Are Apps really safe??

[scottzilla]

I find Droids app market to be a little low class compared to Apple. Apple Apps are more polished, and you aren't forced to comply to a variety of demands just to download an app (I'm sure Apple uses a more sweeping legal statement in it's 58 page license agreement) and Dorid Apps are clearly not even developed in the USA. You can tell by the broken english text used in their simple messages that appear on your device.

Up until now, I was at least operating under the assumption that Apps taken from the market are at least safe, but Tubemate has me wondering.
First, I was using Tubemate for a few days until a popup (In good broken English of course) advised there is an improved version available. OK, why didn't this show up as an update?? Hmmmm.
So you can't update tubemate in the market, you have to go to tubemate.net's website. Hmmmmm, odd.
So I think i'm smart and uninstall tubemate thinking I can just reinstall the updated version. OK, uninstall goes just fine but why can't I find tubemate in the market? Hmmmmmm.
Today, I search tubemate and find it in the market but the comments indicate this is not the original tubemate. Seems a competitor took the name because tubemate was deleted from the market! Seriously, go to tubemate.net and see for yourself.

So I have a few thoughts/questions about this.
First, this is sleazy. Tubemate, a legit app from the market place attempted to convince me to download their app as a 3rd party install after being thrown out of the market by google. That's not right.

Furthermore, another company decided to steal the name and decieve customers by touting their knock off product as Tubemate when it is not. The negative comments clearly indicate this is a sub par app.

What gives?? These 3rd world app developers have access to all of my info just to downlaod their app, I would expect better security than this. Or is this somehow the consumers fault for not knowing better?:icon_evil:

Mark my words...when the viruses make their way to hand held devices it's gonna get very ugly.

 

[hemorrdroid]

No, not all apps are safe. For example if you download an app for wallpapers, and it asks for permission to your call log, incoming outgoing calls and ID, your user account info, or anything that is obviously not needed for the app then steer clear of it. The reason the app store doesnt ask for all this is because they screen everything that goes in. This doesnt mean that they dont miss stuff. And when they do, you wont get a warning like on android telling you what permissions the app has.

Apple and Android are two different paths. If you dont want to scan over the permissions yourself, or dont understand them, and don't mind the fact that some really cool apps might get the axe, then apple is for you. If you can check permissions yourself and take the inherent risk involved, then you will end up with more options for apps for example wifi tether.

I agree that Apple has some more refined apps, hopefully some day we will be on par. Either way, i wouldnt trade refinement for lack of user control. .02

 

[scottzilla]

No, not all apps are safe. For example if you download an app for wallpapers, and it asks for permission to your call log, incoming outgoing calls and ID, your user account info, or anything that is obviously not needed for the app then steer clear of it. The reason the app store doesnt ask for all this is because they screen everything that goes in. This doesnt mean that they dont miss stuff. And when they do, you wont get a warning like on android telling you what permissions the app has.

Apple and Android are two different paths. If you dont want to scan over the permissions yourself, or dont understand them, and don't mind the fact that some really cool apps might get the axe, then apple is for you. If you can check permissions yourself and take the inherent risk involved, then you will end up with more options for apps for example wifi tether.

I agree that Apple has some more refined apps, hopefully some day we will be on par. Either way, i wouldnt trade refinement for lack of user control. .02

OK, so as a consumer how am I supposed to know what an app NEEDS access to to function? I'm not a computer whiz; like many people I just own a droid and assume apps in the app store are safe to use.

In my example with tubemate, this company obvioulsy has access to it's customers information, then gets kicked out of the app store by google. That certainly sounds like a breach of security to me.

 

[hookbill]

No, not all apps are safe. For example if you download an app for wallpapers, and it asks for permission to your call log, incoming outgoing calls and ID, your user account info, or anything that is obviously not needed for the app then steer clear of it. The reason the app store doesnt ask for all this is because they screen everything that goes in. This doesnt mean that they dont miss stuff. And when they do, you wont get a warning like on android telling you what permissions the app has.

Apple and Android are two different paths. If you dont want to scan over the permissions yourself, or dont understand them, and don't mind the fact that some really cool apps might get the axe, then apple is for you. If you can check permissions yourself and take the inherent risk involved, then you will end up with more options for apps for example wifi tether.

I agree that Apple has some more refined apps, hopefully some day we will be on par. Either way, i wouldnt trade refinement for lack of user control. .02

OK, so as a consumer how am I supposed to know what an app NEEDS access to to function? I'm not a computer whiz; like many people I just own a droid and assume apps in the app store are safe to use.

