[ars] Android "Strandhogg" Vulnerability being Exploited - Page 2 - Overclock.net - An Overclocking Community
Forum Jump: 

[ars] Android "Strandhogg" Vulnerability being Exploited

Reply
 
Thread Tools
post #11 of 53 (permalink) Old 12-04-2019, 09:03 AM
Overclocker in training
 
ThrashZone's Avatar
 
Join Date: Apr 2017
Location: Texas
Posts: 9,615
Rep: 132 (Unique: 85)
Hi,
Think there is also skimmer apps now days all one has to do is get close to your wallet... and have all magnetic strips read.

But yeah cell phone banking/ shopping is just silly bad enough with really security on pc.

CPU
i9-9940x With Optimus Foundation copper-plexi and Heatkiller VRM Plexi-Copper water block
Motherboard
ASUS x299 Rampage VI Apex
GPU
Titan Xp with copper Water Block
RAM
Trident Z 3600C16 4x8gb's b-die default timings 16-16-16-36
Hard Drive
Samsung 970 Evo Plus 500gb M.2/ Samsung 850 Pro 256gb for os and 500gb evo for favorite games plus other wd hdd's for data and backup's
Optical Drive
LG Blu-Ray WH16NS40
Power Supply
evga 1200-P2
Cooling
2-280GTX Black Ice Nemesis rads with D5 pump-res combo and D5 top before and after rads.
Case
corsair 450D with added 2nd floor to house radiator on top
Operating System
Win-7 pro & 10 pro Win-7 Primary os.
Monitor
ASUS VG248QE 24" 144Hz
Keyboard
Logitech G910 Orion spectrum
Mouse
Redragon Perdition
Audio
Built in realtek and Insignia 2.0 soundbar HSB318
Other
5.0/https://valid.x86.fr/ez2ifr
CPU
i7-5930k with Heatkiller IV Pro Plexi-Copper and koolance vrm water blocks
Motherboard
X99 Sabertooth
GPU
EVGA 1080ti FTW3 with Water block
RAM
Trident-Z 3200C14 4x8gb's b-die default timings 14-14-14-34
Hard Drive
Samsung 970 Evo 500gb M.2/ Samsung 850 Pro 256gb for os and 500gb evo for favorite games plus other wd hdd's for data and backup's
Power Supply
EVGA 1000-P2
Cooling
2-240 GTX Black Ice Nemesis rads/ D5 pump-res combo and D5 top before and after rads.
Case
Corsair 450D with added 2nd floor to house radiator on top
Operating System
Win-7 and 10 pro Win-7 Primary os.
Monitor
AOC G2460PG 24"G-Sync 144Hz
Mouse
Red Dragon Perdition
Audio
Built in realtek and Insignia 2.0 soundbar HSB318
Hard Drive
eLeaf MELO-3 4ml
Power Supply
SE US18650VTC6 3120mAh 30A 3.6V 18650 Li-ion Battery - GREENx4
Case
ANGIS Legion MOD 200w Geek Vape
Operating System
VapeWild RazzleBerry 50-50-0mg nic
▲ hide details ▲
ThrashZone is online now  
Sponsored Links
Advertisement
 
post #12 of 53 (permalink) Old 12-04-2019, 09:54 AM
professional curmudgeon
 
looniam's Avatar
 
Join Date: Apr 2009
Posts: 9,911
Rep: 810 (Unique: 457)
blame blackberry!

until then, phones were phones and PDAs were PDAs. i remember my buddy being all stoked to sit in a coffee shop to jack in his nokia to his palm pilot to send faxes. remember when faxing was still more popular than email?

though its not all what you do but what you use. some apps want access to stuff i see no reason to need. why does a stupid sound analyzer need to know my contacts or SMS?

Remember the golden rule of statistics: A personal sample size of one is a sufficient basis upon which to draw universal conclusions.
Upload the computer to Dropbox and provide a link to it so others may download it to examine and give advice for repairs.
loon 3.2
(18 items)
CPU
i7-3770K
Motherboard
Asus P8Z77-V Pro
GPU
EVGA 980TI SC+
RAM
16Gb PNY ddr3 1866
Hard Drive
PNY 1311 240Gb
Hard Drive
1 TB Seagate
Hard Drive
3 TB WD Blue
Optical Drive
DVD DVDRW+/-
Power Supply
EVGA SuperNova 750 G2
Cooling
EKWB P280 kit
Cooling
EK-VGA supremacy
Case
Stryker M [hammered and drilled]
Operating System
Win X
Monitor
LG 24MC57HQ-P
Keyboard
Ducky Zero [blues]
Mouse
corsair M65
Audio
SB Recon3D
Audio
Klipsch ProMedia 2.1
▲ hide details ▲


looniam is offline  
post #13 of 53 (permalink) Old 12-04-2019, 10:26 AM
What goes here?
 
speed_demon's Avatar
 
Join Date: Nov 2006
Location: Wisconsin
Posts: 1,938
Rep: 103 (Unique: 81)

Thooose were the dayyyys. Lol.

Quis custodiet ipsos custodes?


speed_demon is online now  
Sponsored Links
Advertisement
 
post #14 of 53 (permalink) Old 12-04-2019, 11:07 AM
Overclocker
 
JackCY's Avatar
 
Join Date: Jun 2014
Posts: 10,435
Rep: 346 (Unique: 244)
Hopefully my Android is too old to run it lol.

Most apps are free and thus they want all your data access so they can resell it without you knowing/realizing. Some access makes sense, but even then it would be nice to say give it on a as user needed request, such as calendar access to contacts, doesn't need it but if the user decides it does well then upon a user action it could be allowed to on that instance, not as a always anytime pilfer through my contacts and do what ever you want. On old Android there used to be a menu for permissions except it's near impossible to get to, only saw it once and after it closed there was no way to open it again, it exists but the GUI is so bad that no one knows how to open it or what special command in some API opens it. Newer Android tried to fix a lot of the old Android issues but I still don't want to buy anything below Android 10. They gotta solve the terrible updatability and finally make it less dependent on lazy phone makers who don't bother to release updates for Android on their devices.

Banking etc. on a phone is asking for trouble, especially for the always online phones.
JackCY is offline  
post #15 of 53 (permalink) Old 12-04-2019, 11:19 AM
professional curmudgeon
 
looniam's Avatar
 
Join Date: Apr 2009
Posts: 9,911
Rep: 810 (Unique: 457)
ouch. i'm not boomer old let alone greatest gen old . . i can still eat solid foods.

Remember the golden rule of statistics: A personal sample size of one is a sufficient basis upon which to draw universal conclusions.
Upload the computer to Dropbox and provide a link to it so others may download it to examine and give advice for repairs.
loon 3.2
(18 items)
CPU
i7-3770K
Motherboard
Asus P8Z77-V Pro
GPU
EVGA 980TI SC+
RAM
16Gb PNY ddr3 1866
Hard Drive
PNY 1311 240Gb
Hard Drive
1 TB Seagate
Hard Drive
3 TB WD Blue
Optical Drive
DVD DVDRW+/-
Power Supply
EVGA SuperNova 750 G2
Cooling
EKWB P280 kit
Cooling
EK-VGA supremacy
Case
Stryker M [hammered and drilled]
Operating System
Win X
Monitor
LG 24MC57HQ-P
Keyboard
Ducky Zero [blues]
Mouse
corsair M65
Audio
SB Recon3D
Audio
Klipsch ProMedia 2.1
▲ hide details ▲


looniam is offline  
post #16 of 53 (permalink) Old 12-04-2019, 02:53 PM
LTSC Consiglieri
 
skupples's Avatar
 
Join Date: Apr 2012
Location: Fort Lauderdale
Posts: 22,516
Rep: 658 (Unique: 351)
Quote: Originally Posted by 8051 View Post
What about email? Not even that?
only on the corp device. personal device only has access to my bs email account that is used for everything not money related. IE, resumes, forum subs, etc. however, atm both are apple devices, one personal, one corporate. Don't hate me, 6S+ was a relatively revolutionary device, and with warranty replacement, has lasted me all this time. & corporations won't be switching to android any time soon.

i'll be going back to android once this final 6S+ replacement fails, hopefully my droid dev older brother can help point me in the right direction once that time comes.

R.I.P. Zawarudo, may you OC angels' wings in heaven.
If something appears too good to be true, it probably is.
Best R0ach Quote of all time : TLDR: Haswell might be the last legit gaming platform unless mice get their own non-USB interface on some newer architecture.
skupples is offline  
post #17 of 53 (permalink) Old 12-04-2019, 05:00 PM
What goes here?
 
speed_demon's Avatar
 
Join Date: Nov 2006
Location: Wisconsin
Posts: 1,938
Rep: 103 (Unique: 81)
20 bucks says he mentions the OnePlus brand. It's a darn good manufacturer & getting better each year. I'm thinking of buying one and I've been a devout Nexus user since 2013.

Quis custodiet ipsos custodes?


speed_demon is online now  
post #18 of 53 (permalink) Old 12-04-2019, 06:15 PM
do not touch my butt
 
Caffinator's Avatar
 
Join Date: Apr 2014
Posts: 240
Rep: 5 (Unique: 5)
Quote: Originally Posted by 8051 View Post
What about email? Not even that?
what is this 1890 ok
Caffinator is offline  
post #19 of 53 (permalink) Old 12-04-2019, 07:17 PM
Old to Overclock.net
 
Join Date: Jan 2008
Posts: 2,083
Rep: 123 (Unique: 105)
Quote: Originally Posted by JackCY View Post
Hopefully my Android is too old to run it lol.

Most apps are free and thus they want all your data access so they can resell it without you knowing/realizing. Some access makes sense, but even then it would be nice to say give it on a as user needed request, such as calendar access to contacts, doesn't need it but if the user decides it does well then upon a user action it could be allowed to on that instance, not as a always anytime pilfer through my contacts and do what ever you want. On old Android there used to be a menu for permissions except it's near impossible to get to, only saw it once and after it closed there was no way to open it again, it exists but the GUI is so bad that no one knows how to open it or what special command in some API opens it. Newer Android tried to fix a lot of the old Android issues but I still don't want to buy anything below Android 10. They gotta solve the terrible adaptability and finally make it less dependent on lazy phone makers who don't bother to release updates for Android on their devices.

Banking etc. on a phone is asking for trouble, especially for the always online phones.
Root and/or custom rom, and you can get a full fledged permission manager. Let apps access all the data they way so they run and then actually block them on the back end or feed them fake data. Using roms you get the latest security patchs too, I get every months ASP from Google and if you choose a good vendor like Oneplus they provide manufacturer security updates every 3 months or so.


Running stock OEM phones from Verizone/AT&T leaves you as a sitting duck.

Quote: Originally Posted by skupples View Post
and this is why my phone does three things.

call
text
browsing
GPS
no banking, no shopping.
I'll pull out my laptop if I need to handle a venmo

ease of access and speed of completion rarely outweigh the risks these days.
Scratch that, all calls/messages through Signal, GPS through OSMAnd and browsing only.

Using email on your phone is asking to get owned, email should be a one trick pony you only use on your main hardened security home base rig. If an attack takes control of your main email address it's game over.

362436
(15 items)
CPU
AMD Ryzen 5 1600
Motherboard
Asus Prime X370-A AMD Ryzen AM4 DDR4
GPU
Gigabyte GeForce GTX 950
RAM
2x Corsair Valueselect 8GB 288 Pin DDR4 SDRAM DDR4 @ 2133
Hard Drive
Corsair Force LS 2.5" 120GB SATA III MLC SSD
Optical Drive
Lite-On 24X SATA DVD/RW Optical Drive
Power Supply
Corsair RM550x 550W 80 Plus Gold
Cooling
Noctua NH-L9A-AM4 Low-Profile
Case
Antec NSK4100 Steel ATX Mid Tower
Operating System
Mint 18.2 x64
Monitor
HP 24" LCD/LED 1920x1080
Keyboard
IBM PC-AT
Mouse
Logitech G5
Audio
Sennheiser HD650
Audio
Asus Essence STX II
▲ hide details ▲



Last edited by xJumper; 12-04-2019 at 07:25 PM.
xJumper is offline  
post #20 of 53 (permalink) Old 12-04-2019, 07:33 PM
professional curmudgeon
 
looniam's Avatar
 
Join Date: Apr 2009
Posts: 9,911
Rep: 810 (Unique: 457)
Quote: Originally Posted by Caffinator View Post
what is this 1890 ok
technology wise, no

ethically, yes - if even that advanced.

Remember the golden rule of statistics: A personal sample size of one is a sufficient basis upon which to draw universal conclusions.
Upload the computer to Dropbox and provide a link to it so others may download it to examine and give advice for repairs.
loon 3.2
(18 items)
CPU
i7-3770K
Motherboard
Asus P8Z77-V Pro
GPU
EVGA 980TI SC+
RAM
16Gb PNY ddr3 1866
Hard Drive
PNY 1311 240Gb
Hard Drive
1 TB Seagate
Hard Drive
3 TB WD Blue
Optical Drive
DVD DVDRW+/-
Power Supply
EVGA SuperNova 750 G2
Cooling
EKWB P280 kit
Cooling
EK-VGA supremacy
Case
Stryker M [hammered and drilled]
Operating System
Win X
Monitor
LG 24MC57HQ-P
Keyboard
Ducky Zero [blues]
Mouse
corsair M65
Audio
SB Recon3D
Audio
Klipsch ProMedia 2.1
▲ hide details ▲


looniam is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off