this post was submitted on 11 Nov 2024
585 points (99.2% liked)

Privacy

1266 readers
142 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] ReversalHatchery@beehaw.org 8 points 1 week ago

until they get forced to issue an update that steals your key.

assuming you installed the app from google play.
since for a few years now google holds the signing keys that are used for verifying that the app has not been tampered with, the app developer is not even needed for this. google can make the changes, sign the app with the key they already have, and push an update to your phone.