In my example with tubemate, this company obvioulsy has access to it's customers information, then gets kicked out of the app store by google. That certainly sounds like a breach of security to me.

Good question. What you should do is read the reviews on the app, then I would go to Google and do this: (app name) Droid Forums.

Let's see what we have had to say about it or if we have discussed it at all. Unless it's brand new if you don't see any discussion, it may be wise to pass.

New apps can be a bit tricky and I've downloaded one or two that I kind of rolled the dice on. Fortunately I was right they were good apps but I gave it a common sense look. Let's look at something like Android 2 Cloud. Now this app excited me because what it did was it allowed me to put the screen on my Droids browser on to my computers Chrome Browser. I looked at what accesses it was requesting, felt yes, it needed access to the internet, yes. Later we were contacted by the dev who asked for phone access. I had already had conversations with the dev, felt comfortable with this and I did it.

So far no issues, and it appears to be a popular app.

 

[debdroid1a]

I do what Hook suggested. Read the reviews and if it asks for too many permissions I say "no" and don't download. If I read something on this forum about an app and it seems like one I want, then I download it again, once again reading reviews and deciding on permissions.

And using common sense like you did with the app.

Some do need access to certain things, some don't.

If you find one asking for too many permissions, then you can go back to the market and see if there is another one that is similar that doesn't ask for too many or permissions you are comfortable with.

I've had my Droid since May 10 and so far no problems. Haven't even had to exchange it or anything. Okay a couple battery pulls but that was mostly user error. I still add aps and delete ones I'm not using or forgot to delete after I never used them.

Oh the Googling to see if apps are good is a great idea. I read that on another board recently too. Adding "droid forums" to the search is a great idea.

 

[travisn000]

I also find the way android apps permissions are managed to be deficient... I really miss the RIM / Blackberry way of managing app permissions that would allow the user to override and modify default permission of an installed application... I would really love to be able to turn off location awareness that is built into alot of apps when it is only used to supply location info to advertisers... I tend to buy apps instead of using ad supported ones, but sometimes there isn't always a choice.

I also find that almost all apps that use the internet, even just for ads, require permissions related to phone use; I think they do this because CDMA carriers like verizon cannot run data and voice at the same time, but it is also a ripe target for more malicous apps... users are left to hope and wish that an app is safe without any method (..other than not installing 90% of apps) to really know for sure.

It would be nice if the OS could log what sites / IP addresses that apps are sending and retrieving information from... it would make it much easier to spot the bad ones!

 

[Andrew C]

DroidWall is a great app. It lets you choose which apps can access 3G or WiFi connections. The only downside is it requires root (not that root is bad, its just not everyone is rooted).

DroidWall - Android Firewall
by Rodrigo ZR
10,000 downloads, 529 ratings (4.6 avg)
Free

 

[takeshi]

I find Droids app market to be a little low class compared to Apple. Apple Apps are more polished, and you aren't forced to comply to a variety of demands just to download an app (I'm sure Apple uses a more sweeping legal statement in it's 58 page license agreement) and Dorid Apps are clearly not even developed in the USA. You can tell by the broken english text used in their simple messages that appear on your device.

There are such vague, sweeping generalizations in this post (and the subject line itself) that it's really impossible to hold a discussion. I don't see how Apple's market is more "high class" with its countless fart and similar apps. Android apps are developed in a number of countries, including the US.

However, if you prefer the Apple market then by all means go with iOS. There are certainly people that prefer Apple's walled garden. With Android you do need to perform your due diligence. Some apps are safe, some are not.

OK, so as a consumer how am I supposed to know what an app NEEDS access to to function? I'm not a computer whiz;

You don't need to be. Use Google. Use this site.

Mark my words...when the viruses make their way to hand held devices it's gonna get very ugly.

Trojans are really more of an issue.

 

[travisn000]

DroidWall is a great app. It lets you choose which apps can access 3G or WiFi connections. The only downside is it requires root (not that root is bad, its just not everyone is rooted).

DroidWall - Android Firewall
by Rodrigo ZR
10,000 downloads, 529 ratings (4.6 avg)
Free

..that is perfect... thanks for the tip!


I also did some searching and found a couple of interesting apps for viewing permission & monitoring apps:

Permission viewers:
PermissionViewer by youten - gives good graphical representation of which apps are using the most permissions.. click an app in the list for more details

S2 permission checker by Futaba - similar to the above, but lists number of permission used by each app, with click to see details; this one also gives better descriptions of what a permission entails (use/risk). It also allows you to select a given permission (ie. Internet) and then get a list of all apps that have permission to access that function.

Monitoring:
Task Idenentifier (beta) by JG&R2 - a monitoring app designed to alert the user when an app or process is run. Not too sure about the usefulness of this one; it would be more useful if you could get notifications if / when apps accessed certain permissions/functions, but appearently this is not possible if I understand the way that android permissions work (..they are granted at install time, not run time.. more info here: Security and Permissions | Android Developers)

 

[scottzilla]

I find Droids app market to be a little low class compared to Apple. Apple Apps are more polished, and you aren't forced to comply to a variety of demands just to download an app (I'm sure Apple uses a more sweeping legal statement in it's 58 page license agreement) and Dorid Apps are clearly not even developed in the USA. You can tell by the broken english text used in their simple messages that appear on your device.

There are such vague, sweeping generalizations in this post (and the subject line itself) that it's really impossible to hold a discussion. I don't see how Apple's market is more "high class" with its countless fart and similar apps. Android apps are developed in a number of countries, including the US.

However, if you prefer the Apple market then by all means go with iOS. There are certainly people that prefer Apple's walled garden. With Android you do need to perform your due diligence. Some apps are safe, some are not.

OK, so as a consumer how am I supposed to know what an app NEEDS access to to function? I'm not a computer whiz;

You don't need to be. Use Google. Use this site.

Mark my words...when the viruses make their way to hand held devices it's gonna get very ugly.

Trojans are really more of an issue.

No offense but I find it impossible to have a discussion with anyone who takes such a defensive posture at the mere mention of Apple.

I'm pretty sure that if you asked anyone who walked out of a Verizon store if the App market is safe, they would say "Yes" simply because Verizon told them so and the Apple store is indeed safe. So Droid is riding Apple's coat tails in this regard.
Truth be told, im not an Apple guy. I own a couple Ipods.

 

[hookbill]

I find Droids app market to be a little low class compared to Apple. Apple Apps are more polished, and you aren't forced to comply to a variety of demands just to download an app (I'm sure Apple uses a more sweeping legal statement in it's 58 page license agreement) and Dorid Apps are clearly not even developed in the USA. You can tell by the broken english text used in their simple messages that appear on your device.

There are such vague, sweeping generalizations in this post (and the subject line itself) that it's really impossible to hold a discussion. I don't see how Apple's market is more "high class" with its countless fart and similar apps. Android apps are developed in a number of countries, including the US.

However, if you prefer the Apple market then by all means go with iOS. There are certainly people that prefer Apple's walled garden. With Android you do need to perform your due diligence. Some apps are safe, some are not.


You don't need to be. Use Google. Use this site.

Mark my words...when the viruses make their way to hand held devices it's gonna get very ugly.

Trojans are really more of an issue.

No offense but I find it impossible to have a discussion with anyone who takes such a defensive posture at the mere mention of Apple.

I'm pretty sure that if you asked anyone who walked out of a Verizon store if the App market is safe, they would say "Yes" simply because Verizon told them so and the Apple store is indeed safe. So Droid is riding Apple's coat tails in this regard.
Truth be told, im not an Apple guy. I own a couple Ipods.

I have an iPad and and iMac. I just want to make sure you don't think I'm all Android when I say what I'm going to say next.

Yes, there are stronger restrictions in the AppStore and there is less risk. No doubt about that. But your idea about viruses running ramped through the Android World is just not the way it would work.

Android and Apple both work basically on the same platform. This platform is not an easy attack for someone who wants to launch a virus attack. Mac hasn't seen a virus in I'd say at least 8 years maybe longer I personally don't ever recall seeing one. Microsoft on the other hand has a much easier platform to attack and that's why you see Microsoft constantly updating their OS. I understand now they have a pretty good virus detector.

If you're an informed person, and by now I know you are, then you will make the correct choices when getting an app. And as mentioned earlier it's more likely it will be malware, not a virus.

 

[AngryHatter]

Linux
+
Common Sense
-----------------
No Worries

I have read of one case in which contacts were sent to an email spammer. One.
And to an email spammer...no one stealing passwords, emptying bank accounts, stealing identities.

 

[Bob Dammit]

I find Droids app market to be a little low class compared to Apple. Apple Apps are more polished, and you aren't forced to comply to a variety of demands just to download an app (I'm sure Apple uses a more sweeping legal statement in it's 58 page license agreement) and Dorid Apps are clearly not even developed in the USA. You can tell by the broken english text used in their simple messages that appear on your device.

Im not going to bother with this, as you have already made your pro-apple views known, and your mind is made up. dancedroid

Up until now, I was at least operating under the assumption that Apps taken from the market are at least safe{snip}

You know what they say about assumptions...:biggrin:

First, I was using Tubemate for a few days until a popup (In good broken English of course) advised there is an improved version available. OK, why didn't this show up as an update?? Hmmmm.
So you can't update tubemate in the market, you have to go to tubemate.net's website. Hmmmmm, odd.
So I think i'm smart and uninstall tubemate thinking I can just reinstall the updated version. OK, uninstall goes just fine but why can't I find tubemate in the market? Hmmmmmm.

Re: TubeMate, it was removed from the market for violating YouTube's TOS (and by extension Google's TOS). You arent allowed to copy content from YouTube, its not the first app, or the last app to run into trouble. I guess I dont know about the broken english comments you refer too, I know many people who speak English as a second language better than most Americans.

Today, I search tubemate and find it in the market but the comments indicate this is not the original tubemate. Seems a competitor took the name because tubemate was deleted from the market! Seriously, go to tubemate.net and see for yourself.So I have a few thoughts/questions about this.
First, this is sleazy. Tubemate, a legit app from the market place attempted to convince me to download their app as a 3rd party install after being thrown out of the market by google. That's not right.

Furthermore, another company decided to steal the name and decieve customers by touting their knock off product as Tubemate when it is not. The negative comments clearly indicate this is a sub par app.

Been happening as long as business have had names. Ever misspell a websites name and go to a similar one? Ever seen a knock-off product. That doesn't make it right, but its nothing new.

What gives?? These 3rd world app developers have access to all of my info just to downlaod their app, I would expect better security than this. Or is this somehow the consumers fault for not knowing better?:icon_evil:

Thats the nice thing about *nix based operating systems. If YOU get malware / spyware / a virus, it is YOUR FAULT. You have to give the apps permission, and they cant "hide" permissions. Im still looking for something online to corroborate your claim to "these 3rd world app developers", and am coming up empty handed.

Mark my words...when the viruses make their way to hand held devices it's gonna get very ugly.

They are already here. 1 reported case in Russia, 1 malicious banking app (and why would you download an app to do your banking if it WASN'T released by your bank?????), and 1 as a 3rd party download disguised as an add-on for Angry Birds, designed and developed by a security company just to see if it could be done. Once again, YOU are the person in control of YOUR device. If it is a responsibility you don't want to take on, by all means embrace the "walled garden" approach.


:icon_ banana:dancedroid:icon_ banana:dancedroid

 

[Batfan.com]

No offense but I find it impossible to have a discussion with anyone who takes such a defensive posture at the mere mention of Apple.

I'm pretty sure that if you asked anyone who walked out of a Verizon store if the App market is safe, they would say "Yes" simply because Verizon told them so and the Apple store is indeed safe. So Droid is riding Apple's coat tails in this regard.
Truth be told, im not an Apple guy. I own a couple Ipods.

I can assure you that Android phones are not "riding Apple's coat tails". Over the last couple years, Android has come to rule the smartphone market.

Perhaps you should change your tone because, your coming off as a bit of an Apple-loving elitist. Certainly not the way to make friends on a forum dedicated to Android phones



Sent from my DROID2 GLOBAL using DroidForums App

 

[scottzilla]

No offense but I find it impossible to have a discussion with anyone who takes such a defensive posture at the mere mention of Apple.

I'm pretty sure that if you asked anyone who walked out of a Verizon store if the App market is safe, they would say "Yes" simply because Verizon told them so and the Apple store is indeed safe. So Droid is riding Apple's coat tails in this regard.
Truth be told, im not an Apple guy. I own a couple Ipods.

I can assure you that Android phones are not "riding Apple's coat tails". Over the last couple years, Android has come to rule the smartphone market.

Perhaps you should change your tone because, your coming off as a bit of an Apple-loving elitist. Certainly not the way to make friends on a forum dedicated to Android phones



Sent from my DROID2 GLOBAL using DroidForums App

Yeah, it's way better to drink the Android Kool-Aid rather than actually use your brain, make a comparisson and call a spade a spade, huh?
Perhaps one day you can explain how my Droid Incredible isn't a RIP OFF of an Ipione.:biggrin:
The Apple love/hate thing is humerous at best.