Hacker News new | past | comments | ask | show | jobs | submit login

Not really. You need to be root to have the same experience as playstore - namely auto updates.



So I’m going to both trust an app that is not sandboxed on my phone and trust it to update itself without my consent?


All apps are sandboxed in Android... even the ones installed externally.


Obviously not well enough considering what happened with Fortnite....


What happened to Fortnite?


https://www.cnet.com/news/just-as-critics-feared-fortnite-fo...


> For the attack to work, it sounds like you would have already needed to have a piece of malware on your phone, ready and waiting to strike. But not a particularly sophisticated one. After you ask the Fortnite Launcher to download Fortnite, Google claims that any app with the WRITE_EXTERNAL_STORAGE permission would have been able to sneakily replace the real Fortnite app with a fake one after security checks were already complete. It's known as a "man-in-the-disk" attack.




Consider applying for YC's W25 batch! Applications are open till Nov 12.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: