571
you are viewing a single comment's thread
view the rest of the comments
[-] jmcs@discuss.tchncs.de 23 points 2 days ago

All US-based apps and all the apps that store their data in US-owned cloud providers at very least.

[-] SecureTaco@lemmy.asc6.org 5 points 2 days ago

US based apps that’s are end-to-end encrypted where you control the private keys cannot physically share as they won’t have access. Even if it’s in their cloud.

[-] jmcs@discuss.tchncs.de 14 points 2 days ago* (last edited 2 days ago)

If the nice people at the FBI show up to your door with a warrant from a secret court set up by Trump show up to your office telling you either implement a backdoor in your app or everyone goes to jail forever, what do you do?

[-] ReversalHatchery@beehaw.org 4 points 2 days ago

the devs don't even need to know about it. google has the app signing keys, they can make a change anytime they want. read my reply to their comment

[-] Waldowal@lemmy.world 2 points 2 days ago

Start blasting.

[-] ReversalHatchery@beehaw.org 8 points 2 days ago

until they get forced to issue an update that steals your key.

assuming you installed the app from google play.
since for a few years now google holds the signing keys that are used for verifying that the app has not been tampered with, the app developer is not even needed for this. google can make the changes, sign the app with the key they already have, and push an update to your phone.

this post was submitted on 11 Nov 2024
571 points (100.0% liked)

Privacy

1213 readers
63 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 1 year ago
MODERATORS