. Carrier versions have locked bootloaders.
I have a Canadian carrier purchased phone. Brand new Pixel 9. 5$ a month. For 24 months.
It has only ONCE booted to the Google version of Android.
To flip the toggle to enable OEM unlock.
I kept WiFi off and hadn’t inserted a SIM so it couldn’t update or do anything else that might have prevented flashing graphene.
Not sure if that was necessary, but it worked.
And now I live my life free of google software surveillance.
Just so nobody else is confused, Canadian carrier phones legally have to be sold unlocked as of 2017
I just bought a Pixel 10 from Spectrum with the repeated assurance that the phone would be fully unlocked after it was paid off and had several months of service. I intended to load Graphene OS, but apparently I was fucking lied to yet again by another business that will say anything to make a sale.
I can’t do anything about that now, but I can move to another carrier and make damn sure they don’t ever make another dime off my mobile account.
They thought you meant carrier-unlocked. That’s what most people care about, being able to switch providers.
I doubt they even knew what a bootloader is.
Once it’s carrier unlocked you should be able to unlock the bootloader though right?
I don’t believe they are related
Rogers in Canada has pixels that allow unlocking the bootloader (just got a pixel 9, and once I have some time I’m going to try putting a custom build on it).
Mine went fine. I kept the radios off before using it and fully flashing just in case.
I read on the grapheme forums that some carrier software might flip a bit or something if it gets downloaded/provisioned.
In most markets, kind of. There are some others but most aren’t sold in NA other than the Pixel.
Ah okay, thanks
It’s fine, they’ll still be able to change the OS
https://sammyguru.com/breaking-samsung-removes-bootloader-unlocking-with-one-ui-8/
Oh…
I wonder what spyware they’d be willing to put in their phones in the US for the regime in charge.
Also, if I bought a Samsung phone while a dictator is in charge and it gets the update and I get the spyware — hypothetically speaking here — and by the time a progressive is in office, they’re pushing updates that remove it, but my phone is outside the update period, how would I go about removing it? Just buy a new one at cost? Seems like that’s something they’d let you do for free, though.
