PERMISSIONS Posts on XDA

LineageOS is dropping its own superuser implementation, making Magisk the de facto solution

LineageOS is one of the most popular custom ROMs available for Android devices, if not the most popular custom ROM out there. This custom ROM takes Android as found on the Android Open Source Project (AOSP) and adds its own flavor on top of it. A lot of custom ROMs tend to then adopt LineageOS...

Google will make file manager devs submit a form to get broad file storage access in Android 11

The Android 10 beta 2 released earlier this year revealed that Google was planning to limit the way apps can access your phone's internal storage. For this purpose, Google introduced something called Scoped Storage. However, due to backlash from several developers, the company had to backtrack on its implementation. The company allowed apps that don't...

Google will remove unapproved apps that use call log/SMS permissions in the next few weeks

Keeping your personal data safe and secure is vital to the success of Android. If the platform gets a reputation for revealing sensitive data to other apps then it will make people feel wary about getting an Android phone. This was the point of the permissions system and Google has refined it over the years...

New permission group in Android P makes it clear when apps want to read call log or phone number

Android Developer Preview 3 (Android P Beta 2) just dropped, and with it comes a number of changes—mostly under the hood. While there are some user-facing changes, nearly all the changes are in preparation for the final release. The biggest part of the update is the finalized APIs, which means that you can build an application...

Google Introduces Runtime-Only Permissions in Android 8.0 for Better Security

One of the best security-oriented changes included in Android 6.0 Marshmallow was runtime permissions. Before the advent of runtime permissions, developers would define permissions in their AndroidManifest file that would be granted automatically upon installation. On Android 6.0 and newer, runtime permissions required the user to explicitly grant or deny a permission through a dialog....

How to Stop Apps from Reading the Android Clipboard to Protect your Privacy

Rather than typing or swiping on your keyboard, sometimes it is easier to just cut, copy, and paste some text. If you want to enter some long pieces of text such as an address, password, or website link, using Android's copy and paste feature certainly beats having to precisely type each character out. But Android's...

How to Stop Pokemon Go (or other apps) From Stealing Audio Focus

Despite dwindling in popularity, Pokemon Go still has a ton of fans playing the game every day. Although most of the game's issues have been related to cheating, there are other, more minor ones that annoy existing users. One such issue is related to audio focus in Android. Users who like to listen to music or...

How to Stop Vibrations from Any Android App on Your Phone

Online advertisements continue finding new ways to annoy the crap out of you. For the past few years, one particular form of online advertisements have plagued mobile devices: the vibrating ad. Using the Vibration API, advertisements have been vibrating your phone to annoyingly grab your attention. This issue has been known for years, but Google...

Google Details its Use of Machine Learning to Identify Intrusive Mobile Apps

All too often, we search for an app and end up finding what looks to be the best fit for our needs. But that is until one sees the long list of permissions the application thinks it needs to function. Some developers tend to call for permissions for functionality that their app clearly does not...

Cloak And Dagger Exploit uses Overlays and Accessibility Services to Hijack the System

What we at XDA once envisioned as a proof of concept security vulnerability has now been confirmed by computer scientists at the Georgia Institute of Technology in Atlanta. The team details what they call "cloak and dagger" exploits which can take over the UI of most versions of Android (including 7.1.2). Given it's nature, it...

How Tapjacking Made a Return with Android Marshmallow — and Nobody Noticed

While many of us salivate over the newly released Android Nougat for Nexus devices, the vast majority of users are still on Android Marshmallow. An exploit the existence of which has been documented since at least the middle of 2015 is still affecting many modern Android devices. Malicious applications are able to tapjack your actions into granting them a...

The Sorry State of Android Fragmentation: An Example to Understand Developers’ Plight

Fragmentation has been a contentious issue in Android quite literally since the mobile operating system was announced. Apart from being a cudgel for trolls to use in online flame-wars, the diversity that comes with fragmentation is now largely seen as a net positive for consumers of Android devices. After all, we're given so much freedom in choosing...