Keyboard spyware? - eviltoast

I was taking a look at the Naomi Wu situation (A Chinese DIY tech youtuber who went missing after being watched by the government) and in one part they mentioned that she was concerned about her privacy, so started using Signal, but had a default chinese keyboard that had a keylogger and the police had looked into what she was talking on there.

I’m not sure if it was a mobile only thing, but it was mentioned that the keyboard app was used in like 70% por chinese smarthphones.

Now, I use AnySoftKey and refuse to use default keyboard apps, but how far can we reach on the keyboard security thing? Is typing on a computer or using a physical keyboard on a mobile device 100% safe? I think the keyboard issue is often overlooked and would like to know what recommendations your have? Or what should be known more?

  • TheAnonymouseJoker@lemmy.ml
    link
    fedilink
    arrow-up
    1
    arrow-down
    4
    ·
    edit-2
    1 year ago

    What device does this? I am not in knowledge of any such Android device. All that happens is apps that require GMS will overlay a dialog box saying “Enable Google Play Services”, else app will close. Some apps even work if you ignore that.

    • 𝒍𝒆𝒎𝒂𝒏𝒏@lemmy.one
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      I’m rooted using an FP3 (essentially stock, only a single preinstalled manufacturer app).

      Revoking location permissions from Play Services reboots the device immediately (previously this didn’t happen - the permissions would be revoked as expected, and things dependent on Google’s location API would fail as expected) so I assume a GMS update was pushed via play store resulting in this reboot problem

      • TheAnonymouseJoker@lemmy.ml
        link
        fedilink
        arrow-up
        2
        arrow-down
        3
        ·
        1 year ago

        I am starting to think that it might become harder to use 1 device for serious hardcore privacy, and Big Tech might be leading us to forcibly have 2 devices, one of them being the Big Tech Certified™. This is also happening with the TPM/Pluton/Hello requirements on computers.

        It might be time for a new version of the smartphone guide…