• dhork@lemmy.world
    link
    fedilink
    English
    arrow-up
    200
    arrow-down
    2
    ·
    5 months ago

    “Temu is designed to make this expansive access undetected, even by sophisticated users,” Griffin’s complaint said. “Once installed, Temu can recompile itself and change properties, including overriding the data privacy settings users believe they have in place.”

    That’s just nuts

    • dev_null
      link
      fedilink
      English
      arrow-up
      123
      arrow-down
      19
      ·
      edit-2
      5 months ago

      Yeah, it is. It’s such an extraordinary claim.

      One requiring extraordinary evidence that wasn’t provided.

      “It’s doing amazing hacks to access everything and it’s so good at it it’s undetectable!” Right, how convenient.

    • paraphrand@lemmy.world
      link
      fedilink
      English
      arrow-up
      57
      arrow-down
      4
      ·
      edit-2
      5 months ago

      This is why companies like Apple are at least a tiny bit correct when they go on about app security and limiting code execution. The fact it aligns with their creed of controlling all of the technology they sell makes the whole debate a mess, though. And it does not excuse shitty behavior on their part.

      But damn

      And if they got this past Apple in their platforms. That’s even wilder.

      • chiisana@lemmy.chiisana.net
        link
        fedilink
        English
        arrow-up
        27
        arrow-down
        4
        ·
        5 months ago

        The article linked to the analysis and on a quick glance, it seems to be done entirely against the Android variant of the app. This makes sense because if the alleged actions are true, they’d never have gotten on to the App Store for iOS Apple users… or at least as of a couple months ago. Who knows what kind of vulnerability is exposed by Apple only doing limited cursory checks for 3rd party App Stores.