Android P to Restrict Apps From Monitoring Network Activity
The upcoming version of the Android OS — codenamed only Android P for the moment — will block applications from accessing and monitoring the operating system's network activity.
Android project developers took this decision to improve the operating system's privacy and prevent user-installed apps from sniffing on the user's network activity outside the app.
/proc/net access abused by apps
Currently, apps can access networking data by requiring a simple permission, but the text of that permission is vaguely worded, and most users don't fully understand the breadth of the access an app is receiving.
For example, a user-installed app that obtains the permission to access the user's network data can tap into the Android OS "/proc/net" process and detect any time the user is initiating a network connection and to what server.
The app can't access the data in that network connection, but often enough, knowing where the user is connecting is enough for apps that collect user data to sell it to advertisers.
Android devs are plugging the leak
But over the weekend, Android developers have submitted a commit to the Android OS source code that "plugs the /proc/net leak" and restricts access to this core OS process, according to XDA Developers, a forum dedicated for Android developers.
Moving forward, Android engineers said that only VPN apps will be allowed access to this process and that any other app that needs it must undergo a code audit.
This update is just the latest security-focused change made to the upcoming Android P operating system. Below are others:
⮞ Android P will block cleartext (HTTP) traffic from apps. HTTPS is the new norm.
⮞ Android P will use the same UI when requesting fingerprint authentification across apps and devices.
⮞ Android P will block background apps from accessing the phone's camera and microphone.
⮞ Android P will encrypt backups on the device with a local secret key before sending the backup for storage on Google's servers.
⮞ Experimental support for MAC address randomization.
⮞ Support for DNS over TLS.
Comment(s)
Categories
- Other (42)
- Ransomware (128)
- Events and News (26)
- Features (45)
- Security (434)
- Tips (79)
- Google (22)
- Achievements (9)
- Products (33)
- Activation (7)
- Dealers (1)
- Bank Phishing (42)
- Malware Alerts (195)
- Cyber Attack (222)
- Data Backup (11)
- Data Breach (81)
- Phishing (139)
- Securty Tips (1)
- Browser Hijack (16)
- Adware (15)
- Email And Password (67)
- Android Security (56)
- Knoweldgebase (38)
- Botnet (15)
- Updates (3)
- Alert (71)
- Hacking (57)
- Social Media (7)
- vulnerability (54)
- Hacker (31)
- Spyware (8)
- Windows (6)
- Microsoft (21)
- Uber (1)
- YouTube (1)
- Trojan (2)
- Website hacks (3)
- Paytm (1)
- Credit card scam (1)
- Telegram (3)
- RAT (5)
- Bug (3)
- Twitter (2)
- Facebook (7)
- Banking Trojan (5)
- Mozilla (2)
- COVID-19 (5)
- Instagram (2)
- NPAV Announcement (6)
- IoT Security (1)
- Deals and Offers (1)
- Cloud Security (8)
- Offers (5)
- Gaming (1)
- FireFox (2)
- LinkedIn (2)
- WhatsApp (4)
- Amazon (1)
- DMart (1)
- Payment Risk (4)
- Occasion (3)
- firewall (1)
- Cloud malware (2)
- Cloud storage (2)
- Financial fraud (8)
- Impersonation phishing (1)
- DDoS (4)
- Smishing (2)
- Whale (0)
- Whale phishing (3)
- WINRAR (2)
- ZIP (2)
Recent Posts
Archive
Tags
cyber attack
phishing
data breach
ransomware
ransomeware
android malware
financial security
cyber threats
cyber security
malware
phishing attack
data stealing
phishing attacks
cyber fraud
lockbit
data theft
cyber threat
cybercrime
financial fraud
cert-in
ddos
twitter
network security
india
phishing email
microsoft
critical vulnerability
trojan
scam
phishing scam
play store
clop
email security
email phishing
vulnerability
net protector total security
winrar
server security
malicious apps
android apps
data security
microsoft team
cyberattack
pakistan-backed hacker
cyber attacks
cybercriminals
data backup
organisation
cryptojacking
ddos attack