• michael_palmer@lemmy.sdf.org
    link
    fedilink
    arrow-up
    1
    arrow-down
    16
    ·
    10 months ago

    Who makes you upgrade your phone? Does anyone have a case where something bad happened because of outdated security patches? I haven’t come across any apps that don’t work because of outdated security patches, but a bunch of apps won’t run if you have root on your phone.

      • michael_palmer@lemmy.sdf.org
        link
        fedilink
        arrow-up
        2
        arrow-down
        9
        ·
        10 months ago

        I asked about real cases. And if it’s a bad idea, why do banks allow their apps to run on “unprotected” phones?

        • Optional@lemmy.world
          link
          fedilink
          arrow-up
          13
          arrow-down
          1
          ·
          edit-2
          10 months ago

          A lot of hacks are done through browsers. Phones have browsers. When the Chinese make off with Federal Reserve documents because Joe IT logged in with a phone it doesn’t make it into the news.

          It’s just the case that patched security flaws are standard practice for a reason. Hey - use http only, make all your passwords Password1, knock yourself out, but don’t expect others to be like “Yeah! Why are we doing all this . . security ???”

        • TrickDacy@lemmy.world
          link
          fedilink
          arrow-up
          11
          arrow-down
          2
          ·
          10 months ago

          It’s a bad thought process to ask for proof that security matters. You do not require proof of that as we know that it does. Many identities are stolen every day.

          • michael_palmer@lemmy.sdf.org
            link
            fedilink
            arrow-up
            3
            arrow-down
            7
            ·
            10 months ago

            I think that all this hysteria around security updates may be part of a marketing ploy to increase sales of new phones. Why? Because 3 years ago, no one cared how many updates a particular phone model would receive. I also found information that more than 80% of Android smartphones in 2015 had known unpatched vulnerabilities. However, I don’t know of a single case where my friends’ phones were hacked without their involvement. But I know 1000 cases when my friends clicked on a fake link and entered their passwords/card details. Anyway, I agree that security patches are a necessity, but not a reason to immediately buy a new phone when my old one stops receiving updates.

            • TrickDacy@lemmy.world
              link
              fedilink
              arrow-up
              4
              arrow-down
              2
              ·
              10 months ago

              Do you walk around with your shoes untied because you don’t know anyone who tripped over their laces?

              more than 80% of Android smartphones in 2015 had known unpatched vulnerabilities

              This is a reason to stay up to date, not evidence that you don’t have to care about it…

              immediately buy a new phone when my old one stops receiving updates.

              If your phone stops receiving updates, it’s probably over 5 years old and should be replaced by more modern hardware. I’m all for recycling electronics and not being wasteful but it’s really asking for it to base your digital livelihood on the idea that you probably won’t be a victim.

        • voracitude@lemmy.world
          cake
          link
          fedilink
          arrow-up
          7
          ·
          10 months ago

          if it’s a bad idea, why do banks allow their apps to run on “unprotected” phones?

          My requirements for and definition of “security” differ substantially from my bank’s.

    • BatrickPateman@lemmy.world
      link
      fedilink
      arrow-up
      8
      ·
      edit-2
      10 months ago

      Security patches address vulnerabilities that hackers can exploit to do fun stuff like steal your personal data, install malware, or compromise your financial accounts.

      While you may not have personally experienced issues, outdated patches leave your device and data exposed. Cyberattacks are often silent, and the consequences - like identity theft or financial loss - can surface long after the breach. Think fucking without a condom and trusting your pull out game, and years later that ONS calls you and asks for money for the one to x children you fathered that night…

      So upgrading isn’t just about apps working; it’s about safeguarding your privacy and security in our connected world.

    • ArgentRaven@lemmy.world
      link
      fedilink
      arrow-up
      3
      ·
      10 months ago

      Off the top of my head, I remember the Stagefright vulnerability on phones a while back. That was probably more than 10 years ago now, but I remember finding out my phone was vulnerable at the time.