cross-posted from: https://lemmyf.uk/post/5813538
First ever iOS trojan discovered — and it’s stealing Face ID data to break into bank accounts
cross-posted from: https://lemmyf.uk/post/5813538
First ever iOS trojan discovered — and it’s stealing Face ID data to break into bank accounts
This is a small taste of what sideloading will bring to all of your parents who own iOS devices!
I honestly can’t wait for the gong show to begin.
Just like the cookie law and GDPR before it, the intention might be good, but the implementation is so botched that it’s just going to be a huge mess.
Hope a couple of emulators and porn apps will be worth it for those that advocated for this crap.
Most of the advocates for it use Android instead anyway and aren’t likely to be impacted at all.
Android users are not forcing you or pushing for how Apple users use their phones. I don’t get where this adversarial stuff comes from. We already have this feature.
sideloading or not, you can just socially engineer vulnerable folks into installing trojans you your phone. as proven by this post.
there will always be a way regardless if you are stuck inside a competition-free walled garden or not.
MFA or not, you can always social engineer people into getting access into their bank account. There’s even SS7 attack for SMS based MFA. So, let’s just abolish passwords and MFA all together and everyone hold hands to sing Kumbaya and be hippies together… right? No, of course not. You do not weaken an established system because there’s ways for bad actors to act maliciously. Vast majority of Apple users doesn’t care for side loading and would benefit from the security that comes with the walled garden, very few Apple users (and the Lemmy user base does not a represent a statistically significantly broad representation of the user base) knows enough to care for otherwise, but are now getting dragged along for the ride.
Thats like blaming a knife for the users inability to understand you have to grip it by the handle.
That vast majority can continue using their phones as if nothing ever happened. Nobody is forcing them and more choice is good.
Even if they are not using the feature they will benefit from competition in the space. That’s the only sane way within capitalism. This far outweights the very small perceived risk a very small minority of users may or may not be subjected to the very same social engineering attack thats already being exposed by the article.
Its not us Lemmy or Android users pushing for this and dragging you along, we already have that feature, its fine. Its regulators wanting to mitigate the effects of a monopoly and this is benefical for the industry as a whole.
Again, you even said it yourself, most users can (and will) always keep the feature off anyway. Nobody is forced to use it and Apple will sure make it difficult anyway.
There are plenty of apps people are forced to install; apps used for international airport entries, apps that’s used by everyone professionally, or worse yet, that one state-owned chat app grandma uses back home because everyone else uses it around her. All it take is one of them deciding they don’t want to be part of the strict review process and that their ability to further spy on their users are worth the core technology fee, and now people would be forced to use third party app stores with questionable review process. The “scare screen” before they add the third party App Store? That’s just going to be another thing users blindly click through due to notification fatigue.
At least for the time being, the current proposal put forth, Apple should still theoretically be able to revoke apps from third party app stores, and they still retain entitlement (sandbox/low level hardware access) signing rights. Once those checks and balances are taken away… then all hell breaks loose and those not super tech savvy (read: 99%+) will be hurt the most. At least I am comfortable enough to look out for myself 🤷