this post was submitted on 18 Feb 2024
237 points (87.4% liked)
Technology
60078 readers
4404 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Do note that although custom ROMs helps provide OS updates, it does not help with any firmware updates to your phone parts as those are vendor released. Once they stop providing those updates, it is no longer secure
I have a OnePlus 3T (2016) that is running Android 11 custom ROM. I use it mainly for some games and browsing. I would never use it as my main phone or use banking apps there though. Don't want to risk all of my data on there.
That's why GrapheneOS only supports phones that are still officially updated.
When you say "it's no longer secure", can you point to an actual vulnerability on older hardware and what the exploits are?
We keep hearing how unpatched phones are not secure but I'd like to hear more about what the actual risk is.
Millions of people use older phones that haven't been updated for years, yet it seems to me that scams are more about social engineering than exploiting software vulnerabilities on phones.
You might like this website! It's quite an interesting website to go through :)
https://www.cvedetails.com/
Though to be fair, majority of every day people probably aren't getting their phones hacked. And not every hardware has known vulnerabilities, at least from what I've seen on the website. Also, I don't know if it's true, but I heard that for a lot of exploits, the person needs the phone physically.
Not really my field of expertise though
Right?
Show me some stats where this is demonstrated to be a problem.
I run OLD versions - current phone is Android 9.
I've had 10x more problems caused by system updates than anything else, let alone "being insecure".
That is definitely true. Once the vendor stops putting up those patches, it does become quite problematic. So as long as you keep your Android up to date as best as you can and primarily use open source software and ad blockers, you should be alright in most cases.