This seems more like an ad for Malwarebytes' premium service than an informational post.
Technology
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
Fuck malwarebytes forever. I'll never forgive them for not honoring my perpetual licenses that I purchased before they became subscription based all those years ago. I told them I was going to talk shit about them until the day I died, and I will keep that promise. I actually had to install malwarebytes the other day to try and fix a computer, malwarebytes itself is treading a fine line of being malware. It continually tells you you need to purchase a subscription, the app tries to get you to purchase a VPN through them, it gives random popups, I had no idea their service had gotten so bad.
Yeah, I have not used Malwarebytes in years because it was obvious the quality has significantly declined.
Even after reading the key points it wasn't clear "how" they manage to do that. The article is not much more detailed, but at least mentions them exploiting android's accessibility services.
I agree with you. The article give a good warning about downloading applications in general, but hand-wave how they escalated from "file/photo" access to capturing your data. The recent Anatsa malware's details seem to imply accessibility service. This is a Thread Fabric article about Anatsa malware: https://www.threatfabric.com/blogs/anatsa-trojan-returns-targeting-europe-and-expanding-its-reach
But I thought the data storage even if not encrypted (which afaik is standard as well) is now isolated for each app? And surely accessibility permissions are a separate category you have to grant also?
Yeah, the app data are separated and inaccessible, unless specified by the developer. Accessibility service is a separate permission, and should almost never be asked or granted, where as file/photo accesses are more common.
Wait what... Who can login to the internet bank with just a user/password?
We've had MFA requirement here in Sweden since the early 00's...
mean while 23andme gaslighting customers
👀