←back to thread

Your phone isn't secretly listening to you, but the truth is more disturbing

(newatlas.com)
369 points zeech | 1 comments | 26 Apr 25 00:26 UTC | HN request time: 0s | source
Show context
diggernet ◴[26 Apr 25 02:05 UTC] No.43800281[source]
> "Apps were automatically taking screenshots of themselves and sending them to third parties. In one case, the app took video of the screen activity and sent that information to a third party.”

> Out of over 17,000 Android apps examined, more than 9,000 had potential permissions to take screenshots. And a number of apps were found to actively be doing so, taking screenshots and sending them to third-party sources.

Which permission is that, and how do you detect which apps are doing that and stop them?

replies(6): >>43800465 #>>43800497 #>>43800516 #>>43800613 #>>43800669 #>>43808386 #
grishka ◴[26 Apr 25 03:26 UTC] No.43800669[source]
There is a permission to record the screen. It requires user consent and there's an icon in the status bar while it's being used. It's impossible to use this covertly.

What I believe the article is speaking about, is an app taking screenshots of its own windows. This is obviously possible and obviously requires no permissions whatsoever. Just make a screen-sized bitmap and do

    getWindow().getDecorView().draw(new Canvas(bitmap));
It does sound believable that third-party advertising/marketing/tracking SDKs, which many apps are chock full of, could be doing this.
replies(1): >>43800680 #
daveguy ◴[26 Apr 25 03:28 UTC] No.43800680[source]
> It's impossible to use this covertly.

*Unless there's a zero-day that allows it.

replies(2): >>43800692 #>>43800821 #
simonw ◴[26 Apr 25 03:57 UTC] No.43800821[source]
Burning a zero-day like that for targeted advertising seems extremely unlikely to me.
replies(2): >>43803893 #>>43803928 #
1. daveguy ◴[26 Apr 25 14:27 UTC] No.43803928[source]
I think you missed the point GP was making. I believe they meant the vector might come from that kind of SDK. Not that someone who had a zero day to allow surreptitiously recording phone screens would use it for that purpose.