this post was submitted on 29 Sep 2023
63 points (97.0% liked)
Apple
17525 readers
51 users here now
Welcome
to the largest Apple community on Lemmy. This is the place where we talk about everything Apple, from iOS to the exciting upcoming Apple Vision Pro. Feel free to join the discussion!
Rules:
- No NSFW Content
- No Hate Speech or Personal Attacks
- No Ads / Spamming
Self promotion is only allowed in the pinned monthly thread
Communities of Interest:
Apple Hardware
Apple TV
Apple Watch
iPad
iPhone
Mac
Vintage Apple
Apple Software
iOS
iPadOS
macOS
tvOS
watchOS
Shortcuts
Xcode
Community banner courtesy of u/Antsomnia.
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I'm curious if you can point me to any specific instances of third party app stores being problematic for Android, perhaps I missed something.
In my experience, most users either don't know about the third party app stores or don't use them. Android has a setting to completely disable downloads from outside sources. If a user chooses to download from a third party app store, they are doing it of their own free will and they alone assume the same risks as browsing the internet normally. At that point it's really just internet 101 that any competent person should understand. Anyone else can simply choose to stay in their walled garden of safety.
Also, for the most part, developers won't develop for a third party store or make their own launcher unless there is a significant advantage to do so, like being forced to pay exorbitant prices to a monopolizing company in exchange for a false sense of "privacy and security". Apps aren't going to suddenly jump ship and make their own launchers. That costs a lot of money and Apple has curated a nice ecosystem. But, both developers and users should be allowed to choose what and how they install software on their personal devices. Android has proven that the wider user base will see virtually no impact and device security wont suddenly be compromised unless a specific user chooses to compromise their own device.
This is a very naive and, frankly, sheltered view. The majority of mobile malware and spyware is exclusive to Android. Also, it doesn’t matter if indie devs don’t jump ship. It’s enough to have major companies develop their own launchers. It’s objectively worse.
My views come directly from having owned both ios and android devices with their respective app stores. The majority of malware is on Android, but it's hardly exclusive. Android devices also hold the majority of the market, by a very wide margin. The idea that ios is some kind of paragon of perfect security and privacy is incredibly naive and misguided.
It is exclusive, though. What malware exists for iOS? Nearly every issue is only on jailbroken phones. If it’s not in the App Store, it’s not something you can install. That’s the whole point. And, on top of that, this is about more than just malware and sideloading. This is about opening up a trusted process to several untrusted actors. These responses are ridiculous.
https://www.wired.com/story/kaspersky-apple-ios-zero-day-intrusion/
https://www.forbes.com/sites/daveywinder/2023/09/23/ios-1701-critical-security-update-warning-for-all-iphone-users/?sh=794a8b094e83
https://www.tomsguide.com/news/iphone-apps-infected-malware
https://thehackernews.com/2016/03/how-to-hack-iphone.html?m=1
https://www.forbes.com/sites/gordonkelly/2022/01/08/apple-warning-iphone-hack-attack-vulnerability-new-iphone-update/?sh=73609cec659e
https://www.forbes.com/sites/kateoflahertyuk/2023/09/09/ios-1661-update-now-warning-issued-to-all-iphone-users/?sh=4cf4c51cf2f0
https://www.darkreading.com/dr-global/spyware-vendor-egyptian-orgs-ios-exploit-chain
Did you even read the details for any of these?
Every single one of these requires that either 1) The user’s phone be running an old version of iOS (which, by default, auto-updates unless someone has turned it off), 2) the user installs something on their PC first and installed an app from the App Store that was removed and is no longer available, or 3) the user be specifically targeted and not have Lockdown mode turned on. And this is over a span of almost 10 years as the first one of them was used in 2014.
I will concede that this obviously shows iOS is not immune but I never really said that it was. This does show, though, that iOS is far more secure than Android even if we only restrict the scenario to the official app markets on Android.
https://www.phonearena.com/news/android-malware-apps-master-list_id149175 vs. https://www.theiphonewiki.com/wiki/Malware_for_iOS
Over 100 in the last year with over 300 million devices infected vs. 17 over 15 years with 500,000 devices (including jailbroken devices and targeted attacks).
It’s not even a close comparison